Security Tool for Reconnaissance and Information Gathering on a website. (python 2.x & 3.x)
This script use “WafW00f” to detect the WAF in the first step (<https://github.com/EnableSecurity/wafw00f>)
This script use “Sublist3r” to scan subdomains (<https://github.com/aboul3la/Sublist3r>)
This script use “waybacktool” to check in waybackmachine (<https://github.com/Rhynorater/waybacktool>)
Features
TODO P1 is the most important
Usage
>
pip(3) install -r requirements.txt
If problem with pip3:
sudo python3 -m pip install -r requirements.txt
> >
usage: hawkscan.py [-h] [-u URL] [-w WORDLIST] [-s SUBDOMAINS] [-t THREAD] [-a USER_AGENT] [–redirect] [-r] [-p PREFIX] [-o OUTPUT] [–cookie COOKIE_] [–exclude EXCLUDE] [–timesleep TS] [–auto]
>
optional arguments:
-h, --help show this help message and exit
-u URL URL to scan [required]
-w WORDLIST Wordlist used for URL Fuzzing. Default: dico.txt
-s SUBDOMAINS subdomain tester
-t THREAD Number of threads to use for URL Fuzzing. Default: 20
-a USER_AGENT choice user-agent
–redirect For scan with redirect response like 301,302
-p PREFIX add prefix in wordlist to scan
-o OUTPUT output to site_scan.txt (default in website directory)
-b Add a backup file scan like ‘exemple.com/ex.php.bak…’ but longer
-r recursive dir/files
–cookie COOKIE Scan with an authentification cookie
–exclude EXCLUDE To define a page type to exclude during scan
–timesleep TS To define a timesleep/rate-limit if app is unstable during scan
–auto Automatic threads depending response to website. Max: 20
–update For automatic update
>
Exemples
>
//Basic
python hawkscan.py -u https://www.exemple.com -w dico_extra.txt
//With redirect
python hawkscan.py -u https://www.exemple.com -w dico_extra.txt -t 5 --redirect
//With backup files scan
python hawkscan.py -u https://www.exemple.com -w dico_extra.txt -t 5 -b
//With an exclude page
python hawkscan.py -u https://www.exemple.com -w dico_extra.txt -t 5 --exclude https://www.exemple.com/profile.php?id=1
//With an exclude response code
python hawkscan.py -u https://www.exemple.com -w dico_extra.txt -t 5 --exclude 403
>
Thanks
Layno (<https://github.com/Clayno/>)
Sanguinarius (<https://twitter.com/sanguinarius_Bt>)
Cyber_Ph4ntoM (<https://twitter.com/__PH4NTOM>__)