{"id": "KITPLOIT:5921383082083032652", "bulletinFamily": "tools", "title": "Tsunami - A General Purpose Network Security Scanner With An Extensible Plugin System For Detecting High Severity Vulnerabilities With High Confidence", "description": "[  ](<https://1.bp.blogspot.com/-VbXQbYJT9wc/Xwuh6m5onUI/AAAAAAAATGQ/dKVwFKV_lHomW3v3Rmza7MuJSKe2az1LQCNcBGAsYHQ/s1600/tsunami.jpg>)\n\n \nTsunami is a general-purpose network security scanner with an extensible plugin system for detecting high [ severity vulnerabilities ](<https://www.kitploit.com/search/label/Severity%20Vulnerabilities> \"severity vulnerabilities\" ) with high confidence. \nTo learn more about Tsunami, visit our [ documentations ](<https://github.com/google/tsunami-security-scanner/blob/master/docs/index.md> \"documentations\" ) . \nTsunami relies heavily on its plugin system to provide basic scanning capabilities. All publicly available Tsunami plugins are hosted in a separate [ google/tsunami-security-scanner-plugins ](<https://github.com/google/tsunami-security-scanner-plugins> \"google/tsunami-security-scanner-plugins\" ) repository. \n \n** Current Status ** \n\n\n * Currently Tsunami is in 'pre-alpha' release for developer preview. \n * Tsunami project is currently under active development. Do expect major API changes in the future. \n \n** Quick Start ** \nTo quickly get started with Tsunami scans, \n\n\n 1. install the following required dependencies: \n\n \n nmap >= 7.80\n ncrack >= 0.7\n\n 2. start a [ vulnerable application ](<https://www.kitploit.com/search/label/Vulnerable%20Application> \"vulnerable application\" ) that can be identified by Tsunami, e.g. an unauthenticated [ Jupyter Notebook ](<https://www.kitploit.com/search/label/Jupyter%20Notebook> \"Jupyter Notebook\" ) server. The easiest way is to use a docker image: \n\n \n docker run --name unauthenticated-jupyter-notebook -p 8888:8888 -d jupyter/base-notebook start-notebook.sh --NotebookApp.token=''\n\n 3. execute the following command: \n\n \n bash -c \"$(curl -sfL https://raw.githubusercontent.com/google/tsunami-security-scanner/master/quick_start.sh)\"\n\nThe ` quick_start.sh ` script performs the following tasks: \n\n\n 1. Clone the [ google/tsunami-security-scanner ](<https://github.com/google/tsunami-security-scanner> \"google/tsunami-security-scanner\" ) and [ google/tsunami-security-scanner-plugins ](<https://github.com/google/tsunami-security-scanner-plugins> \"google/tsunami-security-scanner-plugins\" ) repos into ` $HOME/tsunami/repos ` directory. \n 2. Compile all [ Google Tsunami plugins ](<https://github.com/google/tsunami-security-scanner-plugins/tree/master/google> \"Google Tsunami plugins\" ) and move all plugin ` jar ` files into ` $HOME/tsunami/plugins ` directory. \n 3. Compile the Tsunami scanner Fat Jar file and move it into ` $HOME/tsunami ` directory. \n 4. Move the ` tsunami.yaml ` example config into ` $HOME/tsunami ` directory. \n 5. Print example Tsunami command for scanning ` 127.0.0.1 ` using the previously generated artifacts. \n \n** Contributing ** \nRead how to [ contribute to Tsunami ](<https://github.com/google/tsunami-security-scanner/blob/master/docs/contributing.md> \"contribute to Tsunami\" ) . \n \n** Disclaimers ** \nTsunami is not an official Google product. \n \n \n\n\n** [ Download Tsunami-Security-Scanner ](<https://github.com/google/tsunami-security-scanner> \"Download Tsunami-Security-Scanner\" ) **\n", "published": "2020-07-17T12:30:06", "modified": "2020-07-17T12:30:06", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://www.kitploit.com/2020/07/tsunami-general-purpose-network.html", "reporter": "KitPloit", "references": ["https://github.com/google/tsunami-security-scanner-plugins", "https://github.com/google/tsunami-security-scanner/blob/master/docs/index.md", "https://github.com/google/tsunami-security-scanner", "https://github.com/google/tsunami-security-scanner/blob/master/docs/contributing.md", "https://github.com/google/tsunami-security-scanner-plugins/tree/master/google"], "cvelist": [], "type": "kitploit", "lastseen": "2020-07-17T16:16:01", "history": [], "edition": 1, "hashmap": [{"key": "bulletinFamily", "hash": "4a931512ce65bdc9ca6808adf92d8783"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "8cd4821cb504d25572038ed182587d85"}, {"key": "description", "hash": "67f24cb16a65aafcb41e43346106325c"}, {"key": "href", "hash": "464e636d9236c04392365b3e5b3fc545"}, {"key": "modified", "hash": "15c706629f97fa24353f296b7d307d46"}, {"key": "published", "hash": "15c706629f97fa24353f296b7d307d46"}, {"key": "references", "hash": "6d209b195e8fca956e8bc333df108460"}, {"key": "reporter", "hash": "aba454e3574969396c0dddcb45011dcc"}, {"key": "title", "hash": "5c541b1af51b735055e4bc1b76a6f1b8"}, {"key": "toolHref", "hash": "46fea2955d5b7189c91fc67c7a3105e0"}, {"key": "type", "hash": "4553be2119d862322dd6fec6bb385401"}], "hash": "0bc207d6de2e601fcee6c38df3e8b159d6dc967f8c979c00a455a14072f0874d", "viewCount": 42, "enchantments": {"dependencies": {"references": [], "modified": "2020-07-17T16:16:01", "rev": 2}, "score": {"value": -0.2, "vector": "NONE", "modified": "2020-07-17T16:16:01", "rev": 2}, "vulnersScore": -0.2}, "objectVersion": "1.3", "toolHref": "https://github.com/google/tsunami-security-scanner"}

{}