Osmedeus : Security Framework For Reconnaissance & Vulnerability Scanning

Osmedeus allows you automated run the collection of awesome tools to reconnaissance and vulnerability scanning against the target.

Installation

git clone https://github.com/j3ssie/Osmedeus
cd Osmedeus
./install.sh

This install only focus on Kali linux, check more install on Wiki page

How To Use

If you have no idea what are you doing just type the command below or check out the Advanced Usage

./osmedeus.py -t example.com

Features

  • Subdomain Scan.
  • Subdomain TakeOver Scan.
  • Screenshot the target.
  • Basic recon like Whois, Dig info.
  • Web Technology detection.
  • IP Discovery.
  • CORS Scan.
  • SSL Scan.
  • Wayback Machine Discovery.
  • URL Discovery.
  • Headers Scan.
  • Port Scan.
  • Vulnerable Scan.
  • Seperate workspaces to store all scan output and details logging.
  • REST API.
  • React Web UI.
  • Support Continuous Scan.
  • Slack notifications.
  • Easily view report from commnad line.

Also Read – KRF : A Kernelspace Randomized Faulter

Example Commands

==>normal routine
./osmedeus.py -t example.com

==>normal routine but slow speed on subdomain module
./osmedeus.py -t example.com –slow ‘subdomain’

==>direct mode examples
./osmedeus.py -m portscan -i “1.2.3.4/24”

./osmedeus.py -m portscan -I list_of_targets.txt -t result_folder

./osmedeus.py -m “portscan,vulnscan” -i “1.2.3.4/24” -t result_folder

./osmedeus.py -m “assets” -i “example.com”
./osmedeus.py -m “assets,dirb” -i “example.com”

==>report mode
./osemdeus.py -t example.com –report list
./osemdeus.py -t example.com –report sum
./osemdeus.py -t example.com -m subdomain –report short
./osemdeus.py -t example.com -m “subdomain, portscan” –report full

More Options

==>Basic Usage

python3 osmedeus.py -t
python3 osmedeus.py -T
python3 osmedeus.py -m [-i |-I ] [-t workspace_name]
python3 osmedeus.py –report -t [-m ]

==>Advanced Usage

[*] List all module
python3 osmedeus.py -M

[*] List all report mode
python3 osmedeus.py –report help

[*] Running with specific module
python3 osmedeus.py -t -m -i

[*] Example command
python3 osmedeus.py -m subdomain -t example.com
python3 osmedeus.py -t example.com –slow “subdomain”
python3 osmedeus.py -t sample2 -m vuln -i hosts.txt
python3 osmedeus.py -t sample2 -m dirb -i /tmp/list_of_hosts.txt

==>Remote Options

–remote REMOTE Remote address for API, (default: https://127.0.0.1:5000)
–auth AUTH Specify authentication e.g: –auth=”username:password”
See your config file for more detail (default: core/config.conf)
–client just run client stuff in case you ran the flask server before

==>More options

–update Update lastest from git -c CONFIG, –config CONFIG
Specify config file (default: core/config.conf)
-w WORKSPACE, –workspace WORKSPACE : Custom workspace folder
-f, –force force to run the module again if output exists
-s, –slow “all” : All module running as slow mode
-s, –slow “subdomain” : Only running slow mode in subdomain module
–debug Just for debug purpose

Demo

Screenshot

Disclaimer

Most of this tool done by the authors of the tool that list in CREDITS.md. I’m just put all the pieces together, plus some extra magic. This tool is for educational purposes only. You are responsible for your own actions. If you mess something up or break any laws while using this software, it’s your fault, and your fault only.

R K

Recent Posts

How Does a Firewall Work Step by Step

How Does a Firewall Work Step by Step? What Is a Firewall and How Does…

1 day ago

ROADTools: The Modern Azure AD Exploration Framework

ROADTools is a powerful framework designed for exploring and interacting with Microsoft Azure Active Directory…

4 days ago

How to Enumerate Microsoft 365 Groups Using PowerShell and Python

Microsoft 365 Groups (also known as M365 Groups or Unified Groups) are at the heart…

4 days ago

SeamlessPass: Using Kerberos Tickets to Access Microsoft 365

SeamlessPass is a specialized tool designed to leverage on-premises Active Directory Kerberos tickets to obtain…

5 days ago

PPLBlade: Advanced Memory Dumping and Obfuscation Tool

PPLBlade is a powerful Protected Process Dumper designed to capture memory from target processes, hide…

5 days ago

HikPwn : Simple Scanner For Hikvision Devices With Basic Vulnerability Scanning

HikPwn: Comprehensive Guide to Scanning Hikvision Devices for Vulnerabilities If you’re searching for an efficient…

6 days ago