Ostorlab is a Security testing requires often chaining tools together, taking the output from one, mangling it, filtering it and then pushing it to another tool. Several tools have tried to make the process less painful. Ostorlab addresses the same challenge by simplifying the hardest part and automating the boring and tedious part.
To do that, Ostorlab focuses on the following:
To do that, Ostorlab ships with:
For some tasks, like running scans locally, Docker is required. To install docker, please see the following instructions.
Ostorlab is shipped as a Python package on Pypi. To install, simply run the following command if you have pip
already installed.
pip install -U ostorlab
To perform your first scan, simply run the following command:
ostorlab scan run –install –agent agent/ostorlab/nmap –agent agent/ostorlab/openvas –agent agent/ostorlab/tsunami –agent agent/ostorlab/nuclei ip 8.8.8.8
This command will download and install the following scanning agents:
agent/ostorlab/nmap
agent/ostorlab/tsunami
agent/ostorlab/nuclei
agent/ostorlab/openvas
And will scan the target IP address 8.8.8.8
To check the scan status:
ostorlab scan list
Once the scan has completed, to access the scan results:
ostorlab vulnz list –scan-id
ostorlab vulnz describe –vuln-id
Ostorlab lists all agents on a public store where you can search and also publish your own agents.
Pystinger is a Python-based tool that enables SOCKS4 proxying and port mapping through webshells. It…
Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…
Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…
If you are working with Linux or writing bash scripts, one of the most common…
What is a bash case statement? A bash case statement is a way to control…
Why Do We Check Files in Bash? When writing a Bash script, you often work…