#!/usr/bin/env bash#用法: ./enum.sh domain(dot)comTARGET=$1python3 subscraper.py $TARGET -o subdomains.txtcat subdomains.txt |grep -v "$(cat out_of_scope.txt)"|httprobe

#!/bin/bash
## Execute as wget -O - https://gist.github.com/LuD1161/66f30da6d8b6c1c05b9f6708525ea885/raw | bash # # Thanks JeffreyShran for the gist url thing### It's debian based, so for centos and likewise you have to change apt to yum and similarly #InstallationStartTime=$(date +%s)#### COLORS #### ( Taken from : https://misc.flogisoft.com/bash/tip_colors_and_formatting )NORMAL='e[0m'RED='e[31m'LIGHT_GREEN='e[92m'LIGHT_YELLOW='e[93m'BLINK='e[5m'BOLD='e[1m'UNDERLINE='e[4m'###############mkdir ~/toolsapt update -yq && apt upgrade -yq  # Do it manually, cause there are some whiptail menus that aren't automated yet and                            # thus cause problems# change python3 to python and set priority of 10 - https://stackoverflow.com/a/50331137update-alternatives --install /usr/bin/python python /usr/bin/python3 10apt install -yq wget unzip curl screen git gcc make libpcap-dev python3-pip clang nmap python3-dev build-essential libssl-dev libffi-dev python3-venv p7zip-full p7zip-rar tree software-properties-commonapt-add-repository -y ppa:rael-gc/rvmpip3 install rdpy==1.3.2timedatectl set-timezone Asia/Kolkataapt install -y golang-go
cd ~/toolsgit clone https://github.com/jordanpotti/CloudScraper.git && echo -e "n${LIGHT_YELLOW}Installing CloudScraper's requirements.txt ${NORMAL}n"pip3 install -r CloudScraper/requirements.txt
echo -e "n${LIGHT_YELLOW}Installing SubFinder${NORMAL}n"GO111MODULE=on go get -v -u github.com/projectdiscovery/subfinder/v2/cmd/subfinder
cd ~/toolsgit clone https://github.com/blechschmidt/massdns.git && echo -e "n${LIGHT_YELLOW}Making and copying massdns to /usr/bin/ ${NORMAL}n"cd massdnsmakeif [ $? -eq 0 ]; then  mv /root/tools/massdns/bin/massdns /usr/bin/ && cd - # go back to main directory  mkdir /root/tools/massdns_lists  mv /root/tools/massdns/lists/* /root/tools/massdns_lists/  rm -rf massdns  echo -e "n${LIGHT_YELLOW}Installed massdns ${NORMAL}n"else  echo -e "n${LIGHT_YELLOW}Try reinstalling massdns manually ${NORMAL}n"  echo -e "n${LIGHT_YELLOW}RUN : git clone https://github.com/blechschmidt/massdns.git ${NORMAL}n"  echo -e "n${LIGHT_YELLOW}And then cd into the directory and issue make command ${NORMAL}n"fi
echo -e "n${LIGHT_YELLOW}Proceeding with installation of masscan ${NORMAL}n"git clone https://github.com/robertdavidgraham/masscan.git && echo -e "n${LIGHT_YELLOW}Making masscan ${NORMAL}n"cd masscanmake -jif [ $? -eq 0 ]; then  mv ./bin/masscan /usr/bin/ && cd - # go back to main directory  rm -rf masscan && echo -e "n${LIGHT_YELLOW}Deleted masscan github local clone ${NORMAL}n"  echo -e "n${LIGHT_YELLOW}Installed masscan ${NORMAL}n"else  echo -e "n${LIGHT_YELLOW}Try reinstalling masscan manually ${NORMAL}n"  echo -e "n${LIGHT_YELLOW}RUN : git clone https://github.com/robertdavidgraham/masscan.git ${NORMAL}n"  echo -e "n${LIGHT_YELLOW}And then cd into the directory and issue make command ${NORMAL}n"fi
echo -e "n${LIGHT_YELLOW}Installing of ffuf${NORMAL}n"go get -v -u github.com/ffuf/ffuf
echo -e "n${LIGHT_YELLOW}Installing subjack${NORMAL}n"go get -v -u github.com/haccer/subjack

go get -v -u github.com/tomnomnom/waybackurls && echo -e "n${LIGHT_YELLOW}Got waybackurls ;) ${NORMAL}n"mv ~/go/bin/waybackurls /usr/bin/if [ $? -eq 0 ]; then  echo -e "n${LIGHT_YELLOW}Installed waybackurls ${NORMAL}n"else  echo -e "n${LIGHT_YELLOW}Try reinstalling waybackurls manually ${NORMAL}n"  echo -e "n${LIGHT_YELLOW}RUN : go get github.com/tomnomnom/waybackurls && echo "Got waybackurls ;)" ${NORMAL}n"  echo -e "n${LIGHT_YELLOW}Then move the binary from ~/go/bin/ to /usr/bin/ ${NORMAL}n"fi
git clone https://github.com/x90skysn3k/brutespray.git && echo -e "n${LIGHT_YELLOW}Cloned Brutespray ${NORMAL}n"
apt install amass -yif [ $? -eq 0 ]; then  echo -e "n${LIGHT_YELLOW}Installed amass ${NORMAL}n"  rm amass.zipelse  echo -e "n${LIGHT_YELLOW}Try redownloading amass ${NORMAL}n"fi
apt-get install -yq bc locate dnsutils apache2
cd ~/tools & echo -e "n${LIGHT_YELLOW}Cloning JS-scan ${NORMAL}n"git clone https://github.com/zseano/JS-Scan.gitchmod o+x JS-Scanln -s "/root/tools/JS-Scan" /var/www/html/JS-Scan
cd ~/tools && echo -e "n${LIGHT_YELLOW}Cloning bucketkicker ${NORMAL}n"git clone https://github.com/craighays/bucketkicker.gitpip3 install -r ~/tools/bucketkicker/requirements.txt
echo -e "n${LIGHT_YELLOW}Installing trufflehog ${NORMAL}n"pip3 install truffleHog
echo -e "n${LIGHT_YELLOW}Installing wafw00f ${NORMAL}n"pip3 install wafw00f
echo -e "n${LIGHT_YELLOW}Installing whatweb ${NORMAL}n"apt-get install -yq whatweb
echo -e "n${LIGHT_YELLOW}Installing snallygaster ${NORMAL}n"pip3 install snallygaster
cd ~/tools && echo -e "n${LIGHT_YELLOW}Cloning CloudFlare-Enum ${NORMAL}n"git clone https://github.com/mandatoryprogrammer/cloudflare_enum.git
cd ~/tools && echo -e "n${LIGHT_YELLOW}Cloning AWS-Bruteforcer ${NORMAL}n"git clone https://github.com/Ucnt/aws-s3-data-finder.gitcd aws-s3-data-finder && pip3 install -r requirements.txtcd ~/tools
# Although cloning Goohak and GoogD0rker but need to make a workaround for google's IP restriction on advanced search# Cause these are not working for meecho -e "n${LIGHT_YELLOW}For Goohak and GoogD0rker pip3 install google ${NORMAL}n"pip3 install google
cd ~/tools && echo -e "n${LIGHT_YELLOW}Cloning Goohak ${NORMAL}n"git clone https://github.com/1N3/Goohak.gitchmod +x Goohak/goohak 
cd ~/tools && echo -e "n${LIGHT_YELLOW}Cloning GoogD0rker${NORMAL}n"# Do not use currently it's a WIPgit clone https://github.com/ZephrFish/GoogD0rker.git
cd ~/tools && echo -e "n${LIGHT_YELLOW}Installing brakeman : For RoR applications ${NORMAL}n"# Alternative : gem install brakeman # Using git method so as to install the latest brakemangit clone https://github.com/presidentbeef/brakeman.gitcd brakemangem build brakeman.gemspecyes | gem install brakeman-*.gemmv ~/tools/brakeman/bin/brakeman /usr/local/bin/mv ~/tools/brakeman/bin/codeclimate-brakeman /usr/local/bin/rm -rf ~/tools/brakeman
cd ~/tools && echo -e "n${LIGHT_YELLOW}Installing gitleaks${NORMAL}n"go get -v -u github.com/zricethezav/gitleaks

cd ~/tools && echo -e "n${LIGHT_YELLOW}Downloading aquatone binary${NORMAL}n"echo -e "n${LIGHT_YELLOW}Check the latest binaries at : https://github.com/michenriksen/aquatone/releases${NORMAL}n"curl -s https://api.github.com/repos/michenriksen/aquatone/releases/latest | grep "browser_download_url.*linux_amd" | cut -d : -f 3- | tr -d " | wget -qi -unzip aquatone_linux_amd64*.ziprm aquatone_linux_amd64*.zip

cd ~/tools && echo -e "n${LIGHT_YELLOW}Installing chromium for aquatone${NORMAL}n"apt-get install -y chromium
cd ~/tools && echo -e "n${LIGHT_YELLOW}Getting all wordlists from gdrive, wordlists contain jhaddix's all.txt and massdns as well as subrute's names.txt  ${NORMAL}n"mkdir wordlistswget "https://drive.google.com/uc?export=download&id=1X1TTZhxfiLyqrI1Vrw0_DdhFfl3LzsbX" -O all_resolvers.zipunzip -o all_resolvers.zip -d wordlistsrm all_resolvers.zip
cd ~/tools && echo -e "n${LIGHT_YELLOW}Downloading dirbuster wordlists ${NORMAL}n"wget "https://drive.google.com/uc?export=download&id=1KbxiE_RFZCDpBDKAJbWeG6NXe7YNtCIc" -O all_wordlists.zipunzip -o all_wordlists.zip -d wordlistsrm all_wordlists.zip
# Finally when all is set and folder's deleted# Get the scripts, it's in a gistecho -e "n${LIGHT_YELLOW}Getting the scripts ;) ${NORMAL}n"wget "https://codeload.github.com/gist/8182f825bd91344ce4c2bf5e2acdf2b3/zip/9bd795e4824794d0a61f8805d48572b833b10353" -O scripts.zipunzip -j scripts.zip -d scriptschmod +x ~/tools/scripts/*rm scripts.zip 
cd ~/toolswget -O master_script.sh "https://gist.github.com/LuD1161/0a85aef8e27e4a7644fd4b69efb62caa/raw"chmod +x master_script.shwget -O nmap-input-file-creator.py "https://gist.github.com/LuD1161/dbc44c6c028de2f0cbae9e737af5aa1e/raw"chmod +x nmap-input-file-creator.pyapt autoremove -y
echo -e "n${LIGHT_YELLOW}Building nmap from git ${NORMAL}n"cd ~/toolsgit clone https://github.com/nmap/nmap.gitcd nmap && sh ./configuremakemake install
echo -e "n${LIGHT_YELLOW}Installing wpscan requirements ${NORMAL}n"apt-get -yq install libcurl4-openssl-dev libxml2 libxml2-dev libxslt1-dev ruby-dev libgmp-dev zlib1g-dev gcc git ruby make software-properties-commonapt-add-repository -y ppa:rael-gc/rvmapt-get -yq updateapt-get -yq install rvmcd ~source /etc/profile.d/rvm.shrvm install 2.5.1rvm use 2.5.1 --defaultecho -e "gem: --no-ri --no-rdoc" > ~/.gemrc#echo -e "source /usr/local/rvm/scripts/rvm" >> ~/.bashrccd ~/toolsecho -e "${LIGHT_YELLOW}Cloning wpscan ${NORMAL}"git clone https://github.com/wpscanteam/wpscan.gitcd wpscanyes | gem install bundlerbundle install --without test

echo -e "${LIGHT_YELLOW}Setting ulimit to 100000 ${LIGHT_GREEN}( so as to make ffuf work fine with higher number of threads ) ${NORMAL}"echo "ulimit -n 100000" >> ~/.bashrc
### Install searchsploit ####echo -e "n${LIGHT_YELLOW}Installing searchsploit${NORMAL}n"mkdir /optgit clone https://github.com/offensive-security/exploitdb.git /opt/exploitdbsed 's|path_array+=(.*)|path_array+=("/opt/exploitdb")|g' /opt/exploitdb/.searchsploit_rc > ~/.searchsploit_rcln -sf /opt/exploitdb/searchsploit /usr/local/bin/searchsploit
### Downloading SecLists ####echo -e "n${LIGHT_YELLOW}Downloading SecLists${NORMAL}n"cd ~/toolsgit clone https://github.com/danielmiessler/SecLists.git
InstallationCompletionTime=$(date +%s)echo -e "n${LIGHT_YELLOW}Setting up GOPATH and GO bin in path ${NORMAL}n"echo "export GOPATH=$HOME/go" >> $HOME/.profileecho "PATH=$PATH:/root/tools:$GOPATH/bin" >> $HOME/.profilesource $HOME/.profilesource $HOME/.bashrcecho -e "${LIGHT_GREEN}Setup Complete Bug Bounty tools :) :) ${NORMAL}n"echo -e "${BOLD}Usage : ./master_script.sh domain basic|advanced${NORMAL}n"echo -e "Total Time taken : ${LIGHT_GREEN}$(( $InstallationCompletionTime-$InstallationStartTime )) ${NORMAL}seconds"echo -e "n${LIGHT_YELLOW}e.g. ./master_script.sh example.com basic|advanced ${NORMAL}n"echo -e "n"echo -e "${RED}Don't forget to add subfinder's config.json at ~/.config/subfinder/config.json${NORMAL}n"echo -e "n${LIGHT_YELLOW}Also check for aquatone's latest binaries at : https://github.com/michenriksen/aquatone/releases${NORMAL}n"echo -e "n${LIGHT_YELLOW}Enjoy :)  ${NORMAL}n"

#!/usr/bin/env bash
TARGET=$1if ! [ $TARGET ]; then  echo "[!] No target provided."  echo ">> $0 <example.com>"  exit 1fi
OUT_DIR=$(pwd)TOOLS_DIR=$(pwd)/tools
echo [*] Executing SubWalker against: ${TARGET}

# Modify the individual commands as needed, add API keys and other resources to# get the best results. Happy Hunting!
cd $TOOLS_DIR/subscraperecho "[*] Launching SubScraper"python3 subscraper.py $TARGET -o $OUT_DIR/subscraper.txt &> /dev/null &
cd $TOOLS_DIR/Sublist3recho "[*] Launching Sublist3r"python3 sublist3r.py -d $TARGET -o $OUT_DIR/sublist3r.txt &> /dev/null &
cd $TOOLS_DIR/assetfinderecho "[*] Launching assetfinder"./assetfinder --subs-only $TARGET > $OUT_DIR/assetfinder.txt &
echo "[*] Waiting until all scripts complete..."wait
cd $OUT_DIR(cat subscraper.txt sublist3r.txt assetfinder.txt | sort -u) > subwalker.txtrm subscraper.txt sublist3r.txt assetfinder.txt
RES=$(cat subwalker.txt | wc -l)echo -e "n[+] SubWalker complete with ${RES} results"echo "[+] Output saved to: $OUT_DIR/subwalker.txt"exit 0