Shulou(Shulou.com)06/01 Report--

Leviathan is a large-scale audit toolkit with extensive service discovery, robust, SQ ​​ L injection detection and run custom vulnerability exploitation capabilities. It includes open source tools such as masscan,ncrack,dsss and gives you the flexibility to combine them.

The main goal of the project is to review as many systems as possible nationally or within a wide range of IP.

Main features:

Discovery: through Censys's Shodan, discover FTP,SSH,Telnet,RDP,MYSQL services running in a specific country or within the scope of IP. You can also manually discover running services on the IP scope through the integrated "masscan" tool.

Brief presentation: https://asciinema.org/a/617bsxl1y84bav9f5bcwllx7r

Blasting: you can explode the discovery service through the integrated "ncrack" tool. It contains a list of words for the most popular combinations and default passwords for specific services.

Brief presentation: https://asciinema.org/a/43y2j38zu7hbnuahrj233d5r0

Remote command execution: you can run system commands remotely on an infected device.

Brief presentation: https://asciinema.org/a/0xcrhd12f2lpkbktjldwtab16

SQL injection scanner: a SQL injection vulnerability has been found on websites with country-specific extensions or custom Google Dork.

Brief presentation: https://asciinema.org/a/2mwfmd9afsuyg5p0vzcq5e6si

Exploit specific vulnerabilities: discover vulnerable targets with Shodan,Censys or Masscan, and exploit these vulnerabilities on a large scale by providing your own vulnerabilities or using preincluded.

Brief presentation: https://asciinema.org/a/9uqsjvnru780h0ue6ok9j9ktb

Integration tool

Masscan:Robert David Graham is a very fast TCP port scanner. Leviathan uses masscan to detect services within a large IP range. Https://github.com/robertdavidgraham/masscan

Ncrack:Ncrack is a high-speed network authentication cracking tool. Leviathan uses ncrack to provide powerful services such as FTP,SSH,RDP,Telnet,MYSQL. Https://github.com/nmap/ncrack

DSSS (Damn Small SQLi Scanner): DSSS is a fully functional and minimal SQL injection vulnerability scanner for Miroslav Stampar. Leviathan uses DSSS to identify SQL injection vulnerabilities on specific URL. Https://github.com/stamparm/DSSS

Installation

Git clone https://github.com/leviathan-framework/leviathan.git

Cd leviathan

Pip install-r requirements.txt

The installation is successful at this point.

Python leviathan.py can be run.

The ps:shodan module is really slow.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.