scanning

package
v0.1.4 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Aug 29, 2023 License: MIT Imports: 16 Imported by: 0

README

Scanning Examples

This section contains some useful funtions which can be used during recon

Get all subdomains of a domain

  • It uses some third-party APIs like crt.sh, AlienVault, HackerTarget (don't use domains from CTFs because they don't exist)
package main

import (
  "fmt"
  "log"

  "github.com/D3Ext/maldev/scanning"
)

func main(){
  subdoms, err := scanning.GetAllSubdomains("hackthebox.com") // func GetAllSubdomains(dom string) ([]string, error)
  if err != nil {
    log.Fatal(err)
  }
}

Whois (domain)

package main

import (
  "fmt"
  "log"

  "github.com/D3Ext/maldev/scanning"
)

func main(){
  data, err := scanning.WhoisDomain("google.com")
  if err != nil {
    log.Fatal(err)
  }

  fmt.Println(data.Domain)
}

Check if URL is up

package main

import (
  "fmt"

  "github.com/D3Ext/maldev/scanning"
)

func main(){
  timeout := 1000 // Url timeout must be especified in milliseconds, however you can use "scanning.UrlTimeout" to use default timeout
  check := scanning.CheckUrl("https://google.com", timeout) // func CheckUrl(url_to_check string, timeout int) (bool)
  fmt.Println(check)
}

Get full URL of domain

package main

import (
  "fmt"
  "log"

  "github.com/D3Ext/maldev/scanning"
)

func main(){
  url, err := scanning.GetHttpFromDomain("google.com", 1000) // GetHttpFromDomain(domain string, timeout int) (string, error)
  if err != nil {
    log.Fatal(err)
  }

  fmt.Println(url)
}

Hostscan

package main

import (
  "fmt"

  "github.com/D3Ext/maldev/scanning"
)

func main(){
  ips, err := scanning.Hostscan("192.168.1.0/24", 300) // Hostscan(ip_range string, ping_timeout int) ([]string, error)
  if err != nil {
    log.Fatal(err)
  }
  fmt.Println(ips)
}

Check if IP is up

package main

import (
  "fmt"
  "log"

  "github.com/D3Ext/maldev/scanning"
)

func main(){
  timeout := 1200 // Timeout in milliseconds, you can use "scanning.PingTimeout" as a default timeout
  check, err := scanning.CheckIfUp("192.168.1.6", timeout)
  if err != nil {
    log.Fatal(err)
  }
  fmt.Println(check)
}

Scan ports of ip

package main

import (
  "fmt"
  "log"

  "github.com/D3Ext/maldev/scanning"
)

func main(){
  all_ports, err := scanning.PortscanAll("192.168.1.6") // Scan all ports of an ip (65535)
  if err != nil {
    log.Fatal(err)
  }
  fmt.Println(all_ports)

  common_ports, err := scanning.PortscanCommon("192.168.1.6") // Scan most common ports of an ip
  if err != nil {
    log.Fatal(err)
  }
  fmt.Println(common_ports)
}

Check if TCP/UDP port is open

package main

import (
  "fmt"

  "github.com/D3Ext/maldev/scanning"
)

func main(){
  check := scanning.CheckOpenTcpPort("192.168.1.6", "8080") // func CheckOpenTcpPort(ip string, port string) (bool)
  fmt.Println(check)

  check2 := scanning.CheckOpenUdpPort("192.168.1.6", "53") // func CheckOpenUdpPort(ip string, port string) (bool)
  fmt.Println(check2)
}

Documentation

Index

Constants

View Source 
const (
	PingTimeout = 1200
)

Variables

This section is empty.

Functions

func CheckIfUp 

func CheckIfUp(ip_to_check string, timeout int) (bool, error)

func CheckOpenTcpPort 

func CheckOpenTcpPort(ip string, port string) bool

func CheckOpenUdpPort 

func CheckOpenUdpPort(ip string, port string) bool

func CheckUrl 

func CheckUrl(url_to_check string, timeout int) bool

func GetAlienVault 

func GetAlienVault(dom string) ([]string, error)

func GetAllSubdomains 

func GetAllSubdomains(dom string) ([]string, error)

func GetCrt 

func GetCrt(dom string) ([]string, error)

func GetHackerTarget 

func GetHackerTarget(dom string) ([]string, error)

func GetHttpFromDomain 

func GetHttpFromDomain(domain string, timeout int) (string, error)

func Hostscan 

func Hostscan(ip_range string, ping_timeout int) ([]string, error)

func PortscanAll 

func PortscanAll(ip string) ([]int, error)

func PortscanCommon 

func PortscanCommon(ip string) ([]int, error)

func Wappalyzer added in v0.1.2 

func Wappalyzer(url string) ([]string, error)

func WhoisDomain added in v0.1.2 

func WhoisDomain(dom string) (wp.WhoisInfo, error)

Types

type AlienvaultResponse 

type AlienvaultResponse struct {
	PassiveDNS []struct {
		Hostname string `json:"hostname"`
	} `json:"passive_dns"`
}

type CTLog 

type CTLog struct {
	IssuerCaID        int    `json:"issuer_ca_id"`
	IssuerName        string `json:"issuer_name"`
	NameValue         string `json:"name_value"`
	MinCertID         int    `json:"min_cert_id"`
	MinEntryTimestamp string `json:"min_entry_timestamp"`
	NotBefore         string `json:"not_before"`
	NotAfter          string `json:"not_after"`
}

type CTLogs 

type CTLogs []*CTLog

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.