Jump to content
YOUR-AD-HERE
HOSTING
TOOLS
SERVICE

0x1

Recommended Posts

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

This is the hidden content, please

Attack Surface Mapper is a reconnaissance tool that uses a mixture of open source intellgence and active techniques to expand the attack surface of your target. You feed in a mixture of one or more domains, subdomains and IP addresses and it uses numerous techniques to find more targets. It enumerates subdomains with bruteforcing and passive lookups, Other IPs of the same network block owner, IPs that have multiple domain names pointing to them and so on.

Once the target list is fully expanded it performs passive reconnaissance on them, taking screenshots of websites, generating visual maps, looking up credentials in public breaches, passive port scanning with Shodan and scraping employees from LinkedIn.

Demo

Spoiler

 

Example run command

This is the hidden content, please

Optional Parameters

Additional optional parameters can also be set to choose to include active reconnaissance modules in addition to the default passive modules.

This is the hidden content, please

Setup && Download

As this is a Python based tool, it should theoretically run on Linux, ChromeOS (

This is the hidden content, please
), macOS and Windows.

[1] Download AttackSurfaceMapper

This is the hidden content, please

[2] Install Python dependencies

This is the hidden content, please

[3] Add optional API keys to enable more data gathering

Register and obtain an API key from:

This is the hidden content, please

Edit and enter the keys in keylist file

This is the hidden content, please

 

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.