golismero - open-source framework for security testing.

Overview

golismero is an open-source framework for security testing. It's currently geared towards web security, but it can easily be expanded to other kinds of scans.

How to get this tool

To use this tool, please use a method listed below.

In a Linux (Debian OS), run the following command(s).

sudo apt install python2.7 python2.7-dev python-pip python-docutils git perl nmap sslscan cd /opt git clone https://github.com/golismero/golismero.git cd golismero pip install -r requirements.txt pip install -r requirements_unix.txt ln -s ${PWD}/golismero.py /usr/bin/golismero exit

 

If you have an API key for Shodan, or an OpenVAS server or SpiderFoot server you want to integrate with GoLismero, run the following commands:

 

mkdir ~/.golismero

touch ~/.golismero/user.conf

chmod 600 ~/.golismero/user.conf

nano ~/.golismero/user.conf

 

At the editor, add the following sections to the file, as appropriate:

 

# [shodan:Configuration]
  apikey = <INSERT YOUR SHODAN API KEY HERE>

 

# [openvas]
host = <INSERT THE OPENVAS HOST HERE>
user = <INSERT THE OPENVAS USERNAME HERE>
*password = <INSERT THE OPENVAS PASSWORD HERE>

# [spiderfoot]
url = <INSERT THE SPIDERFOOT URL HERE>

 

Download directly from the following link:

 

How to execute

golismero scan <target>

 

References:

 

-----

Next steps:

 

This article was contributed by Jason Jacobs from Guyana. Jason is a member of the Caribbean CSPA.

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Article is closed for comments.