├── files ├── 1.png ├── 2.png ├── 3.png ├── 4.png ├── 5.png ├── using.bmp └── admins.ini ├── README.md ├── LICENSE ├── raymond(win).py └── raymond(lin).py /files/1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/m3z0diac/raymond/HEAD/files/1.png -------------------------------------------------------------------------------- /files/2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/m3z0diac/raymond/HEAD/files/2.png -------------------------------------------------------------------------------- /files/3.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/m3z0diac/raymond/HEAD/files/3.png -------------------------------------------------------------------------------- /files/4.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/m3z0diac/raymond/HEAD/files/4.png -------------------------------------------------------------------------------- /files/5.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/m3z0diac/raymond/HEAD/files/5.png -------------------------------------------------------------------------------- /files/using.bmp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/m3z0diac/raymond/HEAD/files/using.bmp -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | 2 | ## Raymond Tool 3 | ![Programmer and Problems solver](https://raw.githubusercontent.com/hamza07-w/raymond/main/files/1.png) 4 | 5 | ## How to use 6 | ``` 7 | git clone https://github.com/hamza07-w/raymond.git 8 | ``` 9 | ``` 10 | cd raymond 11 | ``` 12 | #### Windows 13 | ``` 14 | python raymond(win).py - u 15 | ``` 16 | 17 | #### Linux 18 | ``` 19 | python3 raymond(lin).py - u 20 | ``` 21 | 22 | #### Ps 23 | ``` 24 | you have to register at hacker target Platforme to get the API key and replace it in the source 25 | ``` 26 | 27 | ## LICENCE 28 | [MIT](https://github.com/hamza07-w/raymond/blob/main/LICENSE) 29 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- 1 | MIT License 2 | 3 | Copyright (c) 2021 HAMZA ELANSARI 4 | 5 | Permission is hereby granted, free of charge, to any person obtaining a copy 6 | of this software and associated documentation files (the "Software"), to deal 7 | in the Software without restriction, including without limitation the rights 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 9 | copies of the Software, and to permit persons to whom the Software is 10 | furnished to do so, subject to the following conditions: 11 | 12 | The above copyright notice and this permission notice shall be included in all 13 | copies or substantial portions of the Software. 14 | 15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE 21 | SOFTWARE. 22 | -------------------------------------------------------------------------------- /files/admins.ini: -------------------------------------------------------------------------------- 1 | admin/,administrator/,admin1/,admin2/,admin3/,admin4/,admin5/,usuarios/,usuario/,administrator/,moderator/,webadmin/,adminarea/,bb-admin/,adminLogin/,admin_area/,panel-administracion/,instadmin/,memberadmin/,administratorlogin/,adm/,admin/account.php,admin/index.php,admin/login.php,admin/admin.php,admin/account.php,admin_area/admin.php,admin_area/login.php,siteadmin/login.php,siteadmin/index.php,siteadmin/login.html,admin/account.html,admin/index.html,admin/login.html,admin/admin.html,admin_area/index.php,bb-admin/index.php,bb-admin/login.php,bb-admin/admin.php,admin/home.php,admin_area/login.html,admin_area/index.html,admin/controlpanel.php,admin.php,admincp/index.asp,admincp/login.asp,admincp/index.html,admin/account.html,adminpanel.html,webadmin.html,webadmin/index.html,webadmin/admin.html,webadmin/login.html,admin/admin_login.html,admin_login.html,panel-administracion/login.html,admin/cp.php,cp.php,administrator/index.php,administrator/login.php,nsw/admin/login.php,webadmin/login.php,admin/admin_login.php,admin_login.php,administrator/account.php,administrator.php,admin_area/admin.html,pages/admin/admin-login.php,admin/admin-login.php,admin-login.php,bb-admin/index.html,bb-admin/login.html,acceso.php,bb-admin/admin.html,admin/home.html,login.php,modelsearch/login.php,moderator.php,moderator/login.php,moderator/admin.php,account.php,pages/admin/admin-login.html,admin/admin-login.html,admin-login.html,controlpanel.php,admincontrol.php,admin/adminLogin.html,adminLogin.html,admin/adminLogin.html,home.html,rcjakar/admin/login.php,adminarea/index.html,adminarea/admin.html,webadmin.php,webadmin/index.php,webadmin/admin.php,admin/controlpanel.html,admin.html,admin/cp.html,cp.html,adminpanel.php,moderator.html,administrator/index.html,administrator/login.html,user.html,administrator/account.html,administrator.html,login.html,modelsearch/login.html,moderator/login.html,adminarea/login.html,panel-administracion/index.html,panel-administracion/admin.html,modelsearch/index.html,modelsearch/admin.html,admincontrol/login.html,adm/index.html,adm.html,moderator/admin.html,user.php,account.html,controlpanel.html,admincontrol.html,panel-administracion/login.php,wp-login.php,adminLogin.php,admin/adminLogin.php,home.php,admin.php,adminarea/index.php,adminarea/admin.php,adminarea/login.php,panel-administracion/index.php,panel-administracion/admin.php,modelsearch/index.php,modelsearch/admin.php,admincontrol/login.php,adm/admloginuser.php,admloginuser.php,admin2.php,admin2/login.php,admin2/index.php,usuarios/login.php,adm/index.php,adm.php,affiliate.php,adm_auth.php,memberadmin.php,administratorlogin.php,admin/,administrator/,admin1/,admin2/,admin3/,admin4/,admin5/,moderator/,webadmin/,adminarea/,bb-admin/,adminLogin/,admin_area/,panel-administracion/,instadmin/,memberadmin/,administratorlogin/,adm/,account.asp,admin/account.asp,admin/index.asp,admin/login.asp,admin/admin.asp,admin_area/admin.asp,admin_area/login.asp,admin/account.html,admin/index.html,admin/login.html,admin/admin.html,admin_area/admin.html,admin_area/login.html,admin_area/index.html,admin_area/index.asp,bb-admin/index.asp,bb-admin/login.asp,bb-admin/admin.asp,bb-admin/index.html,bb-admin/login.html,bb-admin/admin.html,admin/home.html,admin/controlpanel.html,admin.html,admin/cp.html,cp.html,administrator/index.html,administrator/login.html,administrator/account.html,administrator.html,login.html,modelsearch/login.html,moderator.html,moderator/login.html,moderator/admin.html,account.html,controlpanel.html,admincontrol.html,admin_login.html,panel-administracion/login.html,admin/home.asp,admin/controlpanel.asp,admin.asp,pages/admin/admin-login.asp,admin/admin-login.asp,admin-login.asp,admin/cp.asp,cp.asp,administrator/account.asp,administrator.asp,acceso.asp,login.asp,modelsearch/login.asp,moderator.asp,moderator/login.asp,administrator/login.asp,moderator/admin.asp,controlpanel.asp,admin/account.html,adminpanel.html,webadmin.html,pages/admin/admin-login.html,admin/admin-login.html,webadmin/index.html,webadmin/admin.html,webadmin/login.html,user.asp,user.html,admincp/index.asp,admincp/login.asp,admincp/index.html,admin/adminLogin.html,adminLogin.html,admin/adminLogin.html,home.html,adminarea/index.html,adminarea/admin.html,adminarea/login.html,panel-administracion/index.html,panel-administracion/admin.html,modelsearch/index.html,modelsearch/admin.html,admin/admin_login.html,admincontrol/login.html,adm/index.html,adm.html,admincontrol.asp,admin/account.asp,adminpanel.asp,webadmin.asp,webadmin/index.asp,webadmin/admin.asp,webadmin/login.asp,admin/admin_login.asp,admin_login.asp,panel-administracion/login.asp,adminLogin.asp,admin/adminLogin.asp,home.asp,admin.asp,adminarea/index.asp,adminarea/admin.asp,adminarea/login.asp,admin-login.html,panel-administracion/index.asp,panel-administracion/admin.asp,modelsearch/index.asp,modelsearch/admin.asp,administrator/index.asp,admincontrol/login.asp,adm/admloginuser.asp,admloginuser.asp,admin2.asp,admin2/login.asp,admin2/index.asp,adm/index.asp,adm.asp,affiliate.asp,adm_auth.asp,memberadmin.asp,administratorlogin.asp,siteadmin/login.asp,siteadmin/index.asp,siteadmin/login.html,admin/,administrator/,admin1/,admin2/,admin3/,admin4/,admin5/,usuarios/,usuario/,administrator/,moderator/,webadmin/,adminarea/,bb-admin/,adminLogin/,admin_area/,panel-administracion/,instadmin/,memberadmin/,administratorlogin/,adm/,admin/account.cfm,admin/index.cfm,admin/login.cfm,admin/admin.cfm,admin/account.cfm,admin_area/admin.cfm,admin_area/login.cfm,siteadmin/login.cfm,siteadmin/index.cfm,siteadmin/login.html,admin/account.html,admin/index.html,admin/login.html,admin/admin.html,admin_area/index.cfm,bb-admin/index.cfm,bb-admin/login.cfm,bb-admin/admin.cfm,admin/home.cfm,admin_area/login.html,admin_area/index.html,admin/controlpanel.cfm,admin.cfm,admincp/index.asp,admincp/login.asp,admincp/index.html,admin/account.html,adminpanel.html,webadmin.html,webadmin/index.html,webadmin/admin.html,webadmin/login.html,admin/admin_login.html,admin_login.html,panel-administracion/login.html,admin/cp.cfm,cp.cfm,administrator/index.cfm,administrator/login.cfm,nsw/admin/login.cfm,webadmin/login.cfm,admin/admin_login.cfm,admin_login.cfm,administrator/account.cfm,administrator.cfm,admin_area/admin.html,pages/admin/admin-login.cfm,admin/admin-login.cfm,admin-login.cfm,bb-admin/index.html,bb-admin/login.html,bb-admin/admin.html,admin/home.html,login.cfm,modelsearch/login.cfm,moderator.cfm,moderator/login.cfm,moderator/admin.cfm,account.cfm,pages/admin/admin-login.html,admin/admin-login.html,admin-login.html,controlpanel.cfm,admincontrol.cfm,admin/adminLogin.html,acceso.cfm,adminLogin.html,admin/adminLogin.html,home.html,rcjakar/admin/login.cfm,adminarea/index.html,adminarea/admin.html,webadmin.cfm,webadmin/index.cfm,webadmin/admin.cfm,admin/controlpanel.html,admin.html,admin/cp.html,cp.html,adminpanel.cfm,moderator.html,administrator/index.html,administrator/login.html,user.html,administrator/account.html,administrator.html,login.html,modelsearch/login.html,moderator/login.html,adminarea/login.html,panel-administracion/index.html,panel-administracion/admin.html,modelsearch/index.html,modelsearch/admin.html,admincontrol/login.html,adm/index.html,adm.html,moderator/admin.html,user.cfm,account.html,controlpanel.html,admincontrol.html,panel-administracion/login.cfm,wp-login.cfm,adminLogin.cfm,admin/adminLogin.cfm,home.cfm,admin.cfm,adminarea/index.cfm,adminarea/admin.cfm,adminarea/login.cfm,panel-administracion/index.cfm,panel-administracion/admin.cfm,modelsearch/index.cfm,modelsearch/admin.cfm,admincontrol/login.cfm,adm/admloginuser.cfm,admloginuser.cfm,admin2.cfm,admin2/login.cfm,admin2/index.cfm,usuarios/login.cfm,adm/index.cfm,adm.cfm,affiliate.cfm,adm_auth.cfm,memberadmin.cfm,administratorlogin.cfm,admin/,administrator/,admin1/,admin2/,admin3/,admin4/,admin5/,usuarios/,usuario/,administrator/,moderator/,webadmin/,adminarea/,bb-admin/,adminLogin/,admin_area/,panel-administracion/,instadmin/,memberadmin/,administratorlogin/,adm/,admin/account.js,admin/index.js,admin/login.js,admin/admin.js,admin/account.js,admin_area/admin.js,admin_area/login.js,siteadmin/login.js,siteadmin/index.js,siteadmin/login.html,admin/account.html,admin/index.html,admin/login.html,admin/admin.html,admin_area/index.js,bb-admin/index.js,bb-admin/login.js,bb-admin/admin.js,admin/home.js,admin_area/login.html,admin_area/index.html,admin/controlpanel.js,admin.js,admincp/index.asp,admincp/login.asp,admincp/index.html,admin/account.html,adminpanel.html,webadmin.html,webadmin/index.html,webadmin/admin.html,webadmin/login.html,admin/admin_login.html,admin_login.html,panel-administracion/login.html,admin/cp.js,cp.js,administrator/index.js,administrator/login.js,nsw/admin/login.js,webadmin/login.js,admin/admin_login.js,admin_login.js,administrator/account.js,administrator.js,admin_area/admin.html,pages/admin/admin-login.js,admin/admin-login.js,admin-login.js,bb-admin/index.html,bb-admin/login.html,bb-admin/admin.html,admin/home.html,login.js,modelsearch/login.js,moderator.js,moderator/login.js,moderator/admin.js,account.js,pages/admin/admin-login.html,admin/admin-login.html,admin-login.html,controlpanel.js,admincontrol.js,admin/adminLogin.html,adminLogin.html,admin/adminLogin.html,home.html,rcjakar/admin/login.js,adminarea/index.html,adminarea/admin.html,webadmin.js,webadmin/index.js,acceso.js,webadmin/admin.js,admin/controlpanel.html,admin.html,admin/cp.html,cp.html,adminpanel.js,moderator.html,administrator/index.html,administrator/login.html,user.html,administrator/account.html,administrator.html,login.html,modelsearch/login.html,moderator/login.html,adminarea/login.html,panel-administracion/index.html,panel-administracion/admin.html,modelsearch/index.html,modelsearch/admin.html,admincontrol/login.html,adm/index.html,adm.html,moderator/admin.html,user.js,account.html,controlpanel.html,admincontrol.html,panel-administracion/login.js,wp-login.js,adminLogin.js,admin/adminLogin.js,home.js,admin.js,adminarea/index.js,adminarea/admin.js,adminarea/login.js,panel-administracion/index.js,panel-administracion/admin.js,modelsearch/index.js,modelsearch/admin.js,admincontrol/login.js,adm/admloginuser.js,admloginuser.js,admin2.js,admin2/login.js,admin2/index.js,usuarios/login.js,adm/index.js,adm.js,affiliate.js,adm_auth.js,memberadmin.js,administratorlogin.js,admin/,administrator/,admin1/,admin2/,admin3/,admin4/,admin5/,usuarios/,usuario/,administrator/,moderator/,webadmin/,adminarea/,bb-admin/,adminLogin/,admin_area/,panel-administracion/,instadmin/,memberadmin/,administratorlogin/,adm/,admin/account.cgi,admin/index.cgi,admin/login.cgi,admin/admin.cgi,admin/account.cgi,admin_area/admin.cgi,admin_area/login.cgi,siteadmin/login.cgi,siteadmin/index.cgi,siteadmin/login.html,admin/account.html,admin/index.html,admin/login.html,admin/admin.html,admin_area/index.cgi,bb-admin/index.cgi,bb-admin/login.cgi,bb-admin/admin.cgi,admin/home.cgi,admin_area/login.html,admin_area/index.html,admin/controlpanel.cgi,admin.cgi,admincp/index.asp,admincp/login.asp,admincp/index.html,admin/account.html,adminpanel.html,webadmin.html,webadmin/index.html,webadmin/admin.html,webadmin/login.html,admin/admin_login.html,admin_login.html,panel-administracion/login.html,admin/cp.cgi,cp.cgi,administrator/index.cgi,administrator/login.cgi,nsw/admin/login.cgi,webadmin/login.cgi,admin/admin_login.cgi,admin_login.cgi,administrator/account.cgi,administrator.cgi,admin_area/admin.html,pages/admin/admin-login.cgi,admin/admin-login.cgi,admin-login.cgi,bb-admin/index.html,bb-admin/login.html,bb-admin/admin.html,admin/home.html,login.cgi,modelsearch/login.cgi,moderator.cgi,moderator/login.cgi,moderator/admin.cgi,account.cgi,pages/admin/admin-login.html,admin/admin-login.html,admin-login.html,controlpanel.cgi,admincontrol.cgi,admin/adminLogin.html,adminLogin.html,admin/adminLogin.html,home.html,rcjakar/admin/login.cgi,adminarea/index.html,adminarea/admin.html,webadmin.cgi,webadmin/index.cgi,acceso.cgi,webadmin/admin.cgi,admin/controlpanel.html,admin.html,admin/cp.html,cp.html,adminpanel.cgi,moderator.html,administrator/index.html,administrator/login.html,user.html,administrator/account.html,administrator.html,login.html,modelsearch/login.html,moderator/login.html,adminarea/login.html,panel-administracion/index.html,panel-administracion/admin.html,modelsearch/index.html,modelsearch/admin.html,admincontrol/login.html,adm/index.html,adm.html,moderator/admin.html,user.cgi,account.html,controlpanel.html,admincontrol.html,panel-administracion/login.cgi,wp-login.cgi,adminLogin.cgi,admin/adminLogin.cgi,home.cgi,admin.cgi,adminarea/index.cgi,adminarea/admin.cgi,adminarea/login.cgi,panel-administracion/index.cgi,panel-administracion/admin.cgi,modelsearch/index.cgi,modelsearch/admin.cgi,admincontrol/login.cgi,adm/admloginuser.cgi,admloginuser.cgi,admin2.cgi,admin2/login.cgi,admin2/index.cgi,usuarios/login.cgi,adm/index.cgi,adm.cgi,affiliate.cgi,adm_auth.cgi,memberadmin.cgi,administratorlogin.cgi,admin/,administrator/,admin1/,admin2/,admin3/,admin4/,admin5/,usuarios/,usuario/,administrator/,moderator/,webadmin/,adminarea/,bb-admin/,adminLogin/,admin_area/,panel-administracion/,hamzacp/,instadmin/,memberadmin/,administratorlogin/,adm/,siteadmin/login.html,admin/account.html,admin/index.html,admin/login.html,admin/admin.html,admin_area/login.html,admin_area/index.html,admincp/index.asp,admincp/login.asp,admincp/index.html,admin/account.html,adminpanel.html,webadmin.html,webadmin/index.html,webadmin/admin.html,webadmin/login.html,admin/admin_login.html,admin_login.html,panel-administracion/login.html,admin_area/admin.html,bb-admin/index.html,bb-admin/login.html,bb-admin/admin.html,admin/home.html,pages/admin/admin-login.html,admin/admin-login.html,admin-login.html,admin/adminLogin.html,adminLogin.html,admin/adminLogin.html,home.html,adminarea/index.html,adminarea/admin.html,admin/controlpanel.html,admin.html,admin/cp.html,cp.html,moderator.html,administrator/index.html,administrator/login.html,user.html,administrator/account.html,administrator.html,login.html,modelsearch/login.html,moderator/login.html,adminarea/login.html,panel-administracion/index.html,panel-administracion/admin.html,modelsearch/index.html,modelsearch/admin.html,admincontrol/login.html,adm/index.html,adm.html,moderator/admin.html,account.html,controlpanel.html,admincontrol.html 2 | -------------------------------------------------------------------------------- /raymond(win).py: -------------------------------------------------------------------------------- 1 | import requests 2 | import optparse 3 | from termcolor import colored 4 | from time import sleep 5 | import os 6 | import socket 7 | import pyfiglet 8 | from datetime import datetime 9 | 10 | 11 | def getArg(): 12 | parser = optparse.OptionParser() 13 | parser.add_option("-u", "--url", dest="url", help="Website Target EX: example.com") 14 | (options, arg) = parser.parse_args() 15 | if options.url: 16 | if options.url[0:4] == "http": 17 | print("delet http and try again") 18 | exit(0) 19 | elif options.url == "": 20 | print("put the link ") 21 | 22 | return options 23 | 24 | options = getArg() 25 | webapp = options.url 26 | 27 | def getCMSResults(url,verbose=False): 28 | 29 | try: 30 | res=requests.get(f"https://whatcms.org/API/Tech?key=wqidan5q5rcpls8jd9by2ylujcs50zan8i0802umpspvy13ndg5mmug1c1u6856fdfmbik&url={url}") 31 | except requests.exceptions.ConnectionError: 32 | print("Unable To Connect To the Internet.") 33 | exit(1) 34 | if res.status_code==200: 35 | if res.json()["result"]["code"]==101: 36 | print("INVALID API KEY!.") 37 | exit(1) 38 | if res.json()["result"]["code"]==120: 39 | tts=float(res.json()["retry_in_seconds"]) 40 | if verbose: 41 | print(f"Maxium API Request Reached. Trying Again in {tts} seconds. ") 42 | time.sleep(tts) 43 | return getCMSResults(url,verbose) 44 | if verbose: 45 | print(res.text) 46 | cms=None 47 | infos = res.json()["results"] 48 | print(f"-------{url} Technologie Informations-------\n") 49 | wp = False 50 | try: 51 | for i in range(len(infos)): 52 | print(f" {infos[i]['name']}") 53 | sleep(0.1) 54 | if infos[i]['name'] == "WordPress": 55 | wp = True 56 | if (infos[i]['version']): 57 | wpv = infos[i]['version'] 58 | else: wpv = "" 59 | print("--------------------------------") 60 | if wp: 61 | wpFucker(f"https://{url}") 62 | print("Trying catch WordPress Version ...") 63 | if wp != "": 64 | print(f"WordPress Version Detected {wpv}\n\n") 65 | print("Search For WordPress Version Vurnabaletys ...") 66 | vuln = requests.get(f"https://wpvulndb.com/api/v2/wordpresses/{wpv}") 67 | if "Error" not in vuln.text: 68 | print(vuln.text) 69 | else: 70 | print(f"[-] Can't search for WordPress {wpv} vulnerabilities") 71 | else: print("WordPress Version Not Detected\n\n") 72 | except: 73 | pass 74 | 75 | if len(res.json()["meta"]) >0: 76 | sinfos = res.json()["meta"]["social"] 77 | print("**************************************************************") 78 | print(f"\n-------{url} Social Media Informations-------\n") 79 | for i in range(len(sinfos)): 80 | print(f"{sinfos[i]['network']} ==> {sinfos[i]['url']}") 81 | if (sinfos[i]['network'] == "instagram"): 82 | name = sinfos[i]['profile'] 83 | print("\n\n") 84 | useRecon(name) 85 | 86 | def admin(url, wordlist): 87 | print("-------Admin Panel Enumeration-------") 88 | with open(wordlist, "r") as admins: 89 | data = admins.read().split(",") 90 | for admin in data: 91 | try: 92 | path = f"http://{url}/{admin}" 93 | request = requests.get(path) 94 | if request.status_code == 200 and "login" in request.text: 95 | print("[+] Admin panel Found") 96 | print(f"{path}\n") 97 | break 98 | except: 99 | pass 100 | 101 | def useRecon(user_): 102 | 103 | links = { 104 | 'instagram' :f'https://www.instagram.com/{user_}', 105 | 'facebook' :f'https://www.facebook.com/{user_}', 106 | 'twitter' :f'https://www.twitter.com/{user_}', 107 | 'youtube' :f'https://www.youtube.com/{user_}', 108 | 'blogger' :f'https://{user_}.blogspot.com', 109 | 'reddit' :f'https://www.reddit.com/user/{user_}', 110 | 'pinterest' :f'https://www.pinterest.com/{user_}', 111 | 'github' :f'https://www.github.com/{user_}', 112 | 'tumblr' :f'https://{user_}.tumblr.com', 113 | 'flickr' :f'https://www.flickr.com/people/{user_}', 114 | 'vimeo' :f'https://vimeo.com/{user_}', 115 | 'soundcloud':f'https://soundcloud.com/{user_}', 116 | 'disqus' :f'https://disqus.com/{user_}', 117 | 'medium' :f'https://medium.com/@{user_}', 118 | 'devianart' :f'https://{user_}.deviantart.com', 119 | 'vk' :f'https://vk.com/{user_}', 120 | 'about.me' :f'https://about.me/{user_}', 121 | 'imgur' :f'https://imgur.com/user/{user_}', 122 | 'slideshare':f'https://slideshare.net/{user_}', 123 | 'spotify' :f'https://open.spotify.com/user/{user_}', 124 | 'scribd' :f'https://www.scribd.com/{user_}', 125 | 'badoo' :f'https://www.badoo.com/en/{user_}', 126 | 'patreon' :f'https://www.patreon.com/{user_}', 127 | 'bitbucket' :f'https://bitbucket.org/{user_}', 128 | 'dailymotion':f'https://www.dailymotion.com/{user_}', 129 | 'etsy' :f'https://www.etsy.com/shop/{user_}', 130 | 'cashme' :f'https://cash.me/{user_}', 131 | 'behance' :f'https://www.behance.net/{user_}', 132 | 'goodreads' :f'https://www.goodreads.com/{user_}', 133 | 'instructables':f'https://www.instructables.com/member/{user_}', 134 | 'keybase' :f'https://keybase.io/{user_}', 135 | 'kongregate':f'https://kongregate.com/accounts/{user_}', 136 | 'livejournal':f'https://{user_}.livejournal.com', 137 | 'angellist' :f'https://angel.co/{user_}', 138 | 'last.fm' :f'https://last.fm/user/{user_}', 139 | 'dribbble' :f'https://dribbble.com/{user_}', 140 | 'codeacademy':f'https://www.codecademy.com/{user_}', 141 | 'gravatar' :f'https://en.gravatar.com/{user_}', 142 | 'foursquare':f'https://foursquare.com/{user_}', 143 | 'gumroad' :f'https://www.gumroad.com/{user_}', 144 | 'newgrounds':f'https://{user_}.newgrounds.com', 145 | 'wattpad' :f'https://www.wattpad.com/user/{user_}', 146 | 'canva' :f'https://www.canva.com/{user_}', 147 | 'creativemarket':f'https://creativemarket.com/{user_}', 148 | 'trakt' :f'https://www.trakt.tv/users/{user_}', 149 | '500px' :f'https://500px.com/{user_}', 150 | 'buzzfeed' :f'https://buzzfeed.com/{user_}', 151 | 'tripadvisor':f'https://tripadvisor.com/members/{user_}', 152 | 'hubpages' :f'https://{user_}.hubpages.com', 153 | 'contently' :f'https://{user_}.contently.com', 154 | 'houzz' :f'https://houzz.com/user/{user_}', 155 | 'blip.fm' :f'https://blip.fm/{user_}', 156 | 'wikipedia' :f'https://www.wikipedia.org/wiki/User:{user_}', 157 | 'codementor':f'https://www.codementor.io/{user_}', 158 | 'reverbnation':f'https://www.reverbnation.com/{user_}', 159 | 'designspiration65':f'https://www.designspiration.net/{user_}', 160 | 'bandcamp' :f'https://www.bandcamp.com/{user_}', 161 | 'colourlovers':f'https://www.colourlovers.com/love/{user_}', 162 | 'ifttt' :f'https://www.ifttt.com/p/{user_}', 163 | 'slack' :f'https://{user_}.slack.com', 164 | 'okcupid' :f'https://www.okcupid.com/profile/{user_}', 165 | 'trip' :f'https://www.trip.skyscanner.com/user/{user_}', 166 | 'ello' :f'https://ello.co/{user_}', 167 | 'hackerone' :f'https://hackerone.com/{user_}', 168 | 'freelancer':f'https://www.freelancer.com/u/{user_}' 169 | } 170 | for social, url in links.items(): 171 | request = requests.get(f"{url}") 172 | if request.status_code == 200: 173 | print(f"{social} : {url}") 174 | 175 | 176 | 177 | 178 | def checkRobots(url): 179 | request = requests.get(f"http://{url}/robots.txt") 180 | print("-------Checking /robots.txt-------\n") 181 | sleep(5) 182 | if request.status_code == 200: 183 | print(f"[+] http://{url}/robots.txt Found\n") 184 | print("**** trying reading content ****\n") 185 | try: 186 | print(request.text) 187 | except: 188 | print("[-] can't reading the content of robots.txt") 189 | else: 190 | print("[-] robots.txt Not Exist") 191 | 192 | 193 | def wpFucker(url): 194 | 195 | print("Trying catch license.txt ...") 196 | license_req = requests.get(f"{url}/license.txt") 197 | if license_req.status_code == 200: 198 | print(f"[+] License.txt Found : {url}/license.txt\n\n") 199 | else: 200 | print(f"[-] License.txt Not Found!\n\n") 201 | 202 | print("Trying catch xmlrpc ...") 203 | xmlrpc_req = requests.get(f"{url}/xmlrpc.php") 204 | if "XML-RPC server accepts POST requests only." not in xmlrpc_req.text: 205 | print(f"[+] XML-RPC interface Available Under {url}/xmlrpc.php\n\n") 206 | else : print("[-] XML-RPC not Available!\n\n") 207 | 208 | print("Trying catch uploads ...") 209 | request = requests.get(f"{url}/wp-content/uploads") 210 | if "/wp-content/uploads" in request.text: 211 | print(f"[+] Uploads Path Found : {url}/wp-content/uploads\n\n") 212 | else : print(f"[-] Uploads Path Not Found\n\n") 213 | 214 | def IpEnum(url): 215 | ip = socket.gethostbyname(url) 216 | print(f"-------Target ip address {ip}-------") 217 | print(f"Get Informations About {ip}\n") 218 | ip_req = requests.get(f"https://api.hackertarget.com/geoip/?q={ip}") 219 | print(f"{ip_req.text}\n\n") 220 | 221 | def getHeaders(url): 222 | print("-------Trying catch Headers-------") 223 | headers = requests.get(f"https://api.hackertarget.com/httpheaders/?q={url}") 224 | print(f"{headers.text}\n\n") 225 | 226 | def dnsEnum(url): 227 | print("-------DNS lockup-------") 228 | dns_req = requests.get(f"https://api.hackertarget.com/dnslookup/?q={url}") 229 | dns_infos = dns_req.text.split("\n") 230 | print(f"{dns_infos[-1]}\n\n") 231 | 232 | def subNet(url): 233 | print("-------Sub Networks (Host Range) Scaning-------") 234 | subnet_req = requests.get(f"https://api.hackertarget.com/subnetcalc/?q={url}") 235 | print(f"{subnet_req.text}\n\n") 236 | 237 | def subDomainsEnum(url): 238 | print("-------Trying catch subdomains and hosts-------") 239 | print("-" * 15) 240 | Hosts = requests.get(f"https://www.threatcrowd.org/searchApi/v2/domain/report/?domain=={url}") 241 | data = Hosts.json() 242 | print(f"{len(data)} Subdomains Found") 243 | sleep(1) 244 | for host in data: 245 | print(f"{host}") 246 | sleep(0.2) 247 | 248 | def PortScann(url): 249 | print("-------Scan Commun Ports-------") 250 | scan_req = requests.get(f"https://api.viewdns.info/portscan/?host={url}&apikey=de235d422bf3f5cc02ace82856bc90b087c96fc9&output=json") 251 | data = scan_req.json() 252 | ports = data['response']['port'] 253 | for i in range(len(ports)): 254 | if ports[i]['status'] == "open": 255 | print(f"[+] port {ports[i]['number']} is {ports[i]['status']} {ports[i]['service']}") 256 | sleep(0.1) 257 | 258 | 259 | def serverEnum(url): 260 | print("-------The hosted Websites on the server-------") 261 | srvscan = requests.get(f"https://api.viewdns.info/reverseip/?host={url}&apikey=de235d422bf3f5cc02ace82856bc90b087c96fc9&output=json") 262 | data = srvscan.json() 263 | count = data['response']['domain_count'] 264 | if count != 0: 265 | domains = data['response']['domains'] 266 | print(f"{count} web application Found") 267 | for i in range(0, int(count)): 268 | print(f"{domains[i]['name']} Last update {domains[i]['last_resolved']}") 269 | sleep(0.1) 270 | 271 | 272 | def banner(url): 273 | print("-" * 50) 274 | ascii_banner = pyfiglet.figlet_format("Raymond") 275 | print(ascii_banner) 276 | print("Scanning Target: " + url) 277 | print("Scanning started at:" + str(datetime.now())) 278 | print("-" * 50) 279 | 280 | 281 | 282 | def HandelOpts(): 283 | banner(webapp) 284 | user_options = """ 285 | [1] - Full scan 286 | [2] - CMS scan (social media accounts - riscky paths scan - user recon ...) 287 | [3] - Get web application request Headers 288 | [4] - Robots page scan 289 | [5] - DNS Enumeration 290 | [6] - Get all hosts on the target Server 291 | [7] - Scan commun ports 292 | [8] - Sub network information 293 | [9] - Ip address information 294 | [10]- Subdomains Enumeration (not all just about 50 %) 295 | [11]- Brute Force admin panel page 296 | [12]- Username rcon (check 65 website accounts ...) 297 | [0] - Exit Raymond Tool 298 | """ 299 | try: 300 | user_input = int(input(user_options)) 301 | except Exception: 302 | print("choose a number between 0 - 11") 303 | choices = list(range(0, 12)) 304 | if user_input in choices: 305 | if user_input == 1: 306 | getCMSResults(webapp) 307 | print("*" * 50) 308 | getHeaders(webapp) 309 | print("*" * 50) 310 | checkRobots(webapp) 311 | print("*" * 50) 312 | dnsEnum(webapp) 313 | print("*" * 50) 314 | serverEnum(webapp) 315 | print("*" * 50) 316 | PortScann(webapp) 317 | print("*" * 50) 318 | subNet(webapp) 319 | print("*" * 50) 320 | IpEnum(webapp) 321 | print("*" * 50) 322 | subDomainsEnum(webapp) 323 | print("*" * 50) 324 | admin(webapp,"files/admins.ini") 325 | print("*" * 50) 326 | elif user_input == 2: 327 | getCMSResults(webapp) 328 | elif user_input == 3: 329 | getHeaders(webapp) 330 | elif user_input == 4: 331 | checkRobots(webapp) 332 | elif user_input == 5: 333 | dnsEnum(webapp) 334 | elif user_input == 6: 335 | serverEnum(webapp) 336 | elif user_input == 7: 337 | PortScann(webapp) 338 | elif user_input == 8: 339 | subNet(webapp) 340 | elif user_input == 9: 341 | IpEnum(webapp) 342 | elif user_input == 10: 343 | subDomainsEnum(webapp) 344 | elif user_input == 11: 345 | admin(webapp,"files/admins.ini") 346 | elif user_input == 12: 347 | userTarget = input("target username: ") 348 | useRecon(userTarget) 349 | elif user_input == 0: 350 | print("Scanning Finiched at:" + str(datetime.now())) 351 | exit(0) 352 | else: 353 | print("Uknowne option.") 354 | print(user_options) 355 | try: 356 | HandelOpts() 357 | except Exception: 358 | pass 359 | 360 | -------------------------------------------------------------------------------- /raymond(lin).py: -------------------------------------------------------------------------------- 1 | import requests 2 | import optparse 3 | from termcolor import colored 4 | from time import sleep 5 | import os 6 | import socket 7 | import pyfiglet 8 | from datetime import datetime 9 | 10 | 11 | r = "\033[1;31m" 12 | g = "\033[1;32m" 13 | y = "\033[1;33m" 14 | b = "\033[1;34m" 15 | d = "\033[2;37m" 16 | R = "\033[1;41m" 17 | Y = "\033[1;43m" 18 | B = "\033[1;44m" 19 | w = "\033[0m" 20 | 21 | 22 | def getArg(): 23 | 24 | parser = optparse.OptionParser() 25 | parser.add_option("-u", "--url", dest="url", help="Website Target EX: example.com") 26 | (options, arg) = parser.parse_args() 27 | if options.url: 28 | if options.url[0:4] == "http": 29 | print("delet http and try again") 30 | exit(0) 31 | elif options.url == "": 32 | print("put the link ") 33 | 34 | return options 35 | 36 | options = getArg() 37 | webapp = options.url 38 | 39 | def getCMSResults(url,verbose=False): 40 | 41 | try: 42 | res=requests.get(f"https://whatcms.org/API/Tech?key=wqidan5q5rcpls8jd9by2ylujcs50zan8i0802umpspvy13ndg5mmug1c1u6856fdfmbik&url={url}") 43 | except requests.exceptions.ConnectionError: 44 | print(f"{r}Unable To Connect To the Internet.{w}") 45 | exit(1) 46 | if res.status_code==200: 47 | if res.json()["result"]["code"]==101: 48 | print("INVALID API KEY!.") 49 | exit(1) 50 | if res.json()["result"]["code"]==120: 51 | tts=float(res.json()["retry_in_seconds"]) 52 | if verbose: 53 | print(f"{e}Maxium API Request Reached. Trying Again in {tts} seconds.{w} ") 54 | time.sleep(tts) 55 | return getCMSResults(url,verbose) 56 | if verbose: 57 | print(res.text) 58 | cms=None 59 | infos = res.json()["results"] 60 | print(f"-------{url} Technologie Informations-------\n") 61 | wp = False 62 | try: 63 | for i in range(len(infos)): 64 | print(f" {g}{infos[i]['name']}{w}") 65 | sleep(0.1) 66 | if infos[i]['name'] == "WordPress": 67 | wp = True 68 | if (infos[i]['version']): 69 | wpv = infos[i]['version'] 70 | else: wpv = "" 71 | print("--------------------------------") 72 | if wp: 73 | wpFucker(f"https://{url}") 74 | print("Trying catch WordPress Version ...") 75 | if wp != "": 76 | print(f"{y}WordPress Version Detected {g}{wpv}{w}\n\n") 77 | print("Search For WordPress Version Vurnabaletys ...") 78 | vuln = requests.get(f"https://wpvulndb.com/api/v2/wordpresses/{wpv}") 79 | if "Error" not in vuln.text: 80 | print(vuln.text) 81 | else: 82 | print(f"{r}[-] Can't search for WordPress {g}{wpv} Vurnabaletys{w}") 83 | else: print("WordPress Version Not Detected\n\n") 84 | except: 85 | pass 86 | 87 | if len(res.json()["meta"]) >0: 88 | sinfos = res.json()["meta"]["social"] 89 | print("**************************************************************") 90 | print(f"\n-------{url} Social Media Informations-------\n") 91 | for i in range(len(sinfos)): 92 | print(f"{y}{sinfos[i]['network']} ==> {g}{sinfos[i]['url']}{w}") 93 | if (sinfos[i]['network'] == "instagram"): 94 | name = sinfos[i]['profile'] 95 | print("\n\n") 96 | useRecon(name) 97 | 98 | def admin(url, wordlist): 99 | print("-------Admin Panel Enumeration-------") 100 | with open(wordlist, "r") as admins: 101 | data = admins.read().split(",") 102 | for admin in data: 103 | try: 104 | path = f"http://{url}/{admin}" 105 | request = requests.get(path) 106 | if request.status_code == 200 and "login" in request.text: 107 | print(f"{y}[+] Admin panel Found{w}") 108 | print(f"{g}{path}{w}\n") 109 | break 110 | except: 111 | pass 112 | 113 | def useRecon(user_): 114 | 115 | links = { 116 | 'instagram' :f'https://www.instagram.com/{user_}', 117 | 'facebook' :f'https://www.facebook.com/{user_}', 118 | 'twitter' :f'https://www.twitter.com/{user_}', 119 | 'youtube' :f'https://www.youtube.com/{user_}', 120 | 'blogger' :f'https://{user_}.blogspot.com', 121 | 'reddit' :f'https://www.reddit.com/user/{user_}', 122 | 'pinterest' :f'https://www.pinterest.com/{user_}', 123 | 'github' :f'https://www.github.com/{user_}', 124 | 'tumblr' :f'https://{user_}.tumblr.com', 125 | 'flickr' :f'https://www.flickr.com/people/{user_}', 126 | 'vimeo' :f'https://vimeo.com/{user_}', 127 | 'soundcloud':f'https://soundcloud.com/{user_}', 128 | 'disqus' :f'https://disqus.com/{user_}', 129 | 'medium' :f'https://medium.com/@{user_}', 130 | 'devianart' :f'https://{user_}.deviantart.com', 131 | 'vk' :f'https://vk.com/{user_}', 132 | 'about.me' :f'https://about.me/{user_}', 133 | 'imgur' :f'https://imgur.com/user/{user_}', 134 | 'slideshare':f'https://slideshare.net/{user_}', 135 | 'spotify' :f'https://open.spotify.com/user/{user_}', 136 | 'scribd' :f'https://www.scribd.com/{user_}', 137 | 'badoo' :f'https://www.badoo.com/en/{user_}', 138 | 'patreon' :f'https://www.patreon.com/{user_}', 139 | 'bitbucket' :f'https://bitbucket.org/{user_}', 140 | 'dailymotion':f'https://www.dailymotion.com/{user_}', 141 | 'etsy' :f'https://www.etsy.com/shop/{user_}', 142 | 'cashme' :f'https://cash.me/{user_}', 143 | 'behance' :f'https://www.behance.net/{user_}', 144 | 'goodreads' :f'https://www.goodreads.com/{user_}', 145 | 'instructables':f'https://www.instructables.com/member/{user_}', 146 | 'keybase' :f'https://keybase.io/{user_}', 147 | 'kongregate':f'https://kongregate.com/accounts/{user_}', 148 | 'livejournal':f'https://{user_}.livejournal.com', 149 | 'angellist' :f'https://angel.co/{user_}', 150 | 'last.fm' :f'https://last.fm/user/{user_}', 151 | 'dribbble' :f'https://dribbble.com/{user_}', 152 | 'codeacademy':f'https://www.codecademy.com/{user_}', 153 | 'gravatar' :f'https://en.gravatar.com/{user_}', 154 | 'foursquare':f'https://foursquare.com/{user_}', 155 | 'gumroad' :f'https://www.gumroad.com/{user_}', 156 | 'newgrounds':f'https://{user_}.newgrounds.com', 157 | 'wattpad' :f'https://www.wattpad.com/user/{user_}', 158 | 'canva' :f'https://www.canva.com/{user_}', 159 | 'creativemarket':f'https://creativemarket.com/{user_}', 160 | 'trakt' :f'https://www.trakt.tv/users/{user_}', 161 | '500px' :f'https://500px.com/{user_}', 162 | 'buzzfeed' :f'https://buzzfeed.com/{user_}', 163 | 'tripadvisor':f'https://tripadvisor.com/members/{user_}', 164 | 'hubpages' :f'https://{user_}.hubpages.com', 165 | 'contently' :f'https://{user_}.contently.com', 166 | 'houzz' :f'https://houzz.com/user/{user_}', 167 | 'blip.fm' :f'https://blip.fm/{user_}', 168 | 'wikipedia' :f'https://www.wikipedia.org/wiki/User:{user_}', 169 | 'codementor':f'https://www.codementor.io/{user_}', 170 | 'reverbnation':f'https://www.reverbnation.com/{user_}', 171 | 'designspiration65':f'https://www.designspiration.net/{user_}', 172 | 'bandcamp' :f'https://www.bandcamp.com/{user_}', 173 | 'colourlovers':f'https://www.colourlovers.com/love/{user_}', 174 | 'ifttt' :f'https://www.ifttt.com/p/{user_}', 175 | 'slack' :f'https://{user_}.slack.com', 176 | 'okcupid' :f'https://www.okcupid.com/profile/{user_}', 177 | 'trip' :f'https://www.trip.skyscanner.com/user/{user_}', 178 | 'ello' :f'https://ello.co/{user_}', 179 | 'hackerone' :f'https://hackerone.com/{user_}', 180 | 'freelancer':f'https://www.freelancer.com/u/{user_}' 181 | } 182 | for social, url in links.items(): 183 | request = requests.get(f"{url}") 184 | if request.status_code == 200: 185 | print(f"{y}{social}{b}[+]Found :{g}{url}{w}") 186 | 187 | 188 | 189 | 190 | def checkRobots(url): 191 | request = requests.get(f"http://{url}/robots.txt") 192 | print("-------Checking /robots.txt-------\n") 193 | sleep(5) 194 | if request.status_code == 200: 195 | print(f"{y}[+]{g} http://{url}/robots.txt Found{w}\n") 196 | print("**** trying reading content ****\n") 197 | try: 198 | print(f"{g}request.text{w}") 199 | except: 200 | print(f"{r}[-] can't reading the content of robots.txt{w}") 201 | else: 202 | print(f"{r}[-] robots.txt Not Exist") 203 | 204 | 205 | def wpFucker(url): 206 | 207 | print("Trying catch license.txt ...") 208 | license_req = requests.get(f"{url}/license.txt") 209 | if license_req.status_code == 200: 210 | print(f"[+] License.txt Found : {url}/license.txt\n\n") 211 | else: 212 | print(f"[-] License.txt Not Found!\n\n") 213 | 214 | print("Trying catch xmlrpc ...") 215 | xmlrpc_req = requests.get(f"{url}/xmlrpc.php") 216 | if "XML-RPC server accepts POST requests only." not in xmlrpc_req.text: 217 | print(f"{g}[+]{w}{y} XML-RPC interface Available Under {url}/xmlrpc.php{w}\n\n") 218 | else : print(f"{r}[-] XML-RPC not Available!{w}\n\n") 219 | 220 | print("Trying catch uploads ...") 221 | request = requests.get(f"{url}/wp-content/uploads") 222 | if "/wp-content/uploads" in request.text: 223 | print(f"{g}[+] Uploads Path Found : {url}/wp-content/uploads{w}\n\n") 224 | else : print(f"[-] Uploads Path Not Found\n\n") 225 | 226 | def IpEnum(url): 227 | ip = socket.gethostbyname(url) 228 | print(f"-------Target ip address {ip}-------") 229 | print(f"Get Informations About {ip}\n") 230 | ip_req = requests.get(f"https://api.hackertarget.com/geoip/?q={ip}") 231 | print(f"{ip_req.text}\n\n") 232 | 233 | def getHeaders(url): 234 | print("-------Trying catch Headers-------") 235 | headers = requests.get(f"https://api.hackertarget.com/httpheaders/?q={url}") 236 | print(f"{headers.text}\n\n") 237 | 238 | def dnsEnum(url): 239 | print("-------DNS lockup-------") 240 | dns_req = requests.get(f"https://api.hackertarget.com/dnslookup/?q={url}") 241 | dns_infos = dns_req.text.split("\n") 242 | print(f"{dns_infos[-1]}\n\n") 243 | 244 | def subNet(url): 245 | print("-------Sub Networks (Host Range) Scaning-------") 246 | subnet_req = requests.get(f"https://api.hackertarget.com/subnetcalc/?q={url}") 247 | print(f"{subnet_req.text}\n\n") 248 | 249 | def subDomainsEnum(url): 250 | print("-------Trying catch subdomains and hosts-------") 251 | print("-" * 15) 252 | Hosts = requests.get(f"https://www.threatcrowd.org/searchApi/v2/domain/report/?domain=={url}") 253 | data = Hosts.json() 254 | print(f"{len(data)} Subdomains Found") 255 | sleep(1) 256 | for host in data: 257 | print(f"{host}") 258 | sleep(0.2) 259 | 260 | def PortScann(url): 261 | print("-------Scan Commun Ports-------") 262 | scan_req = requests.get(f"https://api.viewdns.info/portscan/?host={url}&apikey=de235d422bf3f5cc02ace82856bc90b087c96fc9&output=json") 263 | data = scan_req.json() 264 | ports = data['response']['port'] 265 | for i in range(len(ports)): 266 | if ports[i]['status'] == "open": 267 | print(f"[+] port {y}{ports[i]['number']} is {g}{ports[i]['status']} {r}{ports[i]['service']}{w}") 268 | sleep(0.1) 269 | 270 | 271 | def serverEnum(url): 272 | print("-------The hosted Websites on the server-------") 273 | srvscan = requests.get(f"https://api.viewdns.info/reverseip/?host={url}&apikey=de235d422bf3f5cc02ace82856bc90b087c96fc9&output=json") 274 | data = srvscan.json() 275 | count = data['response']['domain_count'] 276 | if count != 0: 277 | domains = data['response']['domains'] 278 | print(f"{count} web application Found") 279 | for i in range(0, int(count)): 280 | print(f"{domains[i]['name']} Last update {domains[i]['last_resolved']}") 281 | sleep(0.1) 282 | 283 | 284 | def banner(url): 285 | print("-" * 50) 286 | ascii_banner = pyfiglet.figlet_format("Raymond") 287 | print(f"{b}{ascii_banner}{w}") 288 | print(f"{d}Contact Author : hamzaelansari453@gmail.com{w}") 289 | print(f"{r}Scanning Target:{g} {url}{w}") 290 | print(f"{r}Scanning started at: {y}{str(datetime.now())}{w}") 291 | print("-" * 50) 292 | 293 | 294 | 295 | def HandelOpts(): 296 | banner(webapp) 297 | user_options = f""" 298 | {y}[1]{g} - Full scan{w} 299 | {y}[2]{g} - CMS scan (social media accounts - riscky paths scan - user recon ...){w} 300 | {y}[3]{g} - Get web application request Headers{w} 301 | {y}[4]{g} - Robots page scan{w} 302 | {y}[5]{g} - DNS Enumeration{w} 303 | {y}[6]{g} - Get all hosts on the target Server{w} 304 | {y}[7]{g} - Scan commun ports{w} 305 | {y}[8]{g} - Sub network information{w} 306 | {y}[9]{g} - Ip address information{w} 307 | {y}[10]{g} - Subdomains Enumeration (not all just about 50 %){w} 308 | {y}[11]{g}- Brute Force admin panel page{w} 309 | {y}[12]{g}- Username rcon (check 65 website accounts ...){w} 310 | {y}[0]{g} - Exit Raymond Tool{w} 311 | """ 312 | try: 313 | user_input = int(input(user_options)) 314 | except Exception: 315 | print("choose a number between 0 - 11") 316 | choices = list(range(0, 12)) 317 | if user_input in choices: 318 | if user_input == 1: 319 | getCMSResults(webapp) 320 | print("*" * 50) 321 | getHeaders(webapp) 322 | print("*" * 50) 323 | checkRobots(webapp) 324 | print("*" * 50) 325 | dnsEnum(webapp) 326 | print("*" * 50) 327 | serverEnum(webapp) 328 | print("*" * 50) 329 | PortScann(webapp) 330 | print("*" * 50) 331 | subNet(webapp) 332 | print("*" * 50) 333 | IpEnum(webapp) 334 | print("*" * 50) 335 | subDomainsEnum(webapp) 336 | print("*" * 50) 337 | admin(webapp,"files/admins.ini") 338 | print("*" * 50) 339 | elif user_input == 2: 340 | getCMSResults(webapp) 341 | elif user_input == 3: 342 | getHeaders(webapp) 343 | elif user_input == 4: 344 | checkRobots(webapp) 345 | elif user_input == 5: 346 | dnsEnum(webapp) 347 | elif user_input == 6: 348 | serverEnum(webapp) 349 | elif user_input == 7: 350 | PortScann(webapp) 351 | elif user_input == 8: 352 | subNet(webapp) 353 | elif user_input == 9: 354 | IpEnum(webapp) 355 | elif user_input == 10: 356 | subDomainsEnum(webapp) 357 | elif user_input == 11: 358 | admin(webapp,"files/admins.ini") 359 | elif user_input == 12: 360 | userTarget = input("target username: ") 361 | useRecon(userTarget) 362 | elif user_input == 0: 363 | print(f"{r}Scanning finished at:{y}{str(datetime.now())}{w}") 364 | exit(0) 365 | else: 366 | print("Uknowne option.") 367 | print(user_options) 368 | try: 369 | HandelOpts() 370 | except Exception: 371 | pass 372 | 373 | --------------------------------------------------------------------------------