├── README.md
└── install.sh


/README.md:
--------------------------------------------------------------------------------
 1 | # BBHT
 2 | 
 3 | Bug Bounty Hunting Tools is a script to install the most popular tools used while looking for vulnerabilities for a bug bounty program.
 4 |  
 5 | # Tools
 6 | 
 7 | - dirsearch
 8 | - JSParser
 9 | - knockpy
10 | - lazys3
11 | - recon_profile
12 | - sqlmap-dev
13 | - Sublist3r
14 | - teh_s3_bucketeers
15 | - virtual-host-discovery
16 | - wpscan
17 | - webscreenshot
18 | - Massdns
19 | - Asnlookup
20 | - Unfurl
21 | - Waybackurls
22 | - Httprobe
23 | - Seclists collection
24 | 
25 | This script also grabs the aliases created and published here:
26 | https://github.com/nahamsec/recon_profile
27 | 
28 | 
29 | # Installing
30 | - git clone https://github.com/nahamsec/bbht.git
31 | - cd bbht
32 | - chmod +x install.sh
33 | - ./install.sh
34 | 


--------------------------------------------------------------------------------
/install.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | sudo apt-get -y update
  3 | sudo apt-get -y upgrade
  4 | 
  5 | 
  6 | sudo apt-get install -y libcurl4-openssl-dev
  7 | sudo apt-get install -y libssl-dev
  8 | sudo apt-get install -y jq
  9 | sudo apt-get install -y ruby-full
 10 | sudo apt-get install -y libcurl4-openssl-dev libxml2 libxml2-dev libxslt1-dev ruby-dev build-essential libgmp-dev zlib1g-dev
 11 | sudo apt-get install -y build-essential libssl-dev libffi-dev python-dev
 12 | sudo apt-get install -y python-setuptools
 13 | sudo apt-get install -y libldns-dev
 14 | sudo apt-get install -y python3-pip
 15 | sudo apt-get install -y python-pip
 16 | sudo apt-get install -y python-dnspython
 17 | sudo apt-get install -y git
 18 | sudo apt-get install -y rename
 19 | sudo apt-get install -y xargs
 20 | 
 21 | echo "installing bash_profile aliases from recon_profile"
 22 | git clone https://github.com/nahamsec/recon_profile.git
 23 | cd recon_profile
 24 | cat bash_profile >> ~/.bash_profile
 25 | source ~/.bash_profile
 26 | cd ~/tools/
 27 | echo "done"
 28 | 
 29 | 
 30 | 
 31 | #install go
 32 | if [[ -z "$GOPATH" ]];then
 33 | echo "It looks like go is not installed, would you like to install it now"
 34 | PS3="Please select an option : "
 35 | choices=("yes" "no")
 36 | select choice in "${choices[@]}"; do
 37 |         case $choice in
 38 |                 yes)
 39 | 
 40 | 					echo "Installing Golang"
 41 | 					wget https://dl.google.com/go/go1.13.4.linux-amd64.tar.gz
 42 | 					sudo tar -xvf go1.13.4.linux-amd64.tar.gz
 43 | 					sudo mv go /usr/local
 44 | 					export GOROOT=/usr/local/go
 45 | 					export GOPATH=$HOME/go
 46 | 					export PATH=$GOPATH/bin:$GOROOT/bin:$PATH
 47 | 					echo 'export GOROOT=/usr/local/go' >> ~/.bash_profile
 48 | 					echo 'export GOPATH=$HOME/go'	>> ~/.bash_profile			
 49 | 					echo 'export PATH=$GOPATH/bin:$GOROOT/bin:$PATH' >> ~/.bash_profile	
 50 | 					source ~/.bash_profile
 51 | 					sleep 1
 52 | 					break
 53 | 					;;
 54 | 				no)
 55 | 					echo "Please install go and rerun this script"
 56 | 					echo "Aborting installation..."
 57 | 					exit 1
 58 | 					;;
 59 | 	esac	
 60 | done
 61 | fi
 62 | 
 63 | 
 64 | #Don't forget to set up AWS credentials!
 65 | echo "Don't forget to set up AWS credentials!"
 66 | apt install -y awscli
 67 | echo "Don't forget to set up AWS credentials!"
 68 | 
 69 | 
 70 | 
 71 | #create a tools folder in ~/
 72 | mkdir ~/tools
 73 | cd ~/tools/
 74 | 
 75 | #install aquatone
 76 | echo "Installing Aquatone"
 77 | go get github.com/michenriksen/aquatone
 78 | echo "done"
 79 | 
 80 | #install chromium
 81 | echo "Installing Chromium"
 82 | sudo snap install chromium
 83 | echo "done"
 84 | 
 85 | echo "installing JSParser"
 86 | git clone https://github.com/nahamsec/JSParser.git
 87 | cd JSParser*
 88 | sudo python setup.py install
 89 | cd ~/tools/
 90 | echo "done"
 91 | 
 92 | echo "installing Sublist3r"
 93 | git clone https://github.com/aboul3la/Sublist3r.git
 94 | cd Sublist3r*
 95 | pip install -r requirements.txt
 96 | cd ~/tools/
 97 | echo "done"
 98 | 
 99 | 
100 | echo "installing teh_s3_bucketeers"
101 | git clone https://github.com/tomdev/teh_s3_bucketeers.git
102 | cd ~/tools/
103 | echo "done"
104 | 
105 | 
106 | echo "installing wpscan"
107 | git clone https://github.com/wpscanteam/wpscan.git
108 | cd wpscan*
109 | sudo gem install bundler && bundle install --without test
110 | cd ~/tools/
111 | echo "done"
112 | 
113 | echo "installing dirsearch"
114 | git clone https://github.com/maurosoria/dirsearch.git
115 | cd ~/tools/
116 | echo "done"
117 | 
118 | 
119 | echo "installing lazys3"
120 | git clone https://github.com/nahamsec/lazys3.git
121 | cd ~/tools/
122 | echo "done"
123 | 
124 | echo "installing virtual host discovery"
125 | git clone https://github.com/jobertabma/virtual-host-discovery.git
126 | cd ~/tools/
127 | echo "done"
128 | 
129 | 
130 | echo "installing sqlmap"
131 | git clone --depth 1 https://github.com/sqlmapproject/sqlmap.git sqlmap-dev
132 | cd ~/tools/
133 | echo "done"
134 | 
135 | echo "installing knock.py"
136 | git clone https://github.com/guelfoweb/knock.git
137 | cd ~/tools/
138 | echo "done"
139 | 
140 | echo "installing lazyrecon"
141 | git clone https://github.com/nahamsec/lazyrecon.git
142 | cd ~/tools/
143 | echo "done"
144 | 
145 | echo "installing nmap"
146 | sudo apt-get install -y nmap
147 | echo "done"
148 | 
149 | echo "installing massdns"
150 | git clone https://github.com/blechschmidt/massdns.git
151 | cd ~/tools/massdns
152 | make
153 | cd ~/tools/
154 | echo "done"
155 | 
156 | echo "installing asnlookup"
157 | git clone https://github.com/yassineaboukir/asnlookup.git
158 | cd ~/tools/asnlookup
159 | pip install -r requirements.txt
160 | cd ~/tools/
161 | echo "done"
162 | 
163 | echo "installing httprobe"
164 | go get -u github.com/tomnomnom/httprobe 
165 | echo "done"
166 | 
167 | echo "installing unfurl"
168 | go get -u github.com/tomnomnom/unfurl 
169 | echo "done"
170 | 
171 | echo "installing waybackurls"
172 | go get github.com/tomnomnom/waybackurls
173 | echo "done"
174 | 
175 | echo "installing crtndstry"
176 | git clone https://github.com/nahamsec/crtndstry.git
177 | echo "done"
178 | 
179 | echo "downloading Seclists"
180 | cd ~/tools/
181 | git clone https://github.com/danielmiessler/SecLists.git
182 | cd ~/tools/SecLists/Discovery/DNS/
183 | ##THIS FILE BREAKS MASSDNS AND NEEDS TO BE CLEANED
184 | cat dns-Jhaddix.txt | head -n -14 > clean-jhaddix-dns.txt
185 | cd ~/tools/
186 | echo "done"
187 | 
188 | 
189 | 
190 | echo -e "\n\n\n\n\n\n\n\n\n\n\nDone! All tools are set up in ~/tools"
191 | ls -la
192 | echo "One last time: don't forget to set up AWS credentials in ~/.aws/!"
193 | 


--------------------------------------------------------------------------------