Various pentest scripts for network + iOS security
discovery.sh
- Script to automate the use of several tools to find subdomains, identify potential subdomain takeovers, and check for exposed .git directories
- Dependencies:
- subbrute: https://github.com/TheRook/subbrute
- TakeOver-v1: https://github.com/samhaxr/TakeOver-v1
- censys-subdomain-finder: https://github.com/christophetd/censys-subdomain-finder
- GitTools: https://github.com/internetwache/GitTools
- Sublist3r: https://github.com/aboul3la/Sublist3r
- shodan_subdomain_finder.py: Included in this repo
shodan_subdomain_finder.py
-
Used in discovery.sh
-
Can also be used standalone
-
Dependencies:
- Shodan python library
- easy_install shodan
- Shodan python library
hidden.sh
- Discovers hidden files and other interesting file types
- Tested with Mac BSD (GNU)
frida-stringret.js
- Sample Frida script to intercept and replace a string return value