/kenzer

a zulip chatbot (specializing in automated webapp bug hunting)

Primary LanguagePythonGNU General Public License v3.0GPL-3.0

KENZER | A Zulip Chatbot

not innovation. just automation.

Instructions for running

  1. Create an account on Zulip
  2. Navigate to Settings > Your Bots > Add a new bot
  3. Create a new generic bot named kenzer
  4. Clone this repository using git clone https://github.com/g147/kenzer.git
  5. Add all the configurations in configs/kenzer.conf
  6. Install & run using ./install.sh or just run using ./run.sh
  7. You can interact with KENZER using multi-platform Zulip Clients.
  8. KENZERDB can be cloned using git clone https://github.com/g147/kenzerdb.git
  9. kenzer man as input can be used to display the user manual while interaction.

Built-in Functionalities

  • Enumerates subdomains(subenum)
  • Probes web servers from the enumerated subdomains(probeserv)
  • Fingerprints using favicon(favinize)
  • Hunts for open S3 bucket(s3hunt)
  • Enumerates open ports(portenum)
  • Enumerates urls(urlenum)
  • Checks for Subdomain Takeovers(subover)
  • Checks for CVEs(cvescan)
  • Checks for other common vulnerabilities(vulnscan)
  • Chats using ChatterBot Conversational Engine

COMPATIBILITY TESTED ON ARCHLINUX(x64) ONLY
FEEL FREE TO SUBMIT PULL REQUESTS