Hey Folks, in this tutorial we are going to talk about an open source information gathering tool called โOsmedeusrโ. Osmedeus allows you automated run the collection of awesome tools to reconnaissance and vulnerability scanning against the target.
Letโs take a look ๐ !!
We have to download this tool from github by using the git command and then go to the directory of this tool. After completing all the steps we will execute the bash command to setup this tool completely.
git clone https://github.com/j3ssie/Osmedeus
cd Osmedeus/
bash install.shDone ๐ !! The tool has been setup successfully and now we can boot this tool using the following command.
python3 osmedeus.pyYou can see all the features available in this tool by executing the above command.
This provides us GUI interface to control and manage the output of the scanning, so we need to create a user for login to the web application.
python3 server/manage.py createsuperuserThis is a basic scan but it will dump almost everything at the same time. Just add your taregt details and execute the command.
python3 osmedeus.py -t http://vulnweb.comAfter executing the command it will give us the location where the web application is actually hosted and running locally. Just open the given location by the tool.
Good ๐ !! The GUI interface looks great and now we need to enter the created credentials.
After successful login we get the following option inside the web application. In the summary section we get the list of subdomains.
On the other hand you can see all past and present ongoing scanning as well as their path where they are being saved.
Through the following section we can directly see all the saved results of the specific host or the target.
Hmmm ๐ !! As we told you that you can see the saved output by clicking the โBash Outputโ button on the terminal.
Also, if you donโt like the GUI interface, you can also see the result on the command line terminal.
We cannot cover all the facilities at the same time, so thus you can use every single feature of the tool yourself.
A keen learner and passionate IT student. He has done Web designing, CCNA, RedHat, Ethical hacking, Network & web penetration testing. Currently, he is completing his graduation and learning about Red teaming, CTF challenges & Blue teaming.
The gau (Get All URLs) tool is a versatile open-source utility that collects URLs from…
Jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic…
Hey Folks :) !! In this tutorial, we will describe some of the techniques commonly…
Hey Folks :) !! In this article, we present the "Termux Cheat Sheet for Hackers"…
Amid the rapid advancement of technology, the significance of human involvement in cybersecurity frequently goes…
Hey Folks, we are back today after such a long break, but don't worry we…
This website uses cookies.