Comments (3)
Thank you for a quick answer, for me time doesn't matter. Results are matter hehe. I would like to see scan to websites which are in the same server. I will investigate jok3er code a bit. Its large project and i like it :)
from jok3r.
Hi,
Best way to user Jok3r is with 2 shells opened in the Docker container:
- 1 used to launch attacks using
python3 jok3r attack [...]
- 1 used to access the database in real-time, add new targets, see results, see detected products, vulns, creds, generate reports, etc.
To delete a target from the DB, use services --ip <targetip> --del
after selecting the proper mission.
You can also apply other filters (instead of --ip), just refer to the command help:
jok3rdb[default]> services -h
usage: services [-h]
[-a | -u | -d | -c | --https]
[--addcred | --addcred-http | --adduser | --adduser-http ]
[-H <hostname1,hostname2...>] [-I <ip1,ip2...>]
[-p <port1,port2...>] [-r ] [-U] [-o ]
[-S ]
[ ... [ ... ...]]Services in the current mission scope
optional arguments:
-h, --help show this help message and exitManage services:
-a, --add Add a new service
-u, --url Add a new URL
-d, --del Delete selected service(s) (instead of displaying)
-c, --comment Change the comment of selected service(s)
--https Switch between HTTPS and HTTP protocol for URL of selected service(s)Manage services credentials:
--addcred Add new credentials (username+password) for selected service(s)
--addcred-http Add new credentials (username+password) for the specified authentication type on selected HTTP service(s)
--adduser Add new username (password unknown) for selected service(s)
--adduser-http Add new username (password unknown) for the specified authentication type on selected HTTP service(s)Filter services:
-H, --hostname <hostname1,hostname2...> Search for a list of hostnames (comma-separated)
-I, --ip <ip1,ip2...> Search for a list of IPs (single IP/CIDR range comma-separated)
-p, --port <port1,port2...> Search for a list of ports (single/range comma-separated)
-r, --proto Only show [tcp|udp] services
-U, --up Only show services which are up
-o, --order Order rows by specified column
-S, --search Search string to filter by
... Services to select
I am wondering about adding tools like wapiti scanner, but I am scared that it will increase global time of scan too much. Maybe I should add another category of checks (like "extensive scan") that are not run by default, but could be selected by users. Will check that.
Don't hesitate if you have other suggestions.
Cheers
from jok3r.
Cool man, I will check that. Don't hesitate to contribute or give other ideas.
from jok3r.
Related Issues (20)
- "Database is Locked" HOT 2
- Broken Auto Tool Update HOT 2
- Unable to scan and install delete directorys
- jok3r.py breaks after auto-update all
- report --no-screen not working
- sudo docker start -i jok3r-container Error: No such container: jok3r-container
- IP and port address in attack module
- Unable to load db mode jok3r HOT 1
- Report error
- [!] Unexpected error occured: No section: 'config'
- I ported jok3r to install and run on Arch linux
- Api keys HOT 1
- python3 is not a recognized command, alias, or macro HOT 1
- python TypeError on nmap check HOT 3
- Run command # Y/n/f/q
- nmap import error
- Fixed an issue I had with AttackController.py. Here's how I solved it. HOT 1
- postexploit > wordpress-shell-upload hangs
- DB doesn't run. Please help! Thanks! <3 ^_^
- Inquiry: Implement Authentication for scanning. HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from jok3r.