Skip to content

Tanmay-N/Neptune

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
Install
Install
 
 
config
config
 
 
cve
cve
 
 
ownscript
ownscript
 
 
secret
secret
 
 
subtakeover
subtakeover
 
 
vuln
vuln
 
 
Neptune.sh
Neptune.sh
 
 
README.md
README.md
 
 
scrapy.cfg
scrapy.cfg
 
 

Repository files navigation

Neptune - Attack Surface Management

Neptune is a script written in Bash. it is intended to automate some tedious tasks of reconnaissance and information gathering

Usage

$ Bash Neptune.sh

Main Features

  • Create a dated folder with recon notes

  • Grab subdomains using: (Directory search module is now MULTITHREADED (up to 10 subdomains scanned at a time))

crt, warchive, amass, subfinder, threatcrowd, hackertarget, virustotal, gau, dnsbuffer, certspotter, anubisdb, alienvault, urlscan, threatminer, riddler, dnsdumpster, rapiddns

  • Find any CNAME records pointing to unused cloud services like aws

  • Probe for live hosts over ports 80/443

  • Grab a screenshots of responsive hosts

  • Scrape wayback for data:

    • Extract javascript files
    • Build custom parameter wordlist, ready to be loaded later into Burp intruder or any other tool
    • Extract any urls with .jsp, .php or .aspx and store them for further inspection

  • Perform nmap on specific ports

  • Get dns information about every subdomain

  • Check vulnerabilities like HTTP request smuggling, AEM vulnerabilities.

  • Improved reporting and less output while doing the work

Installation & Requirements

  • Run installation Script
$ cd Intstall
$ Bash install.sh

Warning: This code was originally created for personal use, it generates a substantial amount of traffic, please use with caution.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages