Use scrapli to retrieve security zone information from a Juniper SRX firewall

Last update: Jun 19, 2022

Overview

Get Security Zones with Scrapli

Overview

This example will show how to retrieve security zone information on Juniper's SRX firewalls.

In addition to the Python script, this project also ships with additional tools to help you along your way. You will find a Dockerfile for running the project in an isolated environment, and an Invoke tasks.py file for those of us that hate typing out everything all the time.

⚙️ `How it works`

The data is collected from the firewalls by issuing NETCONF RPCs to retrieve the data as XML, to which we will convert into a Python dictionary.

Let's take a second to review the documentation in the files/docs/ directory.

Name	Description
app_async.py	Retrieve security zone information from SRX with `asyncio`
app_sync.py	Retrieve security zone information from a single SRX

📝 `Dependencies`

Refer to the Poetry Lock file located at poetry.lock for detailed descriptions on each package installed.

🚀 `Executing the script`

This project provides two unique methods of executing the playbook:

Executing with Docker | Execute with Docker

Executing with Python | Execute with Python

Use scrapli to retrieve security zone information from a Juniper SRX firewall

Related tags

Overview

Get Security Zones with Scrapli

Overview

⚙️ `How it works`

📝 `Dependencies`

🚀 `Executing the script`

Owner

Calvin Remsburg

Source code for "A Two-Stream AMR-enhanced Model for Document-level Event Argument Extraction" @ NAACL 2022

md5 hash cracking with python.

Dumping revelant information on compromised targets without AV detection

This tool ability to analyze software packages of different programming languages that are being or will be used in their codes, providing information that allows them to know in advance if this library complies with processes.

Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.

script that pulls cve collections from NVD.NIST.GOV.

Profil3r is an OSINT tool that allows you to find potential profiles of a person on social networks, as well as their email addresses 🕵️

Wonk is a tool for combining a set of AWS policy files into smaller compiled policy sets.

JumpServer远程代码执行漏洞检测利用脚本

A blind SQL injection script that uses binary search aka bisection method to dump datas from database.

This script allows you to make a onion host instantly.

CVE-2021-22005 - VMWare vCenter Server File Upload to RCE

Automatic ProxyShell Exploit

:closed_lock_with_key: multi factor authentication system (2FA, MFA, OTP Server)

ORector - A Fast Python tool designed to detect open redirects vulnerabilities on websites

Rouge Spammers with a mission to disrupt the peace of the valley ? Fear not we will STOMP the Spammers

Tools Crack Fb Terbaru

A repository to detect the ARP spoofing in any devices and prevent Man in the Middle(MITM) attack using Python3

This enforces signatures for CVE-2021-44228 across all policies on a BIG-IP ASM device

Facebook account cloning/hacking advanced tool + dictionary attack added | Facebook automation tool

Use scrapli to retrieve security zone information from a Juniper SRX firewall

Related tags

Overview

Get Security Zones with Scrapli

Overview

⚙️ How it works

📝 Dependencies

🚀 Executing the script

Owner

Calvin Remsburg

Source code for "A Two-Stream AMR-enhanced Model for Document-level Event Argument Extraction" @ NAACL 2022

md5 hash cracking with python.

Dumping revelant information on compromised targets without AV detection

This tool ability to analyze software packages of different programming languages that are being or will be used in their codes, providing information that allows them to know in advance if this library complies with processes.

Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.

script that pulls cve collections from NVD.NIST.GOV.

Profil3r is an OSINT tool that allows you to find potential profiles of a person on social networks, as well as their email addresses 🕵️

Wonk is a tool for combining a set of AWS policy files into smaller compiled policy sets.

JumpServer远程代码执行漏洞检测利用脚本

A blind SQL injection script that uses binary search aka bisection method to dump datas from database.

This script allows you to make a onion host instantly.

CVE-2021-22005 - VMWare vCenter Server File Upload to RCE

Automatic ProxyShell Exploit

:closed_lock_with_key: multi factor authentication system (2FA, MFA, OTP Server)

ORector - A Fast Python tool designed to detect open redirects vulnerabilities on websites

Rouge Spammers with a mission to disrupt the peace of the valley ? Fear not we will STOMP the Spammers

Tools Crack Fb Terbaru

A repository to detect the ARP spoofing in any devices and prevent Man in the Middle(MITM) attack using Python3

This enforces signatures for CVE-2021-44228 across all policies on a BIG-IP ASM device

Facebook account cloning/hacking advanced tool + dictionary attack added | Facebook automation tool

⚙️ `How it works`

📝 `Dependencies`

🚀 `Executing the script`