Yuyu Scanner is a Web Reconnaissance & Web Analysis Scanner to find assets and information about targets.

Last update: Nov 24, 2022

Related tags

Overview

Yuyu Scanner

Yuyu Scanner is a Web Reconnaissance & Web Analysis Scanner to find assets and information about targets.

installation

   ! run as root
   ~$ chmod +x install.sh
   ~$ ./install.sh

Preview

GUI

This Gui is made using Electron JS and Bootstrap

CLI

This CLI was created using the python language program

REPORTING

Features

Available for Gui Version

Subdomain Discovery with Passive Method from Public Api

          http://web.archive.org/
          https://threatcrowd.org/
          https://urlscan.io/
          https://rapiddns.io/
          https://otx.alienvault.com/
          https://dnsdumpster.com/
          https://crt.sh/
          https://api.threatminer.org/
          https://api.certspotter.com/
          https://api.hackertarget.com/
          https://riddler.io/
          http://index.commoncrawl.org/

Top 10 port scanning with NMAP
Url Discovery from waybackurl
IP Discovery
Title Discovery of target
Common sensitive files Discovery
Status code Discovery from subdomain result
Reverse IP with Passive Method from Public Api
Checking Collected Subdomain and IP Address
Email Address Discovery with Passive Method from Public Api
WHOIS Lookup
Save all Discovery result
Generate HTML Report
Generate JSON Report
Multiprocessing

Usage

Basic Arguments:

        ~$ python3 yuyu.py -u domain.com [arg]

            -h, --help            show this help message and exit
            -u URL, --url URL     Target URL
            -g, --gui             Run Yuyu in Gui Mode
            -sp, --scanport       Port Discovery from Discovery IP
            -ri, --revip          Reverse IP from target URL
            -wl, --whois          Whois Lookup from target URL
            -cu, --collecturl     Collect URL from target URL & Subdomain Result
            -ed, --emaildiscover  Email Discovery jfrom Subdomain Result
            -fs, --filesensitive  Find Sensitive Files from Subdomain Result

Run Gui

  bash gui.sh run

Stop Gui

  bash gui.sh stop

Publication

https://www.researchgate.net/publication/352295423_PENGEMBANGAN_APLIKASI_INFORMATION_GATHERING_MENGGUNAKAN_METODE_HYBRID_SCAN_BERBASIS_GRAPHICAL_USER_INTERFACE

Contact me

akazh - Twitter

Yuyu Scanner is a Web Reconnaissance & Web Analysis Scanner to find assets and information about targets.

Related tags

Overview

Yuyu Scanner

installation

Preview

GUI

CLI

REPORTING

Features

Usage

Run Gui

Stop Gui

Publication

Contact me

References

Credits & Thanks

Owner

Justakazh

Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228

Proof on Concept Exploit for CVE-2021-38647 (OMIGOD)

Bandit is a tool designed to find common security issues in Python code.

Docker Compose based system for running remote browsers (including Flash and Java support) connected to web archives

CC CAMERA HACKING TOOL

MozDef: Mozilla Enterprise Defense Platform

Nmap automated port scanner written in Python

A collection of write-ups and solutions for Cyber FastTrack Spring 2021.

A Python script that can be used to check if a SAP system is affected by CVE-2022-22536

Writeups for wtf-CTF hosted by Manipal Information Security Team as part of Techweek2021- INCOGNITO

Grafana-0Day-Vuln-POC

Fetch Chrome, Firefox, WiFi password and system info

Chrome Post-Exploitation is a client-server Chrome exploit to remotely allow an attacker access to Chrome passwords, downloads, history, and more.

Herramienta para descargar eventos de Sucuri WAF hacia disco.

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

Apache Solr SSRF(CVE-2021-27905)

CVE-2021-26084 Remote Code Execution on Confluence Servers

Add a Web Server based on Rogue Mysql Server to allow remote user get

🔍 IRIS: An open-source intelligence framework

Phoenix Framework is an environment for writing, testing and using exploit code.