Merge pull request #11 from Vault-Cyber-Security/dev

New version Owasp-Day Natal
devfoundsec · Nov 30, 2019 · 8496ec4 · 8496ec4
2 parents b1beffa + a4fd09c
commit 8496ec4
Show file tree

Hide file tree

Showing 5 changed files with 53 additions and 62 deletions.
diff --git a/Dockerfile b/Dockerfile
@@ -9,3 +9,4 @@ RUN apk update && apk add python2 python3 git bash gcc g++ libxslt-dev freetds-d
   && rm -rf *tar.gz
 ENV PATH /usr/local/bin:/usr/local/sbin:/usr/sbin:/usr/bin:/sbin:/bin:/root/.local/bin:/packages/src:/usr/local/go/bin
 RUN bash /packages/src/install-osint.sh
+ENTRYPOINT /bin/bash
diff --git a/README.md b/README.md
@@ -1,5 +1,9 @@
+<p align="center">
+		<img src="img/vcb.gif" height=200 alt="Scorpion-Osint">
+</p>
+
 # OSINT 
-Docker image for osint tools, in progress
+Docker image for osint tools with Vault Cyber Security
 
 # Run
 ```docker
@@ -23,4 +27,7 @@ The image was wrote for Security Osint with tools:
   -  R3dOv3r: __Know the dangers of credential reuse attacks__
   -  Buster: __Find emails of a person and return info associated with them__
   -  InstagramOsint: __An Instagram Open Source Intelligence Tool__ 
+  -  Datasploit: __A tool to perform various OSINT techniques__
+  -  Cloudfail: __Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network__
+  -  WAFW00F: __WAFW00F identifies and fingerprints Web Application Firewall (WAF) products__
 
diff --git a/ascii-art.sh b/ascii-art.sh
diff --git a/img/vcb.gif b/img/vcb.gif
diff --git a/install-osint.sh b/install-osint.sh
@@ -1,4 +1,4 @@
-#!/usr/bin/sh
+#!/usr/bin/bash
 
 # Fix problems of directories
 here="`dirname "$0"`"
@@ -10,6 +10,8 @@ green='\e[92m'
 red='\e[91m'
 end='\e[0m'
 bgred='\e[41m'
+bold='\e[1m'
+bwhite='\e[1;97m'
 # Status
 correct="[\e[1m\e[92;1m ✔ $end]"
 incorrect="[\e[1m\e[91;1m ✘ $end]"
@@ -37,7 +39,7 @@ _install_pip 'pip3' 'cython'
 # Operative-framework
 _run 'go get github.com/graniet/operative-framework'
 # Install D4N155
-_install_git 'https://github.com/OWASP/D4N155.git'
+_install_git 'https://githu b.com/OWASP/D4N155.git'
 _install_pip 'pip3' '-r /workspace/D4N155/requirements.txt'
 # Install Sherlock
 _install_git 'https://github.com/sherlock-project/sherlock.git'
@@ -47,7 +49,6 @@ _install_git 'https://github.com/sundowndev/PhoneInfoga'
 _install_pip 'pip3' '-r /workspace/PhoneInfoga/requirements.txt'
 _run 'mv /workspace/PhoneInfoga/config.example.py /workspace/PhoneInfoga/config.py'
 # Install Karma
-
 _install_pip 'pip3' 'git+https://github.com/decoxviii/karma.git'
 # Install SE Toolkit 
 _install_git 'https://github.com/trustedsec/social-engineer-toolkit.git'
@@ -68,13 +69,52 @@ _install_git 'https://github.com/darkoperator/dnsrecon.git'
 _install_pip 'pip2' '-r /workspace/dnsrecon/requirements.txt'
 # Install Buster
 _install_git 'https://github.com/sham00n/buster.git'
+_install_pip 'pip3' 'numpy'
 _run "cd workspace/buster;python3 setup.py install;cd $here"
 # Install Whois
 _run 'apk add whois nmap'
 # Install osrframework
 _install_pip 'pip2' 'osrframework'
+_run 'wget https://raw.githubusercontent.com/i3visio/osrframework/master/config/general.cfg -O ~/.config/OSRFramework/default/general.cfg'
+_run 'wget https://github.com/i3visio/osrframework/blob/master/config/browser.cfg -O /root/.config/OSRFramework/default/browser.cfg'
 # Install InstagramOsint
 _install_git 'https://github.com/sc1341/InstagramOSINT.git'
 _install_pip 'pip3' '-r /workspace/InstagramOSINT/requirements.txt'
+# Install Datasploit
+_install_git 'https://github.com/dvopsway/datasploit.git'
+_install_pip 'pip2.7' '--upgrade -r /workspace/datasploit/requirements.txt'
+# Install Cloudfail
+_install_git 'https://github.com/m0rtem/CloudFail.git'
+_install_pip 'pip3' '-r /workspace/CloudFail/requirements.txt'
+
+# Install editor
+_run 'apk add vim'
+
+# Banner
+banner="
+
+\t\t ~$bwhite TOOLS $end~
+\t$bwhite Operative-framework$end: operative framework is a OSINT investigation framework
+\t$bwhite D4N155$end: Intelligent and dynamic wordlist using OSINT
+\t$bwhite Sherlock$end: Find usernames across social networks
+\t$bwhite PhoneInfoga$end: Advanced information gathering & OSINT tool for phone numbers
+\t$bwhite Karma$end: Find leaked emails with your passwords
+\t$bwhite Recon-ng$end: Recon-ng is a full-featured Web Reconnaissance framework written in Python
+\t$bwhite SE Toolkit$end: The Social-Engineer Toolkit
+\t$bwhite OpenVas$end: Open Vulnerability Assessment Scanner 
+\t$bwhite The Harvester$end: E-mails, subdomains and names Harvester - OSINT
+\t$bwhite Whois$end: Get whois data
+\t$bwhite osrframework$end: Open Sources Research Framework
+\t$bwhite R3dOv3r$end: Know the dangers of credential reuse attacks
+\t$bwhite Buster$end: Find emails of a person and return info associated with them
+\t$bwhite InstagramOsint$end: An Instagram Open Source Intelligence Tool 
+\t$bwhite Datasploit$end: A tool to perform various OSINT techniques
+\t$bwhite Cloufail$end: Utilize misconfigured DNS and old database records to find hidden IP\'s behind the CloudFlare network
+
+"
+
 
-cat ascii-art.sh >> ~/.bashrc
+# bashrc
+_run 'wget https://raw.githubusercontent.com/Scorpion-Cyber-Security/vault-bash/master/.bashrc -O .bashrc'
+cat .bashrc >> ~/.bashrc
+echo -e "printf \"\"\"$banner\"\"\"" >> ~/.bashrc