Yuyu Scanner is a Web Reconnaissance & Web Analysis Scanner to find assets and information about targets.

Last update: Nov 24, 2022

Related tags

Overview

Yuyu Scanner

Yuyu Scanner is a Web Reconnaissance & Web Analysis Scanner to find assets and information about targets.

installation

   ! run as root
   ~$ chmod +x install.sh
   ~$ ./install.sh

Preview

GUI

This Gui is made using Electron JS and Bootstrap

CLI

This CLI was created using the python language program

REPORTING

Features

Available for Gui Version

Subdomain Discovery with Passive Method from Public Api

          http://web.archive.org/
          https://threatcrowd.org/
          https://urlscan.io/
          https://rapiddns.io/
          https://otx.alienvault.com/
          https://dnsdumpster.com/
          https://crt.sh/
          https://api.threatminer.org/
          https://api.certspotter.com/
          https://api.hackertarget.com/
          https://riddler.io/
          http://index.commoncrawl.org/

Top 10 port scanning with NMAP
Url Discovery from waybackurl
IP Discovery
Title Discovery of target
Common sensitive files Discovery
Status code Discovery from subdomain result
Reverse IP with Passive Method from Public Api
Checking Collected Subdomain and IP Address
Email Address Discovery with Passive Method from Public Api
WHOIS Lookup
Save all Discovery result
Generate HTML Report
Generate JSON Report
Multiprocessing

Usage

Basic Arguments:

        ~$ python3 yuyu.py -u domain.com [arg]

            -h, --help            show this help message and exit
            -u URL, --url URL     Target URL
            -g, --gui             Run Yuyu in Gui Mode
            -sp, --scanport       Port Discovery from Discovery IP
            -ri, --revip          Reverse IP from target URL
            -wl, --whois          Whois Lookup from target URL
            -cu, --collecturl     Collect URL from target URL & Subdomain Result
            -ed, --emaildiscover  Email Discovery jfrom Subdomain Result
            -fs, --filesensitive  Find Sensitive Files from Subdomain Result

Run Gui

  bash gui.sh run

Stop Gui

  bash gui.sh stop

Publication

https://www.researchgate.net/publication/352295423_PENGEMBANGAN_APLIKASI_INFORMATION_GATHERING_MENGGUNAKAN_METODE_HYBRID_SCAN_BERBASIS_GRAPHICAL_USER_INTERFACE

Contact me

akazh - Twitter

Yuyu Scanner is a Web Reconnaissance & Web Analysis Scanner to find assets and information about targets.

Related tags

Overview

Yuyu Scanner

installation

Preview

GUI

CLI

REPORTING

Features

Usage

Run Gui

Stop Gui

Publication

Contact me

References

Credits & Thanks

Owner

Justakazh

Phoenix Framework is an environment for writing, testing and using exploit code.

Python Library For Ethical Hacker

Exploit tool for Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerability

Tool for finding PHP source code vulnerabilities.

ClusterFuzz is a scalable fuzzing infrastructure that finds security and stability issues in software.

Exploit for CVE-2017-17562 vulnerability, that allows RCE on GoAhead (< v3.6.5) if the CGI is enabled and a CGI program is dynamically linked.

Blinder is a tool that will help you simplify the exploitation of blind SQL injection

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

An easy-to-use wrapper for NTFS-3G on macOS

Attack SQL Server through gopher protocol

Dumps the payload.bin image found in Android update images.

BETA: Layla - recon tool for bug bounty

windows电脑查看全部连接过的WiFi密码

CVE-2022-21907 - Windows HTTP协议栈远程代码执行漏洞 CVE-2022-21907

SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.

Python program that generates secure passwords.

Webpack自动化信息收集

Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.

Bypass's HCaptcha by overloading their api causing it to throwback a generated uuid. (Released due to exposure)

Obfuscated Gradients Give a False Sense of Security: Circumventing Defenses to Adversarial Examples