Yuyu Scanner is a Web Reconnaissance & Web Analysis Scanner to find assets and information about targets.

Last update: Nov 24, 2022

Related tags

Overview

Yuyu Scanner

Yuyu Scanner is a Web Reconnaissance & Web Analysis Scanner to find assets and information about targets.

installation

   ! run as root
   ~$ chmod +x install.sh
   ~$ ./install.sh

Preview

GUI

This Gui is made using Electron JS and Bootstrap

CLI

This CLI was created using the python language program

REPORTING

Features

Available for Gui Version

Subdomain Discovery with Passive Method from Public Api

          http://web.archive.org/
          https://threatcrowd.org/
          https://urlscan.io/
          https://rapiddns.io/
          https://otx.alienvault.com/
          https://dnsdumpster.com/
          https://crt.sh/
          https://api.threatminer.org/
          https://api.certspotter.com/
          https://api.hackertarget.com/
          https://riddler.io/
          http://index.commoncrawl.org/

Top 10 port scanning with NMAP
Url Discovery from waybackurl
IP Discovery
Title Discovery of target
Common sensitive files Discovery
Status code Discovery from subdomain result
Reverse IP with Passive Method from Public Api
Checking Collected Subdomain and IP Address
Email Address Discovery with Passive Method from Public Api
WHOIS Lookup
Save all Discovery result
Generate HTML Report
Generate JSON Report
Multiprocessing

Usage

Basic Arguments:

        ~$ python3 yuyu.py -u domain.com [arg]

            -h, --help            show this help message and exit
            -u URL, --url URL     Target URL
            -g, --gui             Run Yuyu in Gui Mode
            -sp, --scanport       Port Discovery from Discovery IP
            -ri, --revip          Reverse IP from target URL
            -wl, --whois          Whois Lookup from target URL
            -cu, --collecturl     Collect URL from target URL & Subdomain Result
            -ed, --emaildiscover  Email Discovery jfrom Subdomain Result
            -fs, --filesensitive  Find Sensitive Files from Subdomain Result

Run Gui

  bash gui.sh run

Stop Gui

  bash gui.sh stop

Publication

https://www.researchgate.net/publication/352295423_PENGEMBANGAN_APLIKASI_INFORMATION_GATHERING_MENGGUNAKAN_METODE_HYBRID_SCAN_BERBASIS_GRAPHICAL_USER_INTERFACE

Contact me

akazh - Twitter

Yuyu Scanner is a Web Reconnaissance & Web Analysis Scanner to find assets and information about targets.

Related tags

Overview

Yuyu Scanner

installation

Preview

GUI

CLI

REPORTING

Features

Usage

Run Gui

Stop Gui

Publication

Contact me

References

Credits & Thanks

Owner

Justakazh

Unicode fuzzer for various purposes

Midas ELF64 Injector is a tool that will help you inject a C program from source code into an ELF64 binary.

Threat Intelligence Gathering 威胁情报收集，旨在提高蓝队拿到攻击 IP 后对其进行威胁情报信息收集的效率。

Installation of hacking tools

KeyKatcher is a keylogger that records keystrokes made on a computer and sends to the E-Mail.

Orthrus is a macOS agent that uses Apple's MDM to backdoor a device using a malicious profile.

This repository detects a system vulnerable to CVE-2022-21907 and protects against this vulnerability if desired

CVE-2021-41773 Path Traversal for Apache 2.4.49

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

Just another script for automatize boolean-based blind SQL injections.

hackinsta: a program to hack instagram

The self-hostable proxy tunnel

Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228)

Trainspotting - Python Dependency Injector based on interface binding

Argument Injection in Dragonfly Ruby Gem

HatSploit collection of generic payloads designed to provide a wide range of attacks without having to spend time writing new ones.

Burp Extensions

Blinder is a tool that will help you simplify the exploitation of blind SQL injection

A Safer PoC for CVE-2022-22965 (Spring4Shell)

OpenPort scanner GUI tool (CNMAP)