Sifter
s1l3nt78
The Dead Bunny Collective
Because enumeration is key
# Release
@Codename: Violet@Version : 11.3
[Violet's] latest release's zip package can be downloaded from here
[Violet's] latest .deb package is also available for download from here
Older Releases can be found here
---------------------------------------------------------------------------------------------------------------------------------------
Menu:
# Extentions:
- G - Sifter's g extention gives a GUI overlay
'--> Built on top of eDEX-UI
- F - Sifter's f extention provides the DanderFuzz Exploitational Plugin for Sifter
- M - Malware Analysis extention for Sifter
- C - Sifter's c extention is just a small script allowing CobaltStrike to be added to exploitation frameworks. (A copy of CobaltStrike will NOT be provided, this is for those who already have it.)
# Additions:
- DeadTrapv2 - Mobile Number OSINT.
- GHunt - GHunt is an OSINT tool to extract information from any Google Account using an email.
- TruffleSnout - Iterative AD discovery toolkit for offensive operators. Situational awareness and targeted low noise enumeration.
'--> Preference for OpSec.
- Mitre-Attack Website - Provides basic navigation and annotation of ATT&CK matrices
- BetterSafetyKatz - Modified fork of SafetyKatz dynamically patching runtime, based on detected signatures using SharpSploit DInvoke to get it into memory
- CVE-2018-8120 - Added for extra Privilege Escalation options on a targte session
- WebMap - WebMap provides an http web panel to interact with nMap
- ThreatCheck - Checks a binary from disk or URL splits it until it pinpoints that exact bytes that the target engine will flag on and prints them to the screen.
- Responder - LLMNR, NBT-NS and MDNS poisoner.
# Overview
Sifter is a osint, recon & vulnerability scanner. It combines a plethara
of tools within different module sets in order to quickly perform recon tasks,
check network firewalling, enumerate remote and local hosts, and scan for the 'blue'
vulnerabilities within microsft and if unpatched, exploit them. It uses tools like
blackwidow and konan for webdir enumeration and attack surface mapping rapidly using ASM.
Gathered info is saved to the results folder, these output files can be easily parsed over to TigerShark
in order to be utilised within your campaign. Or compiled for a final report to wrap up a penetration test.
Setup Video
Demo Video - Its long, but you can skip through to get the general idea.
Most modules are explained along with demos of a lot of the tools
# Tested OS
Working on: - Kali- Parrot
- Ubuntu
- Linux (any distro)
- Windows (Linux Subsystem with Docker and VcXsrc - for xterm use - install correctly)
Works on windows with linux-subsystem but please ensure docker is properly installed and configured,
following the instructions from docker website
Untested on mac, though theoretically the same should apply to mac as windows - regarding docker install & tools
# NOTE!!
If a scan does not work correctly at first, remove web-protocol from target.eg. target.com - instead of http://target.com
# Installation:
* This will download and install all required tools*
$ git clone https://github.com/s1l3nt78/sifter.git
$ cd sifter
$ chmod +x install.sh
$ ./install.sh
*
* For oneliner install, copy and paste the following code into a terminal
*
$ git clone https://github.com/s1l3nt78/sifter.git && cd sifter && bash install.sh
----------------------------------------------------------------------------------------------------------------------------------
Modules
- theHarvester
- Osmedeus
- ReconSpider
- CredNinja
- OSINT-Framework
- ActiveReign
- iSpy
- SMBGhost
-- SMBGhost Scanner
-- SMBGhost Exploit
- EoP Exploit (Privilege Escalation Exploit)
- Omega
- WinPwn
- CredHarvester
- PowerSharp
- ACLight2
- PowerHub
- InveighZero
- Potatoes
-- BadPotato
-- SweetPotato
- PEAS
-- winPEAS
-- linPEAS
- BetterSafetyKatz
+ FuzzyDander - Equation Group, Courtesy of the Shadow Brokers
(Obtained through issue request.)
- FuzzBunch
- Danderspritz
+ NevrrMore - Private Exploitation framework I've been developing that will
not be released opensource. Due to certain 0days and other exploits/tools
it would cause too much unintentional/illintentioned damage.
+ TigerShark
+ Thoron
+ Metasploit
- Nmap
- AttackSurfaceMapper
- aSnip
- wafw00f
- Arp-Scan
- Espionage
- Intrigue-Core
- RouterSploit
- MkCheck
- Airgeddon
- Flan
- Rapidscan
- Yuki-Chan
- KatanaFramework
- OWASP-Nettacker
- Big IP Remote Execution Scanner
- Nikto
- Blackwidow
- Wordpress
--- WPScan
--- WPForce/Yertle
- Zeus-Scanner
- Dirb
- DorksEye
- Katana-DS (Dork Scanner)
- WhiteWidow
- V3n0M-Scanner
- XSStrike
- finDOM-XSS
- XSS-Freak
- This was added in order to have a fun way to pass time
during the more time intensive modules.
Such as nMap Full Port scan or a RapidScan run.
Sifter Help Menu
# Other Projects
All information on projects in development can be found here.
For any requests or ideas on current projects please submit an issue request to the corresponding tool.
For ideas or collaboration requests on future projects., contact details can be found on the page.
GitHub Pages can be found here.
- MkCheck = MikroTik Router Exploitation Tool
- TigerShark = Multi-Tooled Phishing Framework
############# VGhlIERlYWQgQnVubnkgQ2x1Yg== #############