allfro / sploitego Goto Github PK

Maltego Penetration Testing Transforms

Python 99.99% Shell 0.01%

sploitego's Introduction

Sploitego - Maltego's (Local) Partner in Crime

1.0 - Introduction

Sploitego is a local pen-test transform package that uses the Canari Framework for local transform execution in Maltego. The framework was first introduced at DEFCON 20 and has since picked up steam.

2.0 - Installing Sploitego

2.1 - Supported Platforms

Sploitego has currently been tested on Mac OS X and Linux.

2.2 - Requirements

Sploitego is only supported on Python version 2.6. The setup script will automatically download and install most of the prerequisite modules, however, some modules will still need to be installed manually. The following modules require manual installation:

Scapy 2.1.0: See the Scapy Installation Manual for build instructions pertaining to your operating system.

Some of the transforms require external command-line tools (e.g. nmap, amap, p0f, etc.). The following command-line tools are currently supported:

Nmap version 5.51: Download
P0f version 3.05b: Download
Amap version 5.4: Download
Metasploit: Download
Nessus: Download

2.3 - Installation

Once you've installed the necessary prerequisites, installing Sploitego is a cinch. Just run:

$ sudo python setup.py install

This will install all the necessary modules and download any dependencies (other than what's required above) automatically. Once Sploitego has been installed, it's time to install the transforms. First, make sure Maltego has been run for the first time and initialized (i.e. logged in, transforms discovered, etc.). Once initialized, shutdown Maltego and run the following command:

$ canari install-package sploitego

Contact Info

Right now we only have one contributor:

Nadeem Douba: @ndouba on Twitter

sploitego's People

Contributors

Stargazers

Watchers

Forkers

mshelton hardbox nstix88 pr0hest josephrexme patelanuj28 jmrwilliams aag-satiedn vgsebastian vagen tourountzis williamthebrand therhinologician djgrasss securityigi kabot ekamioka iteamdevelopers tomosanssj2 noorye4 valontuoja gomrdozgun dipsec reality9 shaolinint securextools gamehacker esk1llz cyberscions jeandelanou ryanohoro coding4sec libertyunix naardeanz sircpower v0re robski888 izidima tsmolka awesome-python awesome-security glasseyez milk3052 widdershinns olivierh59500 tardummy01 thedeserter hotelzululima team-firebugs mgcfish macdaliot pacejj27 mryeniay h0r57 rochmad weaverheavy khasmek r3dfruitrollup inc775 hanshaze ykankaya shubhamk06 muddimedia nbg0x1 raymondseger cryp706uru hadeshacker mdand2000 ro9ueadmin wanghao233 snrtherock manynurd noraj cybernetix-s3c init10xa patsmith68 sh1nu11bi seabreg rick441 brahmanggi 0x6b7966 qing-q jplenty haryaugust rob-rychs 5l1v3r1 swastikdey175 an0nym0u5101 hugoahosta laidback4evah radicalized hartl3y94 samosan-arch stjordanis purbayan2014 imakealol jadekingdom sponkmonk vivek000 alfathsurya

sploitego's Issues

cannot import name cookie

/opt# canari create-profile sploitego
Looking for transforms in sploitego...
Traceback (most recent call last):
File "/usr/local/bin/canari", line 4, in
import('pkg_resources').run_script('canari==3.0', 'canari')
File "/usr/lib/python2.7/dist-packages/pkg_resources/init.py", line 742, in run_script
self.require(requires)[0].run_script(script_name, ns)
File "/usr/lib/python2.7/dist-packages/pkg_resources/init.py", line 1497, in run_script
exec(code, namespace, namespace)
File "/usr/local/lib/python2.7/dist-packages/canari-3.0-py2.7.egg/EGG-INFO/scripts/canari", line 22, in
canari_main()
File "/usr/local/lib/python2.7/dist-packages/canari-3.0-py2.7.egg/canari/commands/framework.py", line 33, in func
return func(self.parser.parse_args(args, namespace))
File "/usr/local/lib/python2.7/dist-packages/canari-3.0-py2.7.egg/canari/commands/common.py", line 60, in canari_main
opts.command_function(opts)
File "/usr/local/lib/python2.7/dist-packages/canari-3.0-py2.7.egg/canari/commands/create_profile.py", line 57, in create_profile
transform_package = TransformDistribution(opts.package)
File "/usr/local/lib/python2.7/dist-packages/canari-3.0-py2.7.egg/canari/pkgutils/transform.py", line 68, in init
(self.name, self.name, e))
ImportError: Does not appear to be a valid canari package. Couldn't import the 'sploitego.transforms' package in 'sploitego'. Error message: cannot import name cookie

Any insight would be great!

Cannot install without scapy==2.1.0

pip install sploitego
DEPRECATION: Python 2.7 will reach the end of its life on January 1st, 2020. Please upgrade your Python as Python 2.7 won't be maintained after that date. A future version of pip will drop support for Python 2.7.
Requirement already satisfied: sploitego in ./.virtualpy/lib/python2.7/site-packages (1.2.2)
Collecting pyiptools (from sploitego)
  Downloading https://files.pythonhosted.org/packages/e4/83/26b4911e7001cdfdfdd5e18d7b11165098db98c672fcb0373d8462ce8b20/pyiptools-0.1.tar.gz
Collecting pynessusrpc (from sploitego)
  Downloading https://files.pythonhosted.org/packages/7a/ab/65cddea0368cebbc1bce5631961ebe05ee3eeb7553f19c2e5a1862a624ac/pynessusrpc-0.3.tar.gz
Requirement already satisfied: canari in ./.virtualpy/lib/python2.7/site-packages (from sploitego) (3.3.10)
Collecting scapy==2.1.0 (from sploitego)
  ERROR: Could not find a version that satisfies the requirement scapy==2.1.0 (from sploitego) (from versions: 2.2.0-dev.linux-x86_64, 2.2.0.dev0, 2.3.1, 2.3.2, 2.3.3, 2.4.0rc2, 2.4.0rc3, 2.4.0rc4, 2.4.0rc5, 2.4.0, 2.4.1, 2.4.2, 2.4.3rc1)
ERROR: No matching distribution found for scapy==2.1.0 (from sploitego)

Since it appears that Scapy 2.1.0 is no longer supported, available for download, or even referenced in the Scapy docs, is using Sploitego still possible?

"canari install-package sploitego" result a error

when I try the "canari install-package sploitego", it has a error....

Error install sploitego

Couldn't import the 'sploitego.transforms' package in 'sploitego'. Error message: cannot import name ReportFilter

[Notification]

Your tool/software has been inventoried on Rawsec's CyberSecurity Inventory.

What is Rawsec's CyberSecurity Inventory?

An inventory of tools and resources about CyberSecurity. This inventory aims to help people to find everything related to CyberSecurity.

Open source: Every information is available and up to date. If an information is missing or deprecated, you are invited to (help us).
Practical: Content is categorized and table formatted, allowing to search, browse, sort and filter.
Fast: Using static and client side technologies resulting in fast browsing.
Rich tables: search, sort, browse, filter, clear
Fancy informational popups
Badges / Shields
Static API
Twitter bot

More details about features here.

Note: the inventory is a FLOSS (Free, Libre and Open-Source Software) project.

Why?

Specialized websites: Some websites are referencing tools but additional information is not available or browsable. Make additional searches take time.
Curated lists: Curated lists are not very exhaustive, up to date or browsable and are very topic related.
Search engines: Search engines sometimes does find nothing, some tools or resources are too unknown or non-referenced. These is where crowdsourcing is better than robots.

Why should you care about being inventoried?

Mainly because this is giving visibility to your tool, more and more people are using the Rawsec's CyberSecurity Inventory, this helps them find what they need.

Badges

The badge shows to your community that your are inventoried. This also shows you care about your project and want it growing, that your tool is not an abandonware.

Feel free to claim your badge here: http://inventory.rawsec.ml/features.html#badges, it looks like that , but there are several styles available.

So what?

That's all, this message is just to notify you if you care.

"ValueError: No JSON object could be decoded" when running a transform

I get the following error with some transforms:

<MaltegoMessage><MaltegoTransformExceptionMessage><Exceptions><Exception>Traceback (most recent call last):
  File "/usr/local/lib/python2.7/site-packages/canari/maltego/utils.py", line 222, in local_transform_runner
    ) if get_transform_version(transform_module.dotransform) == 2 else transform_module.dotransform(
  File "/usr/local/lib/python2.7/site-packages/sploitego-1.5-py2.7.egg/sploitego/transforms/pipltolocation.py", line 35, in dotransform
    last_name=request.entity.lastname or ''
  File "/usr/local/Cellar/python/2.7.10_2/Frameworks/Python.framework/Versions/2.7/lib/python2.7/json/decoder.py", line 366, in decode
    obj, end = self.raw_decode(s, idx=_w(s, 0).end())
  File "/usr/local/Cellar/python/2.7.10_2/Frameworks/Python.framework/Versions/2.7/lib/python2.7/json/decoder.py", line 384, in raw_decode
    raise ValueError("No JSON object could be decoded")
ValueError: No JSON object could be decoded
</Exception></Exceptions></MaltegoTransformExceptionMessage></MaltegoMessage>

Couldn't import the 'sploitego.transforms' package in 'sploitego'. Error message: No module named pcapy

Mac:pentest www$ canari install-package sploitego
Multiple versions of Maltego detected:
[0] Maltego v1.0.1CaseFileCE
[1] Maltego v3.4.0
[2] Maltego v3.4.0CE
Please select which version you wish to use [0]: 1
Looking for transforms in sploitego.transforms
Does not appear to be a valid canari package. Couldn't import the 'sploitego.transforms' package in 'sploitego'. Error message: No module named pcapy

i really installed pcapy.

Mac:~ www$ port installed | grep pcapy
py-pcapy @0.10.5_0 (active)
py24-pcapy @0.10.5_0 (active)
py26-pcapy @0.10.5_0 (active)
py27-pcapy @0.10.5_0 (active)

need your help.

Issue with Canari install-package sploitego Kali

Hey,
Having an issues installing the sploitego package with Canari on Kali. The following error is returned after I run the Canari command. Any help would be great. Thanks

root@kali:~# canari install-package sploitego Traceback (most recent call last): File "/usr/local/bin/canari", line 4, in <module> __import__('pkg_resources').run_script('canari==1.1', 'canari') File "/usr/lib/python2.7/dist-packages/pkg_resources/__init__.py", line 745, in run_script self.require(requires)[0].run_script(script_name, ns) File "/usr/lib/python2.7/dist-packages/pkg_resources/__init__.py", line 1670, in run_script exec(code, namespace, namespace) File "/usr/local/lib/python2.7/dist-packages/canari-1.1-py2.7.egg/EGG-INFO/scripts/canari", line 20, in <module> canari_main() File "/usr/local/lib/python2.7/dist-packages/canari-1.1-py2.7.egg/canari/commands/framework.py", line 33, in _func return func(self.parser.parse_args(args_, namespace)) File "/usr/local/lib/python2.7/dist-packages/canari-1.1-py2.7.egg/canari/commands/common.py", line 67, in canari_main opts.command_function(opts) File "/usr/local/lib/python2.7/dist-packages/canari-1.1-py2.7.egg/canari/commands/install_package.py", line 57, in install_package opts = parse_args(args) File "/usr/local/lib/python2.7/dist-packages/canari-1.1-py2.7.egg/canari/commands/install_package.py", line 23, in parse_args uproot() File "/usr/local/lib/python2.7/dist-packages/canari-1.1-py2.7.egg/canari/commands/common.py", line 91, in uproot login = os.getlogin() OSError: [Errno 2] No such file or directory

Errors when using Sploitego

I'm trying to run different modules from Sploitego on Debian with Maltego Carbon. I get the following error: http://i.imgur.com/BmABoNK.png

OS X Mavericks, cannot install sploitego

Hi,

I'm running on OS X Mavericks (latest version) and with Maltego Carbon (latest version). Trying to install and use Sploitego, but it doesn't work ok. I can install the python dependencies and extra packages ok, but finally when running canari I get the following error:

canari create-profile sploitego
Writing canari.config to /Users/gcraenen/.canari...
Looking for transforms in sploitego.transforms
Does not appear to be a valid canari package. Couldn't import the 'sploitego.transforms' package in 'sploitego'. Error message: No module named pacify

sploitego on windows

Hey Man,

I'm trying splitego on windows. All dependencies are installed.

OS: Windows 10 64bit
Python version: 2.7.10

Does not appear to be a valid canari package. Couldn't import the 'sploitego.transforms' package in 'sploitego'. Error message: cannot import name AF_UNIX

I believe this can be ported?

Great works man..

Much appreciated :)

To website category via WebSense doesn't work any more

Yes, I have a key.

Error Message: cannot import name cookie

Clarification of Issue*
OS = Kali rolling 2016.2

"with all pre-req's installed*"

pip install canari
pip install sploitego
canari create-profile sploitego

receives the following error;

Looking for transforms in sploitego...
Traceback (most recent call last):
File "/usr/local/bin/canari", line 22, in
canari_main()
File "/usr/local/lib/python2.7/dist-packages/canari/commands/framework.py", line 33, in func
return func(self.parser.parse_args(args, namespace))
File "/usr/local/lib/python2.7/dist-packages/canari/commands/common.py", line 60, in canari_main
opts.command_function(opts)
File "/usr/local/lib/python2.7/dist-packages/canari/commands/create_profile.py", line 57, in create_profile
transform_package = TransformDistribution(opts.package)
File "/usr/local/lib/python2.7/dist-packages/canari/pkgutils/transform.py", line 68, in init
(self.name, self.name, e))
ImportError: Does not appear to be a valid canari package. Couldn't import the 'sploitego.transforms' package in 'sploitego'. Error message: cannot import name cookie

help

canari run-trasform sploitego
usage: canari [-h]
{banner,create-package,create-profile,create-transform,csv2sheets,debug-transform,generate-entities,help,install-plume,list-transforms,list-commands,load-plume-package,mtgx2csv,run-transform,shell,unload-plume-package,version,generate-entities-doc}
...
canari: error: invalid choice: 'run-trasform' (choose from 'banner', 'create-package', 'create-profile', 'create-transform', 'csv2sheets', 'debug-transform', 'generate-entities', 'help', 'install-plume', 'list-transforms', 'list-commands', 'load-plume-package', 'mtgx2csv', 'run-transform', 'shell', 'unload-plume-package', 'version', 'generate-entities-doc')

setup install error when running in Kali

root@kali:/opt/sploitego# python ./setup.py install
Traceback (most recent call last):
File "./setup.py", line 8, in
import sploitego
ImportError: No module named sploitego