I was working on some automated tasks to include in my workflow and realized I wanted to use gobuster for launching dictionary-based enumeration on targets. I was currently using dirb for this but gobuster seems to be the faster tool to use. I fell behind on my…
Author: Ryan Wendel
Pulling web hosts from Nessus output
I hacked a python script together to parse out web hosts (and their corresponding URLs) from nessus XML output. I’m using this as part of my pentesting workflow to feed to other web-based tools like, EyeWitness, Nikto, dirb, gobuster, etc. Feed it a single argument that points…
Enumerating hosts with nmap
This is a script I use to enumerate hosts with the nmap scanning tool. Feed it a host/ip and base directory (under which another directory will be created to store enumeration data). Something like: You can also find this in my Gists at github at https://gist.github.com/ryan-wendel/2266751e23641ed0ff38fb7a2c3502cf The…
Hello world!
Just getting the blog put together… Haven’t goofed with one in a long time. This blog will act as a diary of some sorts. I’ll be tossing up some of the scripts/code that I hack together. I imagine nothing too awful ground-breaking but certainly something others *should*…