Saker is a utility suite for penetration testing. It can be used to collect information of subdomains, website penetration / scanning, obfuscation of certain vulnerabilities, brute password and dirs.
Installation
git clone https://github.com/LyleMi/Saker.git
pip install -r requirements.txt
python setup.py installor
pip install Saker
Use
Scan Website
from saker.core.scaner import Saker s = Saker ("http://127.0.0.1") s.scan (filename = "index.php", ext = "php")
Generate fuzz payload
from saker.fuzzer.code import Code payload = Code.fuzzErrorUnicode (payload)
from saker.fuzzers.ssi import SSI payloads = SSI.test ()
Brute password or others
from saker.brute.dir import DirBrute dirBrute = DirBrute ("php", "index.php") paths = dirBrute.weakfiles ()
Call Third Party APIs
Crt.sh
from saker.api.crtsh import crtsh crtsh("github.com")
DNSDumper
from saker.api.dnsdumper import DNSdumpster DNSdumpster ("github.com")
Github API
from saker.api.githubapi import GithubAPI g = GithubAPI () g.gatherByEmail ("@ github.com")
SQLMap API
from saker.api.sqlmap import SQLMap options = {"url": "https://github.com"} SQLMap (). scan (options)
Handle HTML
from saker.handler.htmlhandler import HTMLHandler h = HTMLHandler("title ") print(h.title)
Scanner Port
from saker.port.nmap import Nmap n = Nmap (domain) ret = n.run () print (n.ret)
Special Server
from saker.servers.socket.dnsrebinding import RebindingServer values = result 'result': ['8.8.8.8', '127.0.0.1'], 'index': 0 ns dnsServer = RebindingServer (values) dnsServer.serve_forever ()
Information about the application, you will find here.
