Code Monkey home page Code Monkey logo

pinaak's Introduction


Pinaak

A vulnerability fuzzing tool written in bash, it contains most commonly used tools to perform vulnerability scans.

A bash script that automatically finds vulnerable paramters on the basis of their patterns and run some most common used tools to find various vulnerabilities and it also uses nuclei which helps to find vulnerabilities on the basis of templates. Overall it helps you to find low hanging bugs.


sqlmapgf patternssmugglerOpenRedireXkxssqsreplacenucleidalfoxanewnotifyurldedupegaupluscrlfuzzffuf

Installation

Requirements: python3 and go-lang

runscan:~ sudo apt-get update
runscan:~ sudo apt-get install python3.8 python3-pip
runscan:~ sudo apt-get install golang-go

Make sure you're root before performing the installation

runscan:~ git clone https://github.com/R0X4R/Pinaak.git && cd Pinaak/ && chmod +x pinaak install.sh && mv pinaak /usr/bin/ && ./install.sh

If you get any error just copy the error and search on google this will make your debugging skills better ;)

Important (add these before using the tool you can do it by: sudo nano /usr/bin/pinaak)

header="" # please add custom header before using pinaak
intServer="" # please add interactsh server before using pinaak (http://test.interact.sh/)

Usage

Please use VPS because it makes a lot of traffic

runscan:~ ./pinaak -h

█▀█ █ █▄░█ ▄▀█ ▄▀█ █▄▀
█▀▀ █ █░▀█ █▀█ █▀█ █░█
coded by @R0X4R in INDIA

Usage: ./pinaak [options] [targetlist]
   -l  List of targets [must have webprobed earlier] (subfinder -d target.com | httpx -silent | anew targets.txt)
   -b  Add your xss server for Blind XSS finding [-b https://test.xss.ht] (you can get it from https://xsshunter.com/)
   -t  Number of threads [-t int] (default 100)

Example: ./pinaak -l [targetlist] -t [threads] -b [blind xss server]
runscan:~ subfinder -d target.com -all -threads 200 -silent | httpx -silent -threads 300 | anew -q targets.txt
runscan:~ pinaak -l ~/targets.txt -t 200 -b https://test.xss.ht

Donate

Thanks to the authors of the tools used in this script.

@tomnomnom @hahwul @projectdiscovery @devanshbatham @defparam @bp0lr @ameenmaali @dwisiswant0 @1ndianl33t @Emoe @sqlmapproject

Warning: This code was originally created for personal use, it generates a substantial amount of traffic, please use with caution

pinaak's People

Contributors

r0x4r avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar

Forkers

sec99 attacker-codeninja sahaniarun mr-1x1 bhattsameer gij03 bbhunter slooppe karmaz95 pikachu-lopz 00xdata

pinaak's Issues

cat: checkSSTI.txt: No such file or directory

Getting this error everytime I am running the tool.

Getting all the parameters
Filtering all the parameters
cat: '~/ssti-payloads.txt': No such file or directory
cat: '~/lfi-payloads.txt': No such file or directory
Scanning for template based vulnerabilities
Checking injection attacks (may contains false positive)
cat: checkSSTI.txt: No such file or directory
cat: checkLFI.txt: No such file or directory
sed: no input files

image

Failed to Fetch URLS

root@bbmachine:~/tools/Pinaak# ./pinaak -l ~/tools/Pinaak/targetlist.txt -t 200 -b https://sgill13.xss.ht

█▀█ █ █▄░█ ▄▀█ ▄▀█ █▄▀
█▀▀ █ █░▀█ █▀█ █▀█ █░█
coded by @R0X4R in INDIA

80 targets loaded.
Threads: 200

Getting all the parameters
failed to fetch URLs for [https://XXX]
failed to fetch URLs for [https://XXX]
failed to fetch URLs for [https://XXX]

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.