{"id":785,"date":"2021-08-05T12:02:48","date_gmt":"2021-08-05T17:02:48","guid":{"rendered":"https:\/\/www.searchevolution.com\/security\/?p=785"},"modified":"2022-04-27T07:42:44","modified_gmt":"2022-04-27T12:42:44","slug":"scripts-python-pour-lenumeration","status":"publish","type":"post","link":"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/","title":{"rendered":"Scripts python pour l’\u00e9num\u00e9ration"},"content":{"rendered":"

\u00c9num\u00e9ration des sous-domaines<\/strong>
\n

import requests \nimport sys \n\nsub_list = open("subdomains.txt").read() \nsubdoms = sub_list.splitlines()\n\nfor sub in subdoms:\n    sub_domains = f"http:\/\/{sub}.{sys.argv[1]}" \n\n    try:\n        requests.get(sub_domains)\n    \n    except requests.ConnectionError: \n        pass\n    \n    else:\n        print("Valid domain: ",sub_domains)   <\/code><\/pre><\/p>\n
\u00c9num\u00e9ration des r\u00e9pertoires<\/strong>
\n
import requests \nimport sys \n\nsub_list = open("wordlist.txt").read() \ndirectories = sub_list.splitlines()\n\nfor dir in directories:\n    dir_enum = f"http:\/\/{sys.argv[1]}\/{dir}.html" \n    r = requests.get(dir_enum)\n    if r.status_code==404: \n        pass\n    else:\n        print("Valid directory:" ,dir_enum)\n<\/code><\/pre><\/p>\n
Trouver les h\u00f4tes d’un r\u00e9seau
\nInstaller scapy : apt install python3-scapy
\n
from scapy.all import *\n\ninterface = "eth0"\nip_range = "10.10.X.X\/24"\nbroadcastMac = "ff:ff:ff:ff:ff:ff"\n\npacket = Ether(dst=broadcastMac)\/ARP(pdst = ip_range) \n\nans, unans = srp(packet, timeout =2, iface=interface, inter=0.1)\n\nfor send,receive in ans:\n        print (receive.sprintf(r"%Ether.src% - %ARP.psrc%"))   <\/code><\/pre><\/p>\n
Scanner de ports<\/strong>
\n
 \nimport sys\nimport socket\nimport pyfiglet\n\nascii_banner = pyfiglet.figlet_format("TryHackMe \\n Python 4 Pentesters \\nPort Scanner")\nprint(ascii_banner)\n\nip = '192.168.1.6' \nopen_ports =[] \n\nports = range(1, 65535)\n\ndef probe_port(ip, port, result = 1): \n  try: \n    sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM) \n    sock.settimeout(0.5) \n    r = sock.connect_ex((ip, port))   \n    if r == 0: \n      result = r \n    sock.close() \n  except Exception as e: \n    pass \n  return result\n\nfor port in ports: \n    sys.stdout.flush() \n    response = probe_port(ip, port) \n    if response == 0: \n        open_ports.append(port) \n    \n\nif open_ports: \n  print ("Open Ports are: ") \n  print (sorted(open_ports)) \nelse: \n  print ("Looks like no ports are open :(")\n\n<\/code><\/pre><\/p>\n
T\u00e9l\u00e9chargement d’un fichiers<\/strong>
\n
import requests\n\nurl = 'https:\/\/assets.tryhackme.com\/img\/THMlogo.png'\nr = requests.get(url, allow_redirects=True)\nopen('THMlogo.png', 'wb').write(r.content)<\/code><\/pre><\/p>\n
Script python pour crack les hashes MD5
\n
import hashlib\nimport pyfiglet\n\nascii_banner = pyfiglet.figlet_format("TryHackMe \\n Python 4 Pentesters \\n HASH CRACKER for MD 5")\nprint(ascii_banner)\n\nwordlist_location = str(input('Enter wordlist file location: '))\nhash_input = str(input('Enter hash to be cracked: '))\n\nwith open(wordlist_location, 'r') as file:\n    for line in file.readlines():\n        hash_ob = hashlib.md5(line.strip().encode())\n        hashed_pass = hash_ob.hexdigest()\n        if hashed_pass == hash_input:\n            print('Found cleartext password! ' + line.strip())\n            exit(0)<\/code><\/pre><\/p>\n
Script python pour cracker des mots de passe ssh (bruteforce)<\/strong>
\n
import paramiko\nimport sys\nimport os\n\ntarget = str(input('Please enter target IP address: '))\nusername = str(input('Please enter username to bruteforce: '))\npassword_file = str(input('Please enter location of the password file: '))\n\ndef ssh_connect(password, code=0):\n    ssh = paramiko.SSHClient()\n    ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())\n\n    try:\n        ssh.connect(target, port=22, username=username, password=password)\n    except paramiko.AuthenticationException:\n        code = 1\n    ssh.close()\n    return code\n\nwith open(password_file, 'r') as file:\n    for line in file.readlines():\n        password = line.strip()\n        \n        try:\n            response = ssh_connect(password)\n\n            if response == 0:\n                 print('password found: '+ password)\n                 exit(0)\n            elif response == 1: \n                print('no luck')\n        except Exception as e:\n            print(e)\n        pass\n\ninput_file.close()<\/code><\/pre><\/p>\n","protected":false},"excerpt":{"rendered":"
\u00c9num\u00e9ration des sous-domaines import requests import sys sub_list = open("subdomains.txt").read() subdoms = sub_list.splitlines() for sub in subdoms:     sub_domains = f"http:\/\/{sub}.{sys.argv}"     try:         requests.get(sub_domains)          except requests.ConnectionError:         pass          else:         print("Valid domain: ",sub_domains)   \u00c9num\u00e9ration des r\u00e9pertoires import requests import sys sub_list = open("wordlist.txt").read() directories = sub_list.splitlines() for dir in directories:     dir_enum = f"http:\/\/{sys.argv}\/{dir}.html"     r = requests.get(dir_enum)     if r.status_code==404:         pass     else:         print("Valid directory:" ,dir_enum) Trouver les h\u00f4tes d’un r\u00e9seau Installer scapy : apt install python3-scapy from scapy.all import * interface = "eth0" ip_range = "10.10.X.X\/24" broadcastMac = "ff:ff:ff:ff:ff:ff" packet = Ether(dst=broadcastMac)\/ARP(pdst = ip_range) ans, unans = srp(packet, timeout =2, iface=interface, inter=0.1) for send,receive <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[],"yoast_head":"\nScripts python pour l'\u00e9num\u00e9ration - S\u00e9curiser votre site<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/\" \/>\n<meta property=\"og:locale\" content=\"fr_CA\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Scripts python pour l'\u00e9num\u00e9ration - S\u00e9curiser votre site\" \/>\n<meta property=\"og:description\" content=\"\u00c9num\u00e9ration des sous-domaines import requests import sys sub_list = open("subdomains.txt").read() subdoms = sub_list.splitlines() for sub in subdoms:     sub_domains = f"http:\/\/{sub}.{sys.argv}"     try:         requests.get(sub_domains)          except requests.ConnectionError:         pass          else:         print("Valid domain: ",sub_domains)   \u00c9num\u00e9ration des r\u00e9pertoires import requests import sys sub_list = open("wordlist.txt").read() directories = sub_list.splitlines() for dir in directories:     dir_enum = f"http:\/\/{sys.argv}\/{dir}.html"     r = requests.get(dir_enum)     if r.status_code==404:         pass     else:         print("Valid directory:" ,dir_enum) Trouver les h\u00f4tes d’un r\u00e9seau Installer scapy : apt install python3-scapy from scapy.all import * interface = "eth0" ip_range = "10.10.X.X\/24" broadcastMac = "ff:ff:ff:ff:ff:ff" packet = Ether(dst=broadcastMac)\/ARP(pdst = ip_range) ans, unans = srp(packet, timeout =2, iface=interface, inter=0.1) for send,receive\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/\" \/>\n<meta property=\"og:site_name\" content=\"S\u00e9curiser votre site\" \/>\n<meta property=\"article:published_time\" content=\"2021-08-05T17:02:48+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-04-27T12:42:44+00:00\" \/>\n<meta name=\"author\" content=\"Germain\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u00c9crit par\" \/>\n\t<meta name=\"twitter:data1\" content=\"Germain\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimation du temps de lecture\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/\",\"url\":\"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/\",\"name\":\"Scripts python pour l'\u00e9num\u00e9ration - S\u00e9curiser votre site\",\"isPartOf\":{\"@id\":\"https:\/\/www.searchevolution.com\/security\/#website\"},\"datePublished\":\"2021-08-05T17:02:48+00:00\",\"dateModified\":\"2022-04-27T12:42:44+00:00\",\"author\":{\"@id\":\"https:\/\/www.searchevolution.com\/security\/#\/schema\/person\/e1318e0782dc5a7d6b03471347f881d8\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/#breadcrumb\"},\"inLanguage\":\"fr-CA\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\/\/www.searchevolution.com\/security\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Scripts python pour l’\u00e9num\u00e9ration\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.searchevolution.com\/security\/#website\",\"url\":\"https:\/\/www.searchevolution.com\/security\/\",\"name\":\"S\u00e9curiser votre site\",\"description\":\"Conna\u00eetre son ennemi\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.searchevolution.com\/security\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"fr-CA\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.searchevolution.com\/security\/#\/schema\/person\/e1318e0782dc5a7d6b03471347f881d8\",\"name\":\"Germain\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-CA\",\"@id\":\"https:\/\/www.searchevolution.com\/security\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/6a203854efbec130dd49471ccbba1abc?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/6a203854efbec130dd49471ccbba1abc?s=96&d=mm&r=g\",\"caption\":\"Germain\"},\"sameAs\":[\"https:\/\/www.searchevolution.com\/security\"],\"url\":\"https:\/\/www.searchevolution.com\/security\/author\/germain\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Scripts python pour l'\u00e9num\u00e9ration - S\u00e9curiser votre site","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/","og_locale":"fr_CA","og_type":"article","og_title":"Scripts python pour l'\u00e9num\u00e9ration - S\u00e9curiser votre site","og_description":"\u00c9num\u00e9ration des sous-domaines import requests import sys sub_list = open("subdomains.txt").read() subdoms = sub_list.splitlines() for sub in subdoms:     sub_domains = f"http:\/\/{sub}.{sys.argv}"     try:         requests.get(sub_domains)          except requests.ConnectionError:         pass          else:         print("Valid domain: ",sub_domains)   \u00c9num\u00e9ration des r\u00e9pertoires import requests import sys sub_list = open("wordlist.txt").read() directories = sub_list.splitlines() for dir in directories:     dir_enum = f"http:\/\/{sys.argv}\/{dir}.html"     r = requests.get(dir_enum)     if r.status_code==404:         pass     else:         print("Valid directory:" ,dir_enum) Trouver les h\u00f4tes d’un r\u00e9seau Installer scapy : apt install python3-scapy from scapy.all import * interface = "eth0" ip_range = "10.10.X.X\/24" broadcastMac = "ff:ff:ff:ff:ff:ff" packet = Ether(dst=broadcastMac)\/ARP(pdst = ip_range) ans, unans = srp(packet, timeout =2, iface=interface, inter=0.1) for send,receive","og_url":"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/","og_site_name":"S\u00e9curiser votre site","article_published_time":"2021-08-05T17:02:48+00:00","article_modified_time":"2022-04-27T12:42:44+00:00","author":"Germain","twitter_card":"summary_large_image","twitter_misc":{"\u00c9crit par":"Germain","Estimation du temps de lecture":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/","url":"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/","name":"Scripts python pour l'\u00e9num\u00e9ration - S\u00e9curiser votre site","isPartOf":{"@id":"https:\/\/www.searchevolution.com\/security\/#website"},"datePublished":"2021-08-05T17:02:48+00:00","dateModified":"2022-04-27T12:42:44+00:00","author":{"@id":"https:\/\/www.searchevolution.com\/security\/#\/schema\/person\/e1318e0782dc5a7d6b03471347f881d8"},"breadcrumb":{"@id":"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/#breadcrumb"},"inLanguage":"fr-CA","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.searchevolution.com\/security\/2021\/08\/05\/scripts-python-pour-lenumeration\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/www.searchevolution.com\/security\/"},{"@type":"ListItem","position":2,"name":"Scripts python pour l’\u00e9num\u00e9ration"}]},{"@type":"WebSite","@id":"https:\/\/www.searchevolution.com\/security\/#website","url":"https:\/\/www.searchevolution.com\/security\/","name":"S\u00e9curiser votre site","description":"Conna\u00eetre son ennemi","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.searchevolution.com\/security\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"fr-CA"},{"@type":"Person","@id":"https:\/\/www.searchevolution.com\/security\/#\/schema\/person\/e1318e0782dc5a7d6b03471347f881d8","name":"Germain","image":{"@type":"ImageObject","inLanguage":"fr-CA","@id":"https:\/\/www.searchevolution.com\/security\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/6a203854efbec130dd49471ccbba1abc?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/6a203854efbec130dd49471ccbba1abc?s=96&d=mm&r=g","caption":"Germain"},"sameAs":["https:\/\/www.searchevolution.com\/security"],"url":"https:\/\/www.searchevolution.com\/security\/author\/germain\/"}]}},"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/www.searchevolution.com\/security\/wp-json\/wp\/v2\/posts\/785"}],"collection":[{"href":"https:\/\/www.searchevolution.com\/security\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.searchevolution.com\/security\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.searchevolution.com\/security\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.searchevolution.com\/security\/wp-json\/wp\/v2\/comments?post=785"}],"version-history":[{"count":5,"href":"https:\/\/www.searchevolution.com\/security\/wp-json\/wp\/v2\/posts\/785\/revisions"}],"predecessor-version":[{"id":790,"href":"https:\/\/www.searchevolution.com\/security\/wp-json\/wp\/v2\/posts\/785\/revisions\/790"}],"wp:attachment":[{"href":"https:\/\/www.searchevolution.com\/security\/wp-json\/wp\/v2\/media?parent=785"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.searchevolution.com\/security\/wp-json\/wp\/v2\/categories?post=785"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.searchevolution.com\/security\/wp-json\/wp\/v2\/tags?post=785"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}