{"id":2762,"date":"2016-02-25T04:44:21","date_gmt":"2016-02-25T04:44:21","guid":{"rendered":"http:\/\/www.pir8geek.com\/?p=2762"},"modified":"2016-02-25T04:44:21","modified_gmt":"2016-02-25T04:44:21","slug":"atscan-search-site-server-scanner","status":"publish","type":"post","link":"https:\/\/www.jameseduard.com\/?p=2762","title":{"rendered":"ATSCAN &#8211; Search \/ Site \/ Server Scanner"},"content":{"rendered":"<p><strong>ATSCAN &#8211; Search \/ Site \/ Server Scanner<\/strong><\/p>\n<ul>\n<li>SEARCH engine<\/li>\n<li>XSS scanner.<\/li>\n<li>Sqlmap.<\/li>\n<li>LFI scanner.<\/li>\n<li>Filter wordpress and Joomla sites in the server.<\/li>\n<li>Find Admin page.<\/li>\n<li>Decode \/ Encode MD5 + Base64.<\/li>\n<li>Ports scan.<\/li>\n<li>Scan E-mails in sites.<\/li>\n<li>Use proxy.<\/li>\n<li>Random user agent.<\/li>\n<li>Fandom search engine.<\/li>\n<li>Scan errors.<\/li>\n<li>Detect Cms.<\/li>\n<li>Multiple instant scan.<\/li>\n<li>Disponible on BlackArch Linux Platform.<\/li>\n<\/ul>\n<p>&nbsp;<br \/>\n<b>Libreries to install: <\/b><br \/>\nap-get install libxml-simple-perl<br \/>\naptitude install libio-socket-ssl-perl<br \/>\naptitude install libcrypt-ssleay-perl<br \/>\nNOTE: Works in linux platforms. Best Run on Ubuntu 14.04, Kali Linux 2.0, Arch Linux, Fedora Linux, Centos | if you use a windows you can download manualy.<br \/>\n<b>Download &amp; Executution: <\/b><br \/>\ngit clone <a href=\"https:\/\/github.com\/AlisamTechnology\/ATSCAN\" target=\"_blank\" rel=\"noopener noreferrer\">https:\/\/github.com\/AlisamTechnology\/ATSCAN <\/a><br \/>\ncd ATSCAN<br \/>\nchmod +x ATSCAN<br \/>\nOR<br \/>\n$chmod +x atscan.pl<br \/>\nExecute: perl .\/atscan.pl<br \/>\nHelp: perl .\/atscan.pl &#8211;help<br \/>\nUpdate: perl .\/atscan.pl &#8211;update<br \/>\n<b>Screenshots:<\/b><br \/>\n<img fetchpriority=\"high\" decoding=\"async\" class=\"alignnone size-full wp-image-2763\" src=\"http:\/\/www.pir8geek.com\/wp-content\/uploads\/2016\/02\/ATSCAN_01.jpeg\" alt=\"ATSCAN_01\" width=\"640\" height=\"339\" \/> <img decoding=\"async\" class=\"alignnone size-full wp-image-2764\" src=\"http:\/\/www.pir8geek.com\/wp-content\/uploads\/2016\/02\/ATSCAN_02.jpeg\" alt=\"ATSCAN_02\" width=\"640\" height=\"358\" \/> <img decoding=\"async\" class=\"alignnone size-full wp-image-2765\" src=\"http:\/\/www.pir8geek.com\/wp-content\/uploads\/2016\/02\/ATSCAN_03.jpeg\" alt=\"ATSCAN_03\" width=\"640\" height=\"358\" \/> <img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2766\" src=\"http:\/\/www.pir8geek.com\/wp-content\/uploads\/2016\/02\/ATSCAN_04.jpeg\" alt=\"ATSCAN_04\" width=\"640\" height=\"358\" \/><br \/>\n&nbsp;<br \/>\n<b>Help: <\/b><br \/>\n&#8211;proxy<br \/>\nSet tor proxy [Ex: socks:\/\/localhost:9050]<br \/>\n&#8211;dork<br \/>\ndork to search [Ex: house,cars,hotel]<br \/>\n&#8211;level<br \/>\nScan level (+- Number of page results to scan)<br \/>\n&#8211;xss<br \/>\nXss scan<br \/>\n&#8211;joomrfi<br \/>\njoomla local file inclusion scan<br \/>\n-t<br \/>\nTarget<br \/>\n&#8211;TARGET<br \/>\nCaptured Target<br \/>\n&#8211;FULL_TARGET<br \/>\nCaptured Full Target<br \/>\n&#8211;exp<br \/>\nSet exploit<br \/>\n&#8211;valid<br \/>\nText to validate results<br \/>\n&#8211;sqlmap<br \/>\nSqlmaping xss results<br \/>\n&#8211;lfi<br \/>\nlocal file inclusion<br \/>\n&#8211;joomrfi<br \/>\nget joomla sites with rfi<br \/>\n&#8211;shell<br \/>\nshell link [Ex: <a href=\"http:\/\/www.site.com\/shell.txt\" target=\"_blank\" rel=\"noopener noreferrer\">http:\/\/www.site.com\/shell.txt <\/a>]<br \/>\n&#8211;wpadf<br \/>\nget wordpress sites with arbitery file download<br \/>\n&#8211;admin<br \/>\nget site admin page<br \/>\n&#8211;shost<br \/>\nget site subdomains<br \/>\n&#8211;ports<br \/>\nscan server ports<br \/>\n&#8211;start<br \/>\nstart scan port<br \/>\n&#8211;end<br \/>\nend scan port<br \/>\n&#8211;all<br \/>\ncomplete mode<br \/>\n&#8211;basic<br \/>\nbasic mode<br \/>\n&#8211;select<br \/>\nSelect mode you can set rang of ports<br \/>\n&#8211;sites<br \/>\nsites in the server<br \/>\n&#8211;wp<br \/>\nget wordpress sites<br \/>\n&#8211;joom<br \/>\nGetjoomla sites<br \/>\n&#8211;upload<br \/>\nget sites with upload files<br \/>\n&#8211;zip<br \/>\nget sites with zip files<br \/>\n&#8211;save<br \/>\nfile prefix to save results (if not set tool sets one)<br \/>\n&#8211;md5<br \/>\nconvert to md5<br \/>\n&#8211;encode64<br \/>\nencode base64 string<br \/>\n&#8211;decode64<br \/>\ndecode base64 string<br \/>\n&#8211;isup<br \/>\ncheck http status 200<br \/>\n&#8211;email<br \/>\nExtract e-mails<br \/>\n&#8211;command<br \/>\nExternal Command<br \/>\n&#8211;replace<br \/>\nstring to replace<br \/>\n&#8211;with<br \/>\nstring to replace with<br \/>\n&#8211;save<br \/>\nSet prefix to saved files<br \/>\n&#8211;rang<br \/>\nSet range of ip<br \/>\n&#8211;nobanner<br \/>\nHide tool banner<br \/>\n&#8211;beep<br \/>\nProduce beep sount if positive scan found<br \/>\n<b>Examples: <\/b><br \/>\n<b>Simple search: <\/b><br \/>\nSearch: &#8211;dork [dork] &#8211;level [level]<br \/>\nSearch with many dorks: &#8211;dork [dork1,dork2,dork3] &#8211;level [level]<br \/>\nSearch + set save file: &#8211;dork [dorks.txt] &#8211;level [level] &#8211;save myfile.txt<br \/>\nSearch + Replace + Exploit: &#8211;dork [dorks.txt] &#8211;level [level] &#8211;replace [string] &#8211;with [string] &#8211;valid [string]<br \/>\nSearch + Extract e-mails: &#8211;dork [dorks.txt] &#8211;level [level] &#8211;email<br \/>\n<b>Subscan from Serach Engine: <\/b><br \/>\nSearch + Exploitation: &#8211;dork [dork] &#8211;level [10] &#8211;xss\/&#8211;lfi\/&#8211;wp &#8230;<br \/>\nSearch + xss + sqlmap: &#8211;dork [dork] &#8211;level [10] &#8211;xss &#8211;sqlmap<br \/>\nSearch + Server Exploitation: -t [ip] &#8211;level [10] &#8211;xss\/&#8211;lfi\/&#8211;wp &#8230;<br \/>\nSearch + Server Exploitation: &#8211;rang 133.21.10.155-19.102.25.14 &#8211;level [10] &#8211;xss\/&#8211;lfi\/&#8211;wp &#8230;<br \/>\nSearch + Replace + Exploit: &#8211;dork [dork] &#8211;level [10] &#8211;replace [string] &#8211;with [string] &#8211;exp [exploit] &#8211;xss\/&#8211;lfi\/&#8211;wp &#8230;<br \/>\n<b>Validation: <\/b><br \/>\nSearch + Exploit + Validation: &#8211;dork [dork] &#8211;level [10] &#8211;exp &#8211;isup\/&#8211;valid [string]<br \/>\nSearch + Server Exploit + Validation: -t [ip] &#8211;level [10] &#8211;exp &#8211;isup\/&#8211;valid [string]<br \/>\nSearch + Replace + Exploit: &#8211;dork [dork] &#8211;level [10] &#8211;replace [string] &#8211;with [string] &#8211;isup\/&#8211;valid [string]<br \/>\n<b>Use List \/ Target: <\/b><br \/>\n-t [target\/targets.txt] &#8211;exp &#8211;isup\/&#8211;valid [string]<br \/>\n-t [target\/targets.txt] &#8211;xss\/&#8211;lfi ..<br \/>\n<b>Server: <\/b><br \/>\nGet Server sites: -t [ip] &#8211;level [value] &#8211;sites<br \/>\nGet Server wordpress sites: -t [ip] &#8211;level [value] &#8211;wp<br \/>\nGet Server joomla sites: -t [ip] &#8211;level [value] &#8211;joom<br \/>\nGet Server upload sites: -t [ip] &#8211;level [value] &#8211;upload<br \/>\nGet Server zip sites files: -t [ip] &#8211;level [value] &#8211;zip<br \/>\nWP Arbitry File Download: -t [ip] &#8211;level [value] &#8211;wpadf<br \/>\nJoomla RFI: -t [ip] &#8211;level [1] &#8211;joomfri &#8211;shell [shell link]<br \/>\nScan basic tcp (quick): -t [ip] &#8211;ports &#8211;basic tcp<br \/>\nScan basic udp basic (quick): -t [ip] &#8211;ports &#8211;basic udp<br \/>\nScan basic udp+tcp: -t [ip] &#8211;ports &#8211;basic udp+tcp<br \/>\nScan complete tcp: -t [ip] &#8211;ports &#8211;all tcp<br \/>\nScan complete udp: -t [ip] &#8211;ports &#8211;all udp<br \/>\nScan complete udp+tcp: -t [ip] &#8211;ports &#8211;all udp+tcp<br \/>\nScan rang tcp: -t [ip] &#8211;ports &#8211;select tcp &#8211;start [value] &#8211;end [value]<br \/>\nScan rang udp: -t [ip] &#8211;ports &#8211;select udp&#8211;start [value] &#8211;end [value]<br \/>\nScan rang udp + tcp: -t [ip] &#8211;ports &#8211;select udp+tcp &#8211;start [value] &#8211;end [value]<br \/>\n<b>Encode \/ Decode: <\/b><br \/>\nGenerate MD5: &#8211;md5 [string]<br \/>\nEncode base64: &#8211;encode64 [string]<br \/>\nDecode base64: &#8211;decode64 [string]<br \/>\n<b>External Command: <\/b><br \/>\n&#8211;dork [dork\/dorks.txt] &#8211;level [level] &#8211;command &#8220;curl -v &#8211;TARGET&#8221;<br \/>\n&#8211;dork [dork\/dorks.txt] &#8211;level [level] &#8211;command &#8220;curl -v &#8211;FULL_TARGET&#8221;<br \/>\n-t [target\/targets.txt] &#8211;level [level] &#8211;command &#8220;curl -v &#8211;TARGET&#8221;<br \/>\n-t [target\/targets.txt] &#8211;command &#8220;curl -v &#8211;FULL_TARGET&#8221;<br \/>\n<b>Multiple Scan: <\/b><br \/>\n&#8211;dork [dork] &#8211;level [10] &#8211;xss\/&#8211;lfi\/&#8211;wp &#8230;<br \/>\n&#8211;dork [dork] &#8211;level [10] &#8211;replace [string] &#8211;with [string] &#8211;exp [exploit] &#8211;xss &#8211;lfi &#8211;wp &#8230;<br \/>\n-t [ip] &#8211;level [10] &#8211;xss &#8211;lfi &#8211;wp &#8230;<br \/>\n-t [targets] &#8211;xss &#8211;lfi &#8211;wp &#8230;<\/p>\n<div><b><a href=\"https:\/\/github.com\/AlisamTechnology\/ATSCAN\" target=\"_blank\" rel=\"noopener noreferrer\">Download ATSCAN<\/a><\/b><\/div>\n","protected":false},"excerpt":{"rendered":"<p>ATSCAN &#8211; Search \/ Site \/ Server Scanner SEARCH engine XSS scanner. Sqlmap. LFI scanner. Filter wordpress and Joomla sites in the server. Find Admin page. Decode \/ Encode MD5 + Base64. Ports scan. Scan E-mails in sites. Use proxy. Random user agent. Fandom search engine. Scan errors. Detect Cms. Multiple instant scan. Disponible on<\/p>\n","protected":false},"author":1,"featured_media":2763,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[162,651,615],"tags":[655,277,656],"class_list":["post-2762","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-information-gathering","category-perl","category-vulnerability-scanner","tag-dorks","tag-scanner","tag-xss-scanner"],"_links":{"self":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts\/2762","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2762"}],"version-history":[{"count":0,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts\/2762\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2762"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2762"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2762"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}