frizb / vanquish Goto Github PK

Hey frizb,

I would like to have this repo: https://github.com/frizb/OSCP-Survival-Guide

But it is not available. Can you share this with me please?

Thanks.

frizb,

Would it be possible for you to post some documentation on custom attack plan creation? I am working to create a "legal" OSCP exam attack plan, but I am running into issues where the custom lines I add to config.ini are not running correctly. Instead of addressing just my issues, I think some elaboration on the attack plan creation as a whole would be super helpful.

Thanks!

Hello,

I did a try to use this awesome tool but getting this error:

root@VMKALI:~/Vanquish# python Vanquish2.py -install

\ \ / /\ | | |/ _ | | | | / __| || |
\ V / _ | .` | () | || || |_ \ __ |
_// __|_|__\/||_/|||
Faster than a one-legged man in a butt kicking contest.
Vanquish Version: 0.25 Updated: October 1, 2017
[*] Resuming previous session

Configuration file: install.ini
Attack plan file: installplan.ini
Output Path: ./hosts
Host File: hosts.txt

[+] Starting Phase: Install or Update Required Kali Packages
[################################] 4/4 - 00:00:14
[+] Starting Phase: Update Vanquish
[################################] 1/1 - 00:00:00
[+] Starting Phase: Setup Vanquish
[################################] 0/0 - 00:00:00
[+] Starting Phase: Install Vulscan for Nmap
[################################] 2/2 - 00:00:06
[+] Starting Phase: Set File Permissions
[################################] 1/1 - 00:00:00
[+] Starting post enumeration...
[+] Starting Phase:
[################################] 0/0 - 00:00:00
[+] Searching for matching exploits...
[+] Elapsed Time: 00:00:21
root@VMKALI:~/Vanquish# vanquish --help
Traceback (most recent call last):
File "/usr/local/bin/vanquish", line 3, in
import Vanquish2
ImportError: No module named Vanquish2

running Kali2017.2 (newest release) as virtual machine on VMware fusion on a map running Mac OS high Sierra.

Linux VMKALI 4.12.0-kali2-amd64 #1 SMP Debian 4.12.13-1kali2 (2017-10-03) x86_64 GNU/Linux

root@VMKALI:~/Vanquish# python -V
Python 2.7.13

anything else that may can help on this ?

thanks

I thought I would offer to add this simple script to your program which I have been using to create username:password lists for your application. The code is below.

#!/bin/bash
#if less than 3 agrs are provided
#help section
if [[ $# -lt 3 ]] ; then
    echo 'usage: usernamepasswordgenerator.sh /someplace/usernames.txt /someplace/passwords.txt /someplace/combined.txt'
    exit 0
fi
#-h
if [ "$1" == "-h" ]; then
echo 'usage: usernamepasswordgenerator.sh /someplace/usernames.txt /someplace/passwords.txt /someplace/combined.txt'
  exit 0
fi
#--help
if [ "$1" == "--help" ]; then
echo 'usage: usernamepasswordgenerator.sh /someplace/usernames.txt /someplace/passwords.txt /someplace/combined.txt'
  exit 0
fi

#the generation part, two loops ezy pezy
while read username;do
while read password; do
echo $username:$password >> $3
done <$2
done <$1
echo "completed with $(wc -l $3 |cut -d ' ' -f1) lines total"

Hi there,

When installing Vanquish on a brand new Kali 2020.4 Rolling, I encountered an error. When viewing "commanderror.log", I received the following:

One issue is that the Vulscan GitHub you are cloning (configured in the "install.ini" file) has moved the "updateFiles.sh" file into the following directory, after the installer clones the repository: /usr/share/nmap/scripts/vulscan/utilities/updater

I had to manually edit the "install.ini" file to include that location for the installation to work. Additionally, for those Kali users that have NOT switched away from the default zsh shell, I had to include "bash" at the beginning of the command:

After making the edit to that line, I was able to successfully install and check the version:

Additionally and unrelated, when running vanquish from a directory other than the one I cloned the tool into, I received another error:

Hello, thank you for this tool.

Can you explain me please how to see the result of the scan?

Thanks

Hey there,

I noticed this is tagged 'OSCP' and you point to this project in your (fantastic) OSCP survival guide. In the stock attackplan.ini SQLMap gets ran which is banned in the OSCP exam. You might want to point that out in https://github.com/frizb/OSCP-Survival-Guide or provide an exam-safe attackplan.ini.

I was able to yank All the metasploit and SQLMap related commands from attackplan.ini and config.ini without incident. For anyone reading this who is going into the OSCP exam, you can safely delete lines 636-643 (everything that runs sqlmap) and lines 652-659 (everything that runs metasploit) in config.ini and everything after line 151 in attackplan.ini to be 100% safe.

Traceback (most recent call last):
File "/usr/local/bin/vanquish", line 4, in
Vanquish2.main()
File "/usr/local/lib/python2.7/dist-packages/Vanquish2.py", line 879, in main
vanquish = Vanquish(argv if argv else sys.argv[1:])
File "/usr/local/lib/python2.7/dist-packages/Vanquish2.py", line 331, in init
Logger.VERBOSE = (self.config.getboolean("System", "Verbose") or self.args.verbose)
File "/usr/lib/python2.7/ConfigParser.py", line 368, in getboolean
v = self.get(section, option)
File "/usr/lib/python2.7/ConfigParser.py", line 607, in get
raise NoSectionError(section)
ConfigParser.NoSectionError: No section: 'System'