Mass scan IPs for vulnerable services
License: GNU General Public License v3.0
I am a cyber security researcher and programmer.
Do you want to be one too? Check out my advice for learning hacking and programming.
You can support my work with a few bucks, here.
add support to scanning by hostname. Currently scanning by only ip is supported.
e.g.
python3 silver.py example.com
Using any IP, ETA is always 0 seconds and states there are 0 services to fingerprint.
On kali, works fine. On manjaro is where the issue is seen
Add a output format similar to nmap.xml
As many tools use the nmap's xml format to do stuff like
aquatone used it to take screenshot
brutespray used it to spray common credential across different services identified.
In this way we are not only looking for the outdated services, also completely using silver for port scanning workflow as whole.
Hello,
Just installed the tool, requirements, nmap & masscan without any issues. Tried running python3 silver.py 127.0.0.1 --quick command (or any other IP/or IP's from file) immediately receiving Scan Completed message:
[] Deploying masscan] 0 services to fingerprint
[!] Result saved to /home/xxx/Silver/result-test.txt
[
[!] ETA: 0 seconds
[] Spawning 1 nmap instance] Looking for vulnerablilites
[!] Updated /home/xxx/Silver/result-test.txt
[
[+] Scan completed
~/Silver$ cat result-test.txt
{}
Any ideas what might be causing this?
Thanks!
Hi,
I was trying to call silver.py outside the directory and I got the following error:
fagent@faradayagent:~$ /home/fagent/Silver/silver.py
Traceback (most recent call last):
File "/home/fagent/Silver/silver.py", line 13, in <module>
from modules.shodan import shodan
File "/home/fagent/Silver/modules/shodan.py", line 5, in <module>
from modules.vulners import vulners, cache
File "/home/fagent/Silver/modules/vulners.py", line 7, in <module>
database = json.loads(reader(file))
File "/usr/lib/python3.6/json/__init__.py", line 348, in loads
'not {!r}'.format(s.__class__.__name__))
TypeError: the JSON object must be str, bytes or bytearray, not 'bool'
Will you like to create a python package of silver? I think the root of this problem could be fixed by creating a package (I could help with this).
Thanks!
I have followed the instructions but It displays no output
Rocket1@Macbookpro silver % sudo python3 silver.py IP
π΄πͺππ·π¦π³
Deploying masscan
Result saved to /Users/Rocket1/Silver/result-IP.json
0 services to fingerprint
Spawning 1 nmap instance
Updated /Users/Rocket1/Silver/result-IP.json
Looking for vulnerablilites
Scan completed ```
Hello,
when I try to inststall it using git clone I get
E: Unable to locate package https://github.com/s0md3v E: Couldn't find any package by glob 'https://github.com/s0md3v' E: Couldn't find any package by regex 'https://github.com/s0md3v'
Thanks for your time
Usage of masscan against a single host would cause most open ports to be left unidentified, especially at the default rate of 10K.
Instead of asking the user to set the necessary rate (if you add a --rate from another issue here), leave it to nmap to identify open ports, which is much more capable for atleast an entire /24 range, from where usage of masscan would be more useful.
with /22 it is not giving any output
Currently silver will command masscan to use --rate=10000 pps. When scanning one host this becomes an issue, the scan is too fast and not all open ports are discovered. I would suggest to give the ability to control the rate option by either specifying the rate limit explicitly or providing --slow argument which will command masscan to use --rate=100 pps which is default for this tool.
Although better approach would be to use --rate=100 by default and providing --fast argument which will command masscan to use --rate=100000.
I can prepare PR if you are interested.
Hi @s0md3v
silver is not scanning list of ips provided via targets.txt.
silver -i targets.txt --quick
[~] Deploying masscan
[!] Result saved to /root/result-targets.txt
[~] 0 services to fingerprint
[!] ETA: 0 seconds
[~] Spawning 1 nmap instance
[!] Updated /root/result-targets.txt
[~] Looking for vulnerablilites
[+] Scan completed
user@host:~/tools/Silver$ sudo python silver.py
Traceback (most recent call last):
File "silver.py", line 11, in <module>
import core.memory
ImportError: No module named core.memory
Tried installing core module, core-memory / tried py2-py3 etc
nothing work.
traceback (most recent call last):
File "/home/kali/tools/Silver/silver.py", line 61, in
targets = resolver(input_file)
File "/home/kali/tools/Silver/core/resolver.py", line 30, in resolver
with open('silver-' + hostnames, 'w+') as outfile:
FileNotFoundError: [Errno 2] No such file or directory: 'silver-/home/kali/tools/....
Hi there,
I just pulled the tool, and it seems it uses the target argument to create the result file. The problem is that if you specify a IP range with a / in it, for example 192.168.0.0/16, it will give an error, it will search for file 16.txt in a directory result-192.168.0.0
ββ ~/Tools/Silver β master !1 ?2 1 Ρ
β 12:02:29
β°β sudo python3 silver.py '192.168.0.0/16'
π΄πͺππ·π¦π³
[~] Deploying masscan
Traceback (most recent call last):
File "silver.py", line 86, in <module>
file = open(savefile, 'w+')
FileNotFoundError: [Errno 2] No such file or directory: '/foo/bar/Tools/Silver/result-192.168.0.0/16.txt'
Hi! When I try to run a scan against a single IP, I get the following...
[] Deploying masscan] 3 services to fingerprint
[!] Result saved to /home/xxxxx/Silver/result-targets.txt
[
Traceback (most recent call last):
File "silver.py", line 104, in
result = shodan(host)
File "/home/xxxxx/Silver/modules/shodan.py", line 45, in shodan
cache(software, version, 'dummy')
TypeError: cache() missing 1 required positional argument: 'cpe'
With masscan i can scan the internet with 0.0.0.0, but with siver i can't, why?
When I am ran this command, I got this issue...
python3 silver.py 127.0.0.1
Traceback (most recent call last):
File "silver.py", line 7, in
import psutil
ModuleNotFoundError: No module named 'psutil'
python3 silver.py 127.0.0.1 --quick
It's not scanning the my target ...within seconds it shown scan completed message
π΄πͺππ·π¦π³
[] Deploying masscan] 0 services to fingerprint
[!] Result saved to /root/Silver/result-targets.txt
[
[!] ETA: 0 seconds
[] Spawning 1 nmap instance] Looking for vulnerablilites
[!] Updated /root/Silver/result-targets.txt
[
[+] Scan completed
please help me out
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. πππ
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google β€οΈ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.