Advanced reconnaissance utility
Find a file
2017-11-01 21:48:58 -05:00
.github minor edit to the README, ported all other files into the .github folder 2017-10-11 18:31:14 -05:00
bin fixes an issue where the geckodriver will not connect, usually means something happened during the installation of it, will now attempt to re-install the geckodriver (issue #132) 2017-11-01 10:07:15 -05:00
etc created a clickjacking scanner that will test a page for an X-Frame-Options header, if the header is not there, then it will create a basic HTML page with that URL as an iframe 2017-11-01 21:48:58 -05:00
lib created a clickjacking scanner that will test a page for an X-Frame-Options header, if the header is not there, then it will create a basic HTML page with that URL as an iframe 2017-11-01 21:48:58 -05:00
var created a clickjacking scanner that will test a page for an X-Frame-Options header, if the header is not there, then it will create a basic HTML page with that URL as an iframe 2017-11-01 21:48:58 -05:00
.gitignore created a whois lookup search. Will either display it in human readable form with the correct flags, or save the found information to a log file 2017-10-21 10:16:16 -05:00
README.md installation instructions update for centOS (issue #129) 2017-10-31 18:01:19 -05:00
requirements.txt added a new requirement BeautifulSoup, fixed the crawler will pull all links with an 'a' tag and descriptor of 'href', bumped version number 2017-10-28 16:28:18 -05:00
zeus.py created a clickjacking scanner that will test a page for an X-Frame-Options header, if the header is not there, then it will create a basic HTML page with that URL as an iframe 2017-11-01 21:48:58 -05:00

GitHub stars GitHub forks GitHub issues GitHub license Twitter Donate

Helpful links directory

Zeus-Scanner

What is Zeus?

Zeus is a advanced dork searching tool that is capable of bypassing search engine API calls, search engine captchas, and IP address blocking from sending many requests to the search engine itself. Zeus can use three different search engines to do the search (default is Google). Zeus has a powerful built in engine, automates a hidden web browser to pull the search URL, and can run sqlmap and nmap scans on the URL's.

Screenshots

Running without a mandatory options, or running the --help flag will output Zeus's help menu: zeus-help A basic dork scan with the -d flag, from the given dork will launch an automated browser and pull the Google page results: zeus-dork-scan Calling the -s flag will prompt for you to start the sqlmap API server python sqlmapapi.py -s from sqlmap, it will then connect to the API and perform a sqlmap scan on the found URL's. zeus-sqlmap-api

You can see more screenshots here

Demo

to_video

Requirements

There are some requirements for this to be run successfully.

  • You may need to run sudo apt-get install libxml2-dev libxslt1-dev python-dev
  • Firefox web browser is required as of now, I will be adding the functionality of most web browsers.
  • If you want to run sqlmap through the URL's you will need sqlmap somewhere on your system.
  • If you want to run a port scan using nmap on the URL's IP addresses. You will need nmap on your system.
    • Highly advised tip: Add sqlmap and nmap to your ENV PATH
  • Gecko web driver is required and will be installed the first time you run. It will be added to your /usr/bin so that it can be run in your ENV PATH.
  • You must be sudo for the first time running this so that you can add the driver to your PATH
  • selenium-webdriver package is required to automate the web browser and bypass API calls.
  • requests package is required to connect to the URL, and the sqlmap API
  • python-nmap package is required to run nmap on the URL's IP addresses
  • whichcraft package is required to check if nmap and sqlmap are on your system if you want to use them
  • pyvirtualdisplay package is required to hide the browser display while finding the search URL
  • xvfb is required by pyvirtualdisplay, it will be installed if not installed on your first run
  • lxml is required to parse XML data for the sitemap and save it as such
  • google-api-python-client is required to search via Google's API client
  • psutil is required to search for running sqlmap API sessions
  • httplib2 is required to allow user-agent changes during Google's API client searches
  • beautifulsoup is required to pull all the HREF descriptor tags while using the blackwidow crawler

Installing

You can download the latest tar.gz, the latest zip, or you can find the current stable release here. Alternatively you can install the latest development version by following the below instructions:

  • (optional but highly advised) add sqlmap and nmap to your environment PATH by moving them to /usr/bin or by adding them to the PATH via terminal
Ubuntu/Debian
  • sudo apt-get install libxml2-dev libxslt1-dev python-dev
  • git clone https://github.com/Ekultek/Zeus-Scanner.git
  • cd zeus-scanner
  • sudo pip install -r requirements.txt
  • sudo python zeus.py
centOS
  • sudo apt-get install gcc python-devel libxml2-dev libxslt1-dev python-dev
  • git clone https://github.com/ekultek/zeus-scanner
  • cd zeus-scanner
  • sudo pip install -r requirements.txt
  • sudo python zeus.py
Others
  • sudo apt-get install libxml2-dev libxslt1-dev python-dev
  • git clone https://github.com/Ekultek/Zeus-Scanner.git
  • cd zeus-scanner
  • sudo pip install -r requirements.txt
  • sudo python zeus.py

This will install all the package requirements along with the gecko web driver

Donations

Zeus is created by a small team of developers that have an aspiration for information security and a strive to succeed. If you like Zeus and want to donate to our funding, we gladly and appreciatively accept donations via:

You can be assured that all donations will go towards Zeus funding to make it more reliable and even better, thank you from the Zeus development team