Uploaded byAbhishekLalkiya
PPTX, PDF254 views

Golismero

GoLismero is an open source framework for security testing web applications. It allows scanning websites to identify vulnerabilities and integrates with tools like sqlmap, xsser, openvas. Key features include platform independence, no native dependencies, good performance, and easy plugin development. Commands allow scanning targets and generating reports from the scan database. Upcoming features will integrate with more security tools and provide a web UI and additional report formats.

Embed presentation

Download to read offline
SUBJECT CYBER SICURITY PREPARED BY : Kevin dias (150110109017) Vasu khirsariya (150110109018) Yash kothadia (150110109019)
- A Web application mapper
What's GoLismero? • GoLismero, The Web Knife is an open source framework for security testing. • It's currently geared towards web security, but it can easily be expanded to other kinds of scans. • Developers: Daniel Garcia and Mario Vilas
Features • Real platform independence. Tested on Windows, Linux, *BSD and OS X • No native library dependencies. All framework has been written in pure Python • Good performance • Very easy to use • Plugin development is extremely simple • Collects and unifies the results of well known tools: sqlmap, xsser, openvas, dnsrecon, theharvester... • Integration with standards: CWE, CVE and OWASP • Design for cluster deployment in near future
Commands • Scan a website golismero scan <target> • You can omit the default command "scan" golismero <target> • You can also set a name for your audit with -- audit-name golismero scan <target> --audit-name <name>
• To display the list of available plugins golismero plugins
• To display the available profiles golismero proflies
• To scan the target and generate database file golismero scan <target> -db database.db -no
• And then generate the report from the database golismero report report.html -db database.db
Select a specific plugin • Use the -e option to enable only some specific plugins, and -d to disable plugins golismero scan <target> -e <plugin>
Upcoming features • Integration with Metasploit, w3af, ZAP and many other free tools • Web UI • Export results in PDF and MS Word format • And more plugins
Golismero

More Related Content

PDF
Preventing XSS with Content Security Policy
byKsenia Peguero
 
PPTX
CSRF-уязвимости все еще актуальны: как атакующие обходят CSRF-защиту в вашем ...
byMikhail Egorov
 
PPTX
Connecting the Dots: Kong for GraphQL Endpoints
byJulien Bataillé
 
PDF
Amazon Redshift로 데이터웨어하우스(DW) 구축하기
byAmazon Web Services Korea
 
PPTX
Node js overview
byEyal Vardi
 
PDF
Neat tricks to bypass CSRF-protection
byMikhail Egorov
 
PPTX
A Guide to AWS Penetration Testing.pptx
bysaurabhpandey251355
 
PPTX
A2 - broken authentication and session management(OWASP thailand chapter Apri...
byNoppadol Songsakaew
 
Preventing XSS with Content Security Policy
byKsenia Peguero
 
CSRF-уязвимости все еще актуальны: как атакующие обходят CSRF-защиту в вашем ...
byMikhail Egorov
 
Connecting the Dots: Kong for GraphQL Endpoints
byJulien Bataillé
 
Amazon Redshift로 데이터웨어하우스(DW) 구축하기
byAmazon Web Services Korea
 
Node js overview
byEyal Vardi
 
Neat tricks to bypass CSRF-protection
byMikhail Egorov
 
A Guide to AWS Penetration Testing.pptx
bysaurabhpandey251355
 
A2 - broken authentication and session management(OWASP thailand chapter Apri...
byNoppadol Songsakaew
 

What's hot

PPTX
Docker Basics
byDuckDuckGo
 
PPTX
AWS SQS SNS
byDurgesh Vaishnav
 
PDF
Web Worker, Service Worker and Worklets
byKeshav Gupta
 
PDF
AWS Connectivity, VPC Design and Security Pro Tips
byShiva Narayanaswamy
 
PPTX
Deep understanding on Cross-Site Scripting and SQL Injection
byVishal Kumar
 
PDF
AWS Systems Manager
byCrishantha Nanayakkara
 
PPTX
Reflective and Stored XSS- Cross Site Scripting
byInMobi Technology
 
PPTX
DevOps introduction
byMettje Heegstra
 
PDF
NoSql Injection
byNSConclave
 
PPTX
AWS Instance Preparation
byEbizon
 
PPTX
DevSecOps
byCheah Eng Soon
 
PDF
Why Vue.js?
byJonathan Goode
 
PPTX
Learn to pen-test with OWASP ZAP
byPaul Ionescu
 
PDF
Harnessing the Power of AI in AWS Pentesting.pdf
byMike Felch
 
PDF
OWASP Top 10 Project
byMuhammad Shehata
 
PPTX
Android pentesting
byMykhailo Antonishyn
 
PPTX
Docker를 활용한 손쉬운 ECS 활용기 - 김민태 (AUSG) :: AWS Community Day Online 2021
byAWSKRUG - AWS한국사용자모임
 
PDF
CICD with Jenkins
byVietnam Open Infrastructure User Group
 
PPTX
OWASP AppSecCali 2015 - Marshalling Pickles
byChristopher Frohoff
 
PPTX
Devops ppt
bySulekha IT Training
 
Docker Basics
byDuckDuckGo
 
AWS SQS SNS
byDurgesh Vaishnav
 
Web Worker, Service Worker and Worklets
byKeshav Gupta
 
AWS Connectivity, VPC Design and Security Pro Tips
byShiva Narayanaswamy
 
Deep understanding on Cross-Site Scripting and SQL Injection
byVishal Kumar
 
AWS Systems Manager
byCrishantha Nanayakkara
 
Reflective and Stored XSS- Cross Site Scripting
byInMobi Technology
 
DevOps introduction
byMettje Heegstra
 
NoSql Injection
byNSConclave
 
AWS Instance Preparation
byEbizon
 
DevSecOps
byCheah Eng Soon
 
Why Vue.js?
byJonathan Goode
 
Learn to pen-test with OWASP ZAP
byPaul Ionescu
 
Harnessing the Power of AI in AWS Pentesting.pdf
byMike Felch
 
OWASP Top 10 Project
byMuhammad Shehata
 
Android pentesting
byMykhailo Antonishyn
 
Docker를 활용한 손쉬운 ECS 활용기 - 김민태 (AUSG) :: AWS Community Day Online 2021
byAWSKRUG - AWS한국사용자모임
 
CICD with Jenkins
byVietnam Open Infrastructure User Group
 
OWASP AppSecCali 2015 - Marshalling Pickles
byChristopher Frohoff
 
Devops ppt
bySulekha IT Training
 

More from AbhishekLalkiya

PPTX
energy Audit and types of audit
byAbhishekLalkiya
 
PPTX
gauss seidel method
byAbhishekLalkiya
 
PPTX
buchholz relay on transformer
byAbhishekLalkiya
 
PPTX
different type of lamps
byAbhishekLalkiya
 
PPTX
circuit breaker
byAbhishekLalkiya
 
PPTX
parts of transformer
byAbhishekLalkiya
 
PPTX
Conductor material and ferranti effect
byAbhishekLalkiya
 
PPTX
Automatic DC strarters
byAbhishekLalkiya
 
PPTX
1 phase induction motor
byAbhishekLalkiya
 
PPTX
convolution
byAbhishekLalkiya
 
PPTX
aircraft navigation equipment
byAbhishekLalkiya
 
PPTX
divergence of vector and divergence theorem
byAbhishekLalkiya
 
PPT
05 karnaugh maps
byAbhishekLalkiya
 
PPTX
Heat transfer
byAbhishekLalkiya
 
energy Audit and types of audit
byAbhishekLalkiya
 
gauss seidel method
byAbhishekLalkiya
 
buchholz relay on transformer
byAbhishekLalkiya
 
different type of lamps
byAbhishekLalkiya
 
circuit breaker
byAbhishekLalkiya
 
parts of transformer
byAbhishekLalkiya
 
Conductor material and ferranti effect
byAbhishekLalkiya
 
Automatic DC strarters
byAbhishekLalkiya
 
1 phase induction motor
byAbhishekLalkiya
 
convolution
byAbhishekLalkiya
 
aircraft navigation equipment
byAbhishekLalkiya
 
divergence of vector and divergence theorem
byAbhishekLalkiya
 
05 karnaugh maps
byAbhishekLalkiya
 
Heat transfer
byAbhishekLalkiya
 

Recently uploaded

PDF
Fundamentals of AI - Problem Solving Approach.pdf
byVyankateshBhaurkar1
 
PPTX
Energy system modelling to support national energy and climate policy making ...
byIEA-ETSAP
 
PPT
Chapter_4 Diffusion (1) Chapter_4 Diffusion (1 Chapter_4 Diffusion (1 Chapter...
byAlazarAlemu1
 
PPTX
FROM MEASUREMENT TO MEANING : Metrology-Driven Battery Testing for Reliable ...
byRunjhunDutta
 
PPTX
TechSprint WinterHack || After an intense hackathon filled with creativity, ...
bybajpaitusharoffon678
 
PDF
PROBLEM SLOVING AND PYTHON PROGRAMMING UNIT 2.pdf
byA R SIVANESH M.E., QIP-PG (Cyber Security)., (Ph.D)
 
PPTX
1.-Static-sensor-characteristics,sensors and actuators ;SDU,denmark.pptx
byMohammadTabish20
 
PDF
Chip Designer's Code - Linux Terminal Part 7.1 - Text Processing
byAmr Adel
 
PDF
FPGA Fabric and Synthesis All Parts Combined
byAmr Adel
 
PPTX
Industry 4.0- fourth industrial revolution Presentation.pptx
byrameswari15491
 
PPTX
Coagulation, flocculation and settling.pptx
byChemical Engineering Dept. NIT Rourkela-769008, Odisha, India
 
PDF
Software Engineering : Process Model
byGunjalSanjay
 
PDF
Mahabir - Structural Steel Brochure - 2025
byMahabirIndustries1
 
PDF
Taykon Proses -ENG- Process Equipment Manufacturer
byTAYKON
 
PDF
TRUSTWORTHY AI: BUILDING SAFE AND ETHICAL MACHINE LEARNING SYSTEMS
byAdri Jovin
 
PDF
Software Engineering Perspective Process Models
byGunjalSanjay
 
PDF
LS029B3SX06A 2.9 Inch TFT LCD 2K Resolution 2160X2160 For AR VR
bySyluxdisplay
 
PDF
Software Engineering : Nature of Software
byGunjalSanjay
 
PDF
RVV Basic Terms and Analogy - (en/zhTW) - DannyJiang
byDanny Jiang
 
PPTX
Next-Gen Satellite Imaging: Optimizing High-Resolution Remote Sensing with Ad...
byraghabBsingh
 
Fundamentals of AI - Problem Solving Approach.pdf
byVyankateshBhaurkar1
 
Energy system modelling to support national energy and climate policy making ...
byIEA-ETSAP
 
Chapter_4 Diffusion (1) Chapter_4 Diffusion (1 Chapter_4 Diffusion (1 Chapter...
byAlazarAlemu1
 
FROM MEASUREMENT TO MEANING : Metrology-Driven Battery Testing for Reliable ...
byRunjhunDutta
 
TechSprint WinterHack || After an intense hackathon filled with creativity, ...
bybajpaitusharoffon678
 
PROBLEM SLOVING AND PYTHON PROGRAMMING UNIT 2.pdf
byA R SIVANESH M.E., QIP-PG (Cyber Security)., (Ph.D)
 
1.-Static-sensor-characteristics,sensors and actuators ;SDU,denmark.pptx
byMohammadTabish20
 
Chip Designer's Code - Linux Terminal Part 7.1 - Text Processing
byAmr Adel
 
FPGA Fabric and Synthesis All Parts Combined
byAmr Adel
 
Industry 4.0- fourth industrial revolution Presentation.pptx
byrameswari15491
 
Coagulation, flocculation and settling.pptx
byChemical Engineering Dept. NIT Rourkela-769008, Odisha, India
 
Software Engineering : Process Model
byGunjalSanjay
 
Mahabir - Structural Steel Brochure - 2025
byMahabirIndustries1
 
Taykon Proses -ENG- Process Equipment Manufacturer
byTAYKON
 
TRUSTWORTHY AI: BUILDING SAFE AND ETHICAL MACHINE LEARNING SYSTEMS
byAdri Jovin
 
Software Engineering Perspective Process Models
byGunjalSanjay
 
LS029B3SX06A 2.9 Inch TFT LCD 2K Resolution 2160X2160 For AR VR
bySyluxdisplay
 
Software Engineering : Nature of Software
byGunjalSanjay
 
RVV Basic Terms and Analogy - (en/zhTW) - DannyJiang
byDanny Jiang
 
Next-Gen Satellite Imaging: Optimizing High-Resolution Remote Sensing with Ad...
byraghabBsingh
 

Golismero

  • 1.
    SUBJECT CYBER SICURITY PREPARED BY: Kevin dias (150110109017) Vasu khirsariya (150110109018) Yash kothadia (150110109019)
  • 2.
    - A Webapplication mapper
  • 3.
    What's GoLismero? • GoLismero,The Web Knife is an open source framework for security testing. • It's currently geared towards web security, but it can easily be expanded to other kinds of scans. • Developers: Daniel Garcia and Mario Vilas
  • 4.
    Features • Real platformindependence. Tested on Windows, Linux, *BSD and OS X • No native library dependencies. All framework has been written in pure Python • Good performance • Very easy to use • Plugin development is extremely simple • Collects and unifies the results of well known tools: sqlmap, xsser, openvas, dnsrecon, theharvester... • Integration with standards: CWE, CVE and OWASP • Design for cluster deployment in near future
  • 5.
    Commands • Scan awebsite golismero scan <target> • You can omit the default command "scan" golismero <target> • You can also set a name for your audit with -- audit-name golismero scan <target> --audit-name <name>
  • 6.
    • To displaythe list of available plugins golismero plugins
  • 7.
    • To displaythe available profiles golismero proflies
  • 8.
    • To scanthe target and generate database file golismero scan <target> -db database.db -no
  • 9.
    • And thengenerate the report from the database golismero report report.html -db database.db
  • 10.
    Select a specificplugin • Use the -e option to enable only some specific plugins, and -d to disable plugins golismero scan <target> -e <plugin>
  • 11.
    Upcoming features • Integrationwith Metasploit, w3af, ZAP and many other free tools • Web UI • Export results in PDF and MS Word format • And more plugins