darkjumper.py v5.3 new released and tutorial

Tempat pembahasan dan tutorial penggunaan tools untuk hacking, security dan forensik komputer.

Moderators: Paman, Xshadow, indounderground

Forum rules
Tool yang diupload oleh member tidak diperiksa oleh kami, mungkin saja terinfeksi oleh malware secara disengaja ataupun tidak, saran kami sebaiknya mendownload tool tersebut dari sumber pembuatnya. Bagi yang buat thread diharapkan menampilkan screenshot tool.
Post Reply
gunslinger_
Posts: 13
Joined: Tue Mar 24, 2009 11:29 am
Location: on last party
Contact:

darkjumper.py v5.3 new released and tutorial

Post by gunslinger_ » Wed Feb 17, 2010 4:11 pm

well after darkjumper v4.0 was rock up by my big brother , mywisdom .
now i'm and mywisdom developed darkjumper v5.0 (now v5.3) and added more function in darkjumper
with this, i released this tools and some tutorial how to using this tools and what's new in this version...

Toolname : darkjumper.py v5.3
Developed by : mywisdom & gunslinger_ <devilzc0de.com c0der>
Released on : 15 ,February 2010
Download url : https://sourceforge.net/projects/darkjumper/

Function(s)
1. User enumeration(s) guessing based on 4-8 chars trial taken from every site name that host at the same server
2. Scan for sql injection,local file inclusion,remote file inclusion and blind sql injection on every site(s) at the same server
3. CGI and Path(s) Scanning
4. Portscanning
5. Autobruteforcing after user enumeration
6. Autoinjector - autocolumnfinder (mysql) if found mysql bug if found
7. Proxy added
8. Verbocity added
9. IP or proxy checker and GeoIP usefull for checking your IP or your proxy work or not

Additional feature: more fake http user agent(s)

Requirement(s): - python : 2.5.x
- perl

Now we're go to tutorial section :

before scanning : make sure you always clearlog before scanning by execute clearlog.py

Code: Select all

./clearlog.py
allright folks , now we're ready to try execute darkjumper and show the option by

Code: Select all

./darkjumper.py -h
or

Code: Select all

./darkjumper.py --help
and we got like this...

Image

in this version, we have 6 mode. there is :
reverseonly | Only reverse target no checking bug
surface | Checking for sqli and blind sqli on every web that host at the same target server
full | Checking for sqli,blind,rfi,lfi on every web that host at the same target server
cgidirs | Scanning cgidirs on the target server
enum [number] | Guessing possible user enumeration on server (4-8 chars user enumeration)
portscan [startport]-[endport] | Scanning open port on server target

ok there is any full description on it...
--------------------------------------------------------------------------------------------------
- reverseonly
in this mode, darkjumper only reverse target ip. no checking any bug .
Command is :

Code: Select all

./darkjumper.py -t [target] -m reverseonly
Example :

Image
--------------------------------------------------------------------------------------------------

--------------------------------------------------------------------------------------------------
- surface
This mode, darkjumper reverse the target then check sqli (sql injection vulnerability) and blind (blind sql injection vulnerability) on every web that host at the same target server
Good is in this version and up, we're also trying to finder the column automatic if we got mysql type error ! phew !
Command is :

Code: Select all

./darkjumper.py -t [target] -m surface
example :
Image
--------------------------------------------------------------------------------------------------

--------------------------------------------------------------------------------------------------
- full
This mode, darkjumper will reverse target then check CGI path and checking sqli (sql injection vulnerability) , blind (blind sql injection vulnerability) , lfi (local file inclusion) , rfi (remote file inclusion) on every web that host at the same target server . autoinjector or autocolumn finder working to in this mode if we got mysql error.
Command is :

Code: Select all

./darkjumper.py -t [target] -m full
Example :

Image
--------------------------------------------------------------------------------------------------

--------------------------------------------------------------------------------------------------
- cgidirs
This mode, darkjumper only checking CGI path checking on your target

Command is :

Code: Select all

./darkjumper.py -t [target] -m cgidirs
Example :

Image
--------------------------------------------------------------------------------------------------

--------------------------------------------------------------------------------------------------
- enum
This mode, darkjumper reverse the target then Guessing possible user enumeration on server (4-8 chars user enumeration)

Command is :

Code: Select all

./darkjumper.py -t [target] -m enum [number]
Example command :

Code: Select all

./darkjumper.py -t [target] -m enum 4
Example :

Image

Note : You can enable autoftpbruteforcing by :

Code: Select all

./darkjumper.py -t [target] -m enum [number] -a 
(argument -a is for autoftpbruteforcing)

Example :

Image

--------------------------------------------------------------------------------------------------

--------------------------------------------------------------------------------------------------
- portscan
This mode, darkjumper only checking open port on your target
Command is :

Code: Select all

./darkjumper.py -t [target] -m portscan [startport]-[endport]
Example command :

Code: Select all

./darkjumper.py -t localhost -m portscan 15-22
Example :

Image

You can make it verbose by :

Code: Select all

./darkjumper.py -t localhost -m portscan 15-22 -v
Example :

Image
--------------------------------------------------------------------------------------------------

--------------------------------------------------------------------------------------------------
And you can check your ip and your proxy .
if you wanna check your proxy your command is

Code: Select all

./darkjumper.py -p [proxyaddress:port]
or you wanna check your own ip address

Code: Select all

./darkjumper.py -c 
--------------------------------------------------------------------------------------------------

You want stop your scanning? simply type this command
killall -9 /usr/bin/python & killall -9 /usr/bin/perl

allright guys that's it ! hopely you can enjoy !!
Don't forget to check latest version or report bug @ https://sourceforge.net/projects/darkjumper/

User avatar
poni
Posts: 1666
Joined: Mon Dec 05, 2005 10:44 am
Location: Indonesia
Contact:

Re: darkjumper.py v5.3 new released and tutorial

Post by poni » Wed Feb 17, 2010 5:14 pm

Ini nih yang ditunggu2 XCOders. A kickass web penetration kit. thanks for share brother gunslinger & mywisdom
.::...Cr3ditz......::....
join us : www.xcode.or.id - 001101
"@ b3tt3r d1g1t4l w0rlD" -- 010110000110001001

User avatar
shad.hckr
Posts: 555
Joined: Mon Sep 29, 2008 4:48 am
Location: /home/sh4dhckr
Contact:

Re: darkjumper.py v5.3 new released and tutorial

Post by shad.hckr » Wed Feb 17, 2010 7:41 pm

bro gunslinger ma mywisdom emang selalu menampilkan yang terbaik.. :love:
kagak pake lama langsung comot aja.. :tapa:
reports bugs menyusul.. :maaf:

User avatar
4Es
Posts: 89
Joined: Sun Feb 24, 2008 8:10 am
Location: ??????? ??????? - ?????

Re: darkjumper.py v5.3 new released and tutorial

Post by 4Es » Thu Feb 18, 2010 7:50 am

yang spec. khusus misalnya darkjumper mendadak hang tapi baguslah
"HEAVENSTRIKE"

User avatar
monsieur_zizou
Posts: 15
Joined: Mon Feb 25, 2008 6:24 pm
Location: UNIX
Contact:

Re: darkjumper.py v5.3 new released and tutorial

Post by monsieur_zizou » Wed Mar 10, 2010 6:36 pm

Ke TKP Cuy :tapa: :love: :ngakak: :malumalu:
Image
Kosova Technology adalah Konsultan IT di bidang jasa pembuatan website, pembuatan program, maintenance komputer, web design, SEO =====>Kosova Technology

grindonstereo
Posts: 3
Joined: Sun Mar 27, 2011 6:32 pm

Re: darkjumper.py v5.3 new released and tutorial

Post by grindonstereo » Sun Mar 27, 2011 6:49 pm

mas ni cara pakai'ny apa seperti schemafuzz??....mohon pencerahannya mas....maklum msh newbie...hehehehehe..:D

User avatar
j0ck3r
Posts: 331
Joined: Wed Jun 02, 2010 4:51 pm
Location: diantara kedamaian dunia underground
Contact:

Re: darkjumper.py v5.3 new released and tutorial

Post by j0ck3r » Mon Mar 28, 2011 12:04 am

wah mantap nih..akhirnya muncul juga,thanks dah share kk... :love: :love:
Biarkan mereka tidak mengerti apa-apa.Biarkan mereka bilang saya kurang pergaulan atau introvert.Peduli apa saya dengan mereka?Inilah duniaku.Dunia yang tersusun dari angka 0 dan 1.
My Blog
Add Me

Post Reply

Return to “Tools For Hacking - Security & Computer Forensic”