The Yuki Chan is an Automated Penetration Testing tool this tool will auditing all standard security test method for you.
WARNING
I highly recommend using this tool by using Kali Linux OS By using this tool it means you agree with terms, conditions, and risks
By using this tool you agree that
- use for legitimate security testing
- not for crime
- the use of this tool solely for educational reasons only
- You are willing to be charged with criminal or state law applicable by law enforcement officers and government when abused
- the risk is borne by yourself
Feature
- Automated
- Intel-Gathering
- Vulnerability Analysis
- Security Auditing
- OSINT
- Tracking
- System Enumeration
- Fuzzing
- CMS Auditing
- SSL Security Auditing
- And Off Course This Tool Designed For Targetted Pentesting Too
Modules In Yuki Chan
- Whois domain analyzer
- Nslookup
- Nmap
- TheHarvester
- Metagoofil
- DNSRecon
- Sublist3r
- Wafw00f
- WAFNinja
- XSS Scanner
- WhatWeb
- Spaghetti
- WPscan
- WPscanner
- WPSeku
- Droopescan ( CMS Vulnerability Scanner Wordpress, Joomla, Silverstripe, Drupal, And Moodle)
- SSLScan
- SSLyze
- A2SV
- Dirsearch
How To Use It ?
this tool is only designed for Linux OS so if you are not using Linux OS im sorry dude but if you have Android Smarphone or Tablet you can run this tool via Termux or GNURoot Debian
so Are You Ready ??
Let's Start It
Ok in Kali Linux has been already installed this module
- Nmap
- Wafw00f
- WPScan
- SSLScan
- SSLyze
you can install it first here i give you resource
- Nmap
yum install nmap
Debian Linux and Derivatives such as Ubuntuapt-get install nmap
more info : https://nmap.org- Wafw00f
git clone https://github.com/EnableSecurity/wafw00f.git
cd wafw00f
python setup.py install
or simple waypip install wafw00f
- WPScan
sudo apt-get install libcurl4-openssl-dev libxml2 libxml2-dev libxslt1-dev ruby-dev build-essential libgmp-dev zlib1g-dev
Installing dependencies on Fedorasudo dnf install gcc ruby-devel libxml2 libxml2-devel libxslt libxslt-devel libcurl-devel patch rpm-build
Installing dependencies on Arch Linuxpacman -Syu ruby
pacman -Syu libyaml
Installing manually (not recommended)git clone https://github.com/wpscanteam/wpscan.git
cd wpscan
sudo gem install bundler && bundle install --without test
more info https://github.com/wpscanteam/wpscan if you cannot install WPScan don't worry just Skip it i have alternative wpscan module for you- SSLScan
more info about installing this module
https://github.com/rbsec/sslscan
- SSLyze :
git clone https://github.com/nabla-c0d3/sslyze.git
cd sslyze
pip install -r requirements.txt --target ./lib
or simple waypip install --upgrade setuptools
pip install sslyze
if Nmap, Wafw00f, WPScan, SSLScan, SSLyze not installed in your OS maybe this tool not really work completely so if Nmap, Wafw00f, WPScan, SSLScan, SSLyze already installed you can next.Q : can i skip using this tool without Nmap, Wafw00f, WPScan, SSLScan, SSLyze installed in my OS ?
A : yes you can do it but not really work completely
Ok next this is step by step for preparation for first time use
First Things First Clone This Tool
git clone https://github.com/Yukinoshita47/Yuki-Chan-The-Auto-Pentest.git
Get inside of directorycd Yuki-Chan-The-Auto-Pentest
Give Chmod 777 Access Levelchmod 777 wafninja joomscan install-perl-module.sh
chmod 777 Module/WhatWeb/whatweb
And Then Install Python Modulepip install -r requirements.txt
After That Install Perl Module./install-perl-module.sh
preparation finished now run this tool and happy pentestRun This Tool
./yuki.sh
ScreenShoot Preview
Greetings
From : Yukinoshita 47
Team : Garuda Security Hacker
Web : http://www.garudasecurityhacker.org