{"id":15034580,"url":"https://github.com/ctf-missfeng/bayonet","last_synced_at":"2025-05-16T06:06:44.512Z","repository":{"id":41261039,"uuid":"240630288","full_name":"CTF-MissFeng/bayonet","owner":"CTF-MissFeng","description":"bayonet是一款src资产管理系统，从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统","archived":false,"fork":false,"pushed_at":"2022-11-22T05:21:53.000Z","size":71229,"stargazers_count":1481,"open_issues_count":60,"forks_count":314,"subscribers_count":32,"default_branch":"master","last_synced_at":"2025-05-16T06:06:29.921Z","etag":null,"topics":["bayonet","chromium","crawlergo","oneforall","python","shodan","xary"],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/CTF-MissFeng.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-02-15T02:03:04.000Z","updated_at":"2025-05-15T11:01:00.000Z","dependencies_parsed_at":"2022-07-14T10:48:36.530Z","dependency_job_id":null,"html_url":"https://github.com/CTF-MissFeng/bayonet","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CTF-MissFeng%2Fbayonet","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CTF-MissFeng%2Fbayonet/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CTF-MissFeng%2Fbayonet/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CTF-MissFeng%2Fbayonet/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/CTF-MissFeng","download_url":"https://codeload.github.com/CTF-MissFeng/bayonet/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254478190,"owners_count":22077676,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bayonet","chromium","crawlergo","oneforall","python","shodan","xary"],"created_at":"2024-09-24T20:25:35.307Z","updated_at":"2025-05-16T06:06:39.356Z","avatar_url":"https://github.com/CTF-MissFeng.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"### 项目更新\n\u003e Watchdog是bayonet优化版，重新优化了web、数据库模型，加入了多节点部署等功能，详情请查看：\n\n\u003e https://github.com/CTF-MissFeng/Watchdog\n\n### 简介\n\n\u003e Bayonet是整合多款安全工具并以web形式展现，它辅助渗透测试人员对IT资产进行资产管理。\n\n\u003e 遇到问题，请查看lssues是否有解决方案\n\n### 功能点\n\n- 子域名扫描：oneforall\n- 端口服务扫描：shodan+异步socket+nmap（ip数据库、CDN判断）\n- URL可用探测\n- 驱动浏览器爬虫采集数据：crawlergo\n- 被动漏洞扫描：xray\n\n### 安装说明\n\n- Python3.7以上(推荐Python3.8)\n- 数据库（推荐postgres）\n- chromium浏览器\n\n##### 以Ubuntu16.04为例\n\n- 1、安装Python3.8以及相关编译环境(dev之类)，这里推荐使用`miniconda`安装，并安装`requirements.txt`文件所需模块\n\n- 2、安装postgresql数据库，可将源换成国内源进行快速安装，完成后创建一个空数据库。\n\n- 3、安装chromium浏览器\n\n```\nsudo apt-get install chromium-browser\n```\n\n- 4、安装nmap\n\n\n### 使用说明\n- 1、修改`config.py`文件，填入`数据库链接项`、`shodan api项`,其他选项选填（环境不一致需要更改选项，如nmap路径、chromium浏览器路径等，具体看配置文件）\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/10.png)\n\n- 2、执行`sh bayonet.sh`脚本启动所有模块（注意，如果python3不是默认的python命令，请修改脚本为`python3`）\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/11.png)\n\n- 3、登录web，添加一个主域名任务，等待片刻，刷新下，就会执行子域名扫描任务\n\u003e 如果是服务器搭建，则访问`http://服务器外网ip`，如果为本机搭建则访问`http://127.0.0.1`\n\u003e 默认用户名密码：root/qazxsw@123\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/12.png)\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/13.png)\n\n- 4、扫描器子域名需要一定时间，可查看日志观察进度（logs目录下是各个模块运行日志）\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/14.png)\n\n- 5、当子域名、端口扫描、url探测都开始工作了，会在web中显示各模块结果，现在进入扫描任务管理，选择要扫描的URL进行扫描\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/15.png)\n\n- 6、当选择了一个URL进行安全扫描，爬虫模块启动开始驱动浏览器进行爬取，爬取完后，xray开启工作进行漏洞扫描\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/16.png)\n\n- 7、当xray扫描进行中，如果有漏洞会实时存入数据库中，刷新漏洞管理可看到，当点击提交按钮，说明此漏洞已复现或提交给SRC（会在已提交漏洞模块中保存），若误报可删除此漏洞。\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/17.png)\n\n### docker使用\n\n```\n$ docker search bayonet  # 查看该项目docker镜像\nmissfeng/bayonet    bayonet项目docker镜像\n\n$ docker pull missfeng/bayonet:v1.2  # 拉取镜像\n\n$ docker run -itd --name bayonet -p 5000:80 missfeng/bayonet:v1.2  # 后台启动容器\n\n$ docker ps  # 查看已启动的容器\n822374ab6f7d        bayonet:v1.2\n\n$ docker exec -it 8223 bash  # 进入容器中 8223是容器ID：822374ab6f7d简写\n\n# /etc/init.d/postgresql start  # 启动数据库\n\n# cd /root/bayonet/   # 进入项目目录\n\n# vim config.py   # 编辑配置文件，找到 shodan_api，填入该参数值；其他配置可自己配置\n\n# sh bayonet.sh  # 启动脚本\n\n访问本机地址: http://127.0.0.1\n默认用户名密码：root/qazxsw@123\n```\n\n\n### 更新日志\n\n##### 2020年3月16日\n\u003e bayonet V1.1版本完成。添加并完善了：\n\n- 1: 去除w13scan被动扫描器，添加xray被动扫描器\n- 2: 主域名任务可重复扫描\n- 3: 修复BUG\n\n##### 2020年3月04日\n\u003e bayonet V1.1版本完成。添加并完善了：\n\n- 1：加入了WAF、CDN、ip归属地识别，进行自动跳过，节约了扫描时间\n- 2：加入了异步socket常规端口探测功能、nmap探测功能、防止shodan探测不完整\n- 3：数据表进行了关联，新增且优化了web页面设计\n- 4：爬虫采集到的子域名再次入库，URL探测支持二级目录扫描\n- 5：子域名、端口扫描、URL扫描、爬虫模块整合到一个项目以便关联\n- 6：修复了一些bug\n\n尚未添加功能：\n- 端口服务漏洞扫描\n\n##### 2020年2月13日\n\u003e bayonet V1.0版本完成，基本连接了这几个工具模块到一起\n\n### 演示\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/1.png)\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/2.png)\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/3.png)\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/4.png)\n\n![index](https://github.com/CTF-MissFeng/bayonet/blob/master/doc/5.png)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fctf-missfeng%2Fbayonet","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fctf-missfeng%2Fbayonet","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fctf-missfeng%2Fbayonet/lists"}