{"id":17026932,"url":"https://github.com/wirzka/incursore","last_synced_at":"2025-06-29T05:33:41.485Z","repository":{"id":193590357,"uuid":"396021529","full_name":"wirzka/incursore","owner":"wirzka","description":"Incursore came from nmapAutomator to be your personal raider while you enumerate a target. ","archived":false,"fork":false,"pushed_at":"2024-07-12T23:06:47.000Z","size":70,"stargazers_count":53,"open_issues_count":0,"forks_count":5,"subscribers_count":3,"default_branch":"main","last_synced_at":"2025-04-07T20:50:10.509Z","etag":null,"topics":["enum","enumeration","oscp","pentesting","pwk","recon","reconnaissance"],"latest_commit_sha":null,"homepage":"https://github.com/wirzka/incursore","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/wirzka.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2021-08-14T13:44:58.000Z","updated_at":"2025-03-26T17:33:13.000Z","dependencies_parsed_at":"2023-09-08T23:03:06.767Z","dependency_job_id":"8309e7c0-8f40-483b-a3d4-d1dff6c2faa2","html_url":"https://github.com/wirzka/incursore","commit_stats":null,"previous_names":["wirzka/incursore"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/wirzka/incursore","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wirzka%2Fincursore","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wirzka%2Fincursore/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wirzka%2Fincursore/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wirzka%2Fincursore/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/wirzka","download_url":"https://codeload.github.com/wirzka/incursore/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wirzka%2Fincursore/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":262543862,"owners_count":23326626,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["enum","enumeration","oscp","pentesting","pwk","recon","reconnaissance"],"created_at":"2024-10-14T07:45:18.344Z","updated_at":"2025-06-29T05:33:41.468Z","avatar_url":"https://github.com/wirzka.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Incursore\n```bash\n     ____                                        \n    /  _/___ _______  ________________  ________\n   / // __ \\/ ___/ / / / ___/ ___/ __ \\/ ___/ _ \\\n _/ // / / / /__/ /_/ / /  (__  ) /_/ / /  /  __/\n/___/_/ /_/\\___/\\__,_/_/  /____/\\____/_/   \\___/\n                     @wirzka     \n```\n*Incursore* will raid the target for you.\n\nIt came out from *nmapAutomator* to be more suited for the OSCP environment.\n\n## TOC\n- [Lazy here](#tldr)\n- [Features and changes](#features-and-changes)\n- [Requirements](#requirements)\n- [Installation](#installation)\n- [Usage](#usage)\n- [Future features](#future-features)\n- [Incursore in the wild](#incursore-in-the-wild)\n- [Disclaimer](#disclaimer)\n\n## TL;DR\nWhile *incursore* has born from *nmapAutomator*, it is **not** *nmapAutomator*. The script from @21y4d is great, but sometimes it's too slow (due to nikto). By removing it, the time needed to complete a scan has been drastically reduced.\nSo, from just removing nikto I found myself tweaking it a lot, that's why I decided to rename it to incursore and to publish it under a new repo and name.\nHope you'll find it useful.\n\n*Bear in mind that I'm still working on it.*\n\n## Features and changes\n*Incursore* has the following features and changes:\n- It immmediately runs a full TCP port scans\n- It asks to the user to run with sudo in order to run a SYN Scan instead of a Connect Scan\n- It automatically tries to bruteforce FTP services\n- It automatically takes screenshot of HTTP homepages using *cutycapt*\n- It runs *ffuf* instead of *gobuster*\n- It does not run *nikto*\n- It has not the remote capabilities\n#### Minor changes\n- It highlights target IP\n- It highlights target OS type\n- It highlights nmap scan type\n## Requirements\n*Incursore*'s requirements are the following:\n|      tool      |      scope      | official link |\n|:--------------:|:---------------:|:-------------:|\n|      nmap      |   recon/enum    | https://nmap.org/              |\n|  nmap vulners  |      recon      |   https://github.com/vulnersCom/nmap-vulners            |\n|      ffuf      |    web enum     |  https://github.com/ffuf/ffuf             |\n|    sslscan     |    web enum     |  https://github.com/rbsec/sslscan             |\n|    joomscan    |    web enum     | https://github.com/OWASP/joomscan              |\n|     wpscan     |    web enum     |   https://github.com/wpscanteam/wpscan            |\n|   droopescan   |    web enum     | https://github.com/droope/droopescan              |\n|    cutycapt    |    web enum     |http://cutycapt.sourceforge.net/               |\n|     smbmap     |    smb enum     | https://github.com/ShawnDEvans/smbmap              |\n|   enum4linux   |    smb enum     |   https://github.com/CiscoCXSecurity/enum4linux            |\n|   snmp-check   |    snmp enum    | https://www.nothink.org/codes/snmpcheck/index.php              |\n|    snmpwalk    |    snmp enum    |https://linux.die.net/man/1/snmpwalk               |\n|      odat      | oracle db recon |   https://github.com/quentinhardy/odat            |\n|   ldapsearch   |    ldap enum    |   https://linux.die.net/man/1/ldapsearch            |\n|    dnsrecon    |    dns enum     | https://github.com/darkoperator/dnsrecon              |\n| smtp-user-enum |    smtp enum    | https://github.com/pentestmonkey/smtp-user-enum              |\n|     hydra      | ftp bruteforce  | https://github.com/vanhauser-thc/thc-hydra              |\n\n\nThe majority of them is already present in pentesting distro like Parrot OS and Kali Linux.\nTo find out how many of them are missing on your machine, just launch a which command like this:\n```bash\n$ which nmap ffuf sslscan joomscan wpscan droopescan cutycapt smbmap enum4linux snmp-check snmpwalk odat ldapsearch dnsrecon smtp-user-enum hydra\n```\n\n## Installation\n```bash\ngit clone https://github.com/wirzka/incursore.git\nsudo ln -s $(pwd)/incursore/incursore.sh /usr/local/bin/\n```\n## Usage\n```bash\n$ incursore.sh -h\n     ____                                        \n    /  _/___ _______  ________________  ________\n   / // __ \\/ ___/ / / / ___/ ___/ __ \\/ ___/ _ \\\n _/ // / / / /__/ /_/ / /  (__  ) /_/ / /  /  __/\n/___/_/ /_/\\___/\\__,_/_/  /____/\\____/_/   \\___/\n                     @wirzka                      \n\nUsage: incursore.sh -H/--host \u003cTARGET-IP\u003e -t/--type \u003cTYPE\u003e\nOptional: [-d/--dns \u003cDNS SERVER\u003e] [-o/--output \u003cOUTPUT DIRECTORY\u003e]\n\nScan Types:\n        Port    : Shows all open ports\n        Script  : Runs a script scan on found ports\n        UDP     : Runs a UDP scan \"requires sudo\"\n        Vulns   : Runs CVE scan and nmap Vulns scan on all found ports\n        Recon   : Suggests recon commands, then prompts to automatically run them\n        All     : Runs all the scans\n\ninspired by @21y4d gently modified by @wirzka\n```\n## Future Features\n- Generally increasing auto reconnaissance based on discovered services.\n\n## Incursore in the wild\nThanks to everyone for spending some times trying, using, and enhancing Incursore \u003c3:\n#### Xerosec on his YouTube video\n[![xerosec on his YouTube video](https://img.youtube.com/vi/4CKey4l490c/0.jpg)](https://www.youtube.com/watch?v=4CKey4l490c)\n\n## Disclaimer\nI am not responsible for any damages (tangible or intangible) resulting from the use of *incursore*.\nYou must have the permissions to use it.\n\nStay safe.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwirzka%2Fincursore","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fwirzka%2Fincursore","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwirzka%2Fincursore/lists"}