https://github.com/lunchcat/sif

🚀 blazing-fast pentesting suite written in Go
https://github.com/lunchcat/sif

attack-surface cve-scanner cve-scanning cybersecurity directory-enumeration dirlist dns-enumeration hacktoberfest infosec pentest pentest-scripts pentest-tool pentesting security vulnerability-detection vulnerability-scanners

Last synced: 6 days ago
JSON representation

🚀 blazing-fast pentesting suite written in Go

• Host: GitHub
• URL: https://github.com/lunchcat/sif
• Owner: lunchcat
• Created: 2023-09-01T14:58:27.000Z (about 1 year ago)
• Default Branch: main
• Last Pushed: 2024-04-05T23:52:39.000Z (7 months ago)
• Last Synced: 2024-04-06T01:19:48.196Z (7 months ago)
• Topics: attack-surface, cve-scanner, cve-scanning, cybersecurity, directory-enumeration, dirlist, dns-enumeration, hacktoberfest, infosec, pentest, pentest-scripts, pentest-tool, pentesting, security, vulnerability-detection, vulnerability-scanners
• Language: Go
• Homepage: https://sif.sh
• Size: 287 KB
• Stars: 26
• Watchers: 2
• Forks: 2
• Open Issues: 10
• Metadata Files:
  • Readme: README.md
  • Contributing: CONTRIBUTING.md
  • License: LICENSE
  • Code of conduct: CODE_OF_CONDUCT.md

Awesome Lists containing this project

README

        








![Go version](https://img.shields.io/github/go-mod/go-version/dropalldatabases/sif)

[![Go Report Card](https://goreportcard.com/badge/github.com/dropalldatabases/sif)](https://goreportcard.com/report/github.com/dropalldatabases/sif)

[![Version](https://img.shields.io/github/v/tag/dropalldatabases/sif)](https://github.com/dropalldatabases/sif/tags)

[![All Contributors](https://img.shields.io/github/all-contributors/lunchcat/sif?color=ee8449&style=flat-square)](#contributors)



## 📖 Table of Contents

- [Modules](#-modules)

- [Installation](#-installation)

- [Quick Start](#-quick-start)

- [Usage](#-usage)

- [Performance](#-performance)

- [Contributing](#-contributing)

- [Contributors](#-contributors)

- [Acknowledgements](#-acknowledgements)

## 🧩 Modules

sif is built with a modular architecture, allowing for easy extension and customization. Some of our key modules include:

- 📂 Directory/file fuzzing/scanning

- 📡 DNS subdomain enumeration

- 🐾 Common Web scanning

- 🖥️ Port/service scanning

- 🦠 Vulnerability scanning

  - Support for pre-existing nuclei templates

  - Metasploit emulation for execution

- 🔎 Automated Google dorking

- 💘 Shodan integration

- 📦 CMS detection

- 🔍 HTTP Header Analysis

- ☁️ C3 Misconfiguration Scanner

- 🔍 Subdomain Takeover Checks

## 📦 Installation

### Using pre-built binaries

Visit our [Releases](https://github.com/dropalldatabases/sif/releases) page to download the latest pre-built binary for your operating system.

### Building from source

1. Ensure you have Go 1.23+ installed on your system.

2. Clone the repository:

   ```

   git clone https://github.com/lunchcat/sif.git

   cd sif

   ```

3. Build using the Makefile:

   ```

   make

   ```

4. The binary will be available in the root directory.

## 🚀 Quick Start

1. Run a basic scan:

   ```

   ./sif -u example.com

   ```

2. For more options and advanced usage, refer to the help command:

   ```

   ./sif -h

   ```

## 🛠 Usage

sif offers a wide range of commands and options to customize your pentesting workflow. Here are some common usage examples:

- Directory fuzzing

```

./sif -u http://example.com -dirlist medium

```

- Subdomain enumeration

```

./sif -u http://example.com -dnslist medium

```

- Supabase/Firebase and C3 Vulnerability scanning

```

./sif -u https://example.com -js -c3

```

- Port scanning

  

```

./sif -u https://example.com -ports common

```

For a complete list of commands and options, run `./sif -h`.

## ⚡ Performance

sif is designed for high performance and efficiency:

- Written in Go for excellent concurrency and speed

- Optimized algorithms for minimal resource usage

- Supports multi-threading for faster scans

- Efficient caching mechanisms to reduce redundant operations

## 🤝 Contributing

We welcome contributions from the community! Please read our [Contributing Guidelines](CONTRIBUTING.md) before submitting a pull request.

Areas we're particularly interested in:

- New scanning modules

- Performance improvements

- Documentation enhancements

- Bug fixes and error handling improvements

## 🌟 Contributors

Thanks to these wonderful people who have contributed to sif:

  

    

      
mel
🚧 🧑‍🏫 📆 🛡️ ⚠️ 💼 💻 🎨 💵 🤔

      
ProjectDiscovery
📦

      
macdoos
💻

      
Matthieu Witrowiez
🤔

      
tessa 
🚇 💬 📓

      
Eva
📝 🖋 🔬 🛡️ ⚠️ 💻

    

  

## 🙏 Acknowledgements

We'd like to thank the following projects and communities for their inspiration and support:

- [ProjectDiscovery](https://projectdiscovery.io/) for their amazing open-source security tools

- [Shodan](https://www.shodan.io/)

- [Malcore](https://www.malcore.io/), for providing us direct API support at Lunchcat.

---



  Happy Hunting! 🐾

  


    Built with ❤️ by the lunchcat team and contributors worldwide