Git Product home page Git Product logo

scythe's Introduction

Scythe

scythe: account enumerator

Account Enumerator is designed to make it simple to perform account
enumeration as part of security testing. The framework offers the ability
to easily create new modules (XML files) and speed up the process of testing.

This tool was created with 2 main use cases in mind:

- The ability to test a range of email addresses across a range of sites (e.g.
    social media, blogging platforms, etc...) to find where those targets have
    active accounts. This can be useful in a social engineering test where you
    have email accounts for a company and want to list where these users have
    used their work email for 3rd party web based services.

- The ability to quickly create a custom testcase module and use it to enumerate
    for a list of active accounts. Using either a list of know usernames, email
    addresses, or a dictionary of common account names.

This program is released as is and is not designed to be used to test again sites
where you do not have permission. Any modules provided are for demonstration purposes
and may breach end user license agreements if used against a site. Your mileage may
vary... be responsible!

External module depenancies:
    colorama (Windows only, optional)

Example Usage:

List available modules

./scythe.py -l

Check account list against facebook

./scythe.py --single facebook.com --accountfile=accountfile.txt

Check account list against facebook (using threads, w/ summary output)

./scythe.py --single facebook.com --accountfile=accountfile.txt --threads 4 --summary

Check account list against all modules in the social and blogs categories (w/ summary output)

./scythe.py --category=social,blogs --accountfile=accountfile.txt --summary

Check specific accounts against facebook

./scythe.py --single facebook.com --account=testuser,testuser2

Check account list against facebook (output to logfile)

./scythe.py --single facebook.com --accountfile=accountfile.txt --output=logfile.txt

Check accounts in the command line against Wordpress.com (3 retries, 60 second retry wait)

./scythe.py --single facebook.com --account=testuser,testuser1,testuser2 --retries=3 --retrytime=60

scythe's People

Contributors

chrisjohnriley avatar wick2o avatar

Watchers

James Cloos avatar Alex Soares avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.