Information Gathering plays an important role in Pentesting. Information Gathering includes System footprinting for basic Configurations of system, Network Configurations, Users Groups & Permissions, Active Directory, and much more. A look at all this information makes much sense to the Pentesting. Also First phase to Penetration Testing is Information Gathering.
NO matter what skills as a pentester one possesses, If you can’t get enough information from the Machine, It’s Over. It’s like hitting an Arrow in the dark. So, To extract as much information we need to run a dozen of commands.
DirtyENUM is a script that automates the task of Primary Information Gathering on Linux Platform that can be analyzed later on to find any vulnerabilitties in the system. It provides a wide range of information needed by Pentester to work more efficiently.
- Extracts Kernel Information & Linux Version that can be useful to find out exploits related to that version.
- Extracts File System Information that tells the partitions on drive, Mount points, Size, Used & Available portions.
- Tells about the Current Logged in User , It's id, tty session, Login Time, IDLE time, etc.
- Dumps /etc/passwd & /etc/group for the Users & Groups Information.
- Finds out Root-Owned Files having Write & Execute permissions
- Finds out World Writable Files & Directories
- Finds out Commands current User can run with sudo
- Extracts Network Configurations, Interface & Active listeners
- Extracts Daemon Process running from crontab
- Extracts Root Processes
- Enumerates Installed Packages & their versions that may be helpful to find out vulnerability in the system.
The tool is written as a Summer Training Project for educational purpose only. Don't Use this sweet piece of code for Shitty things. Though Script doesn't contains any commands that can harm the System, Use tool at your own Risk.
Feel Free to point out bugs & Hugs. Suggesstions are Welcomed. Happy Coding