dheerajmadhukar / karma_v2 Goto Github PK

View Code? Open in Web Editor NEW

776.0 9.0 155.0 3.29 MB

⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

Home Page: https://github.com/Dheerajmadhukar/karma_v2

Shell 100.00%

osint shodan bugbounty automation bash-script reconnaissance intelligence infrastructure

karma_v2's Introduction

⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾

𝚔𝚊𝚛𝚖𝚊 𝚟𝟸 is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

𝚔𝚊𝚛𝚖𝚊 𝚟𝟸 can be used by Infosec Researchers, Penetration Testers, Bug Hunters to find deep information, more assets, WAF/CDN bypassed IPs, Internal/External Infra, Publicly exposed leaks and many more about their target. Shodan Premium API key is required to use this automation. Output from the 𝚔𝚊𝚛𝚖𝚊 𝚟𝟸 is displayed to the screen and saved to files/directories.

ℹ Regarding Premium Shodan API, Please see the Shodan site for more information.

Shodan website: Shodan Website API : Developer API

Features

Powerful and flexible results via Shodan Dorks
SSL SHA1 checksum/fingerprint Search
Only hit In-Scope IPs
Verify each IP with SSL/TLS certificate issuer match RegEx
Provide Out-Of-Scope IPs
Find out all ports including well known/uncommon/dynamic
Grab all targets vulnerabilities related to CVEs
Banner grab for each IP, Product, OS, Services & Org etc.
Grab favicon Icons
Generate Favicon Hash using python3 mmh3 Module
Favicon Technology Detection using nuclei custom template
ASN Scan
BGP Neighbour
IPv4 & IPv6 Profixes for ASN
Interesting Leaks like Indexing, NDMP, SMB, Login, SignUp, OAuth, SSO, Status 401/403/500, VPN, Citrix, Jfrog, Dashboards, OpenFire, Control Panels, Wordpress, Laravel, Jetty, S3 Buckets, Cloudfront, Jenkins, Kubernetes, Node Exports, Grafana, RabbitMQ, Containers, GitLab, MongoDB, Elastic, FTP anonymous, Memcached, DNS Recursion, Kibana, Prometheus, Default Passwords, Protected Objects, Moodle, Spring Boot, Django, Jira, Ruby, Secret Key and many more...

Installation

1. Clone the repo

# git clone https://github.com/Dheerajmadhukar/karma_v2.git

2. Install shodan & mmh3 python module

# python3 -m pip install shodan mmh3

3. Install JSON Parser [JQ]

# apt install jq -y

4. Install httprobe @tomnomnom to probe the requests

# go install -v github.com/tomnomnom/httprobe@master

5. Install Interlace @codingo to multithread [Follow the codingo interlace repo instructions]

# git clone https://github.com/codingo/Interlace.git & install accordingly.

6. Install nuclei @projectdiscovery

# go install -v github.com/projectdiscovery/nuclei/v2/cmd/nuclei@latest

7. Install lolcat

# apt install lolcat -y

8. Install anew

# go install -v github.com/tomnomnom/anew@master

Ok, how do I use it?

# cat > .token
SHODAN_PREMIUM_API_HERE

Usage

You can use this command to check help:

$ bash karma_v2 -h

MODEs

MODE	Examples
-ip	`bash karma_v2 -d <DOMAIN.TLD> -l <INTEGER> -ip`
-asn	`bash karma_v2 -d <DOMAIN.TLD> -l <INTEGER> -asn`
-cve	`bash karma_v2 -d <DOMAIN.TLD> -l <INTEGER> -cve`
-cveid	`bash karma_v2 -d <DOMAIN.TLD> -l <INTEGER> -cveid CVE-2021-34473`
-favicon	`bash karma_v2 -d <DOMAIN.TLD> -l <INTEGER> -favicon`
-leaks	`bash karma_v2 -d <DOMAIN.TLD> -l <INTEGER> -leaks`
-deep	`bash karma_v2 -d <DOMAIN.TLD> -l <INTEGER> -deep`
-count	`bash karma_v2 -d <DOMAIN.TLD> -l <INTEGER> -count`

Demo

karma_v2 [mode -ip]

karma_v2 [mode -asn]

karma_v2 [mode -cve]

karma_v2 [mode -favicon]

karma_v2 [mode -leaks]

karma_v2 [mode -deep]

-deep support all the above modes e.g. -count,-ip,-asn,-favicon,-cve,-leaks !

Output

output/bugcrowd.com-YYYY-MM-DD/ 

.
├── ASNs_Detailed_bugcrowd.com.txt
├── Collect
│   ├── host_domain_domain.tld.json.gz
│   ├── ssl_SHA1_12289a814...83029f8944b6088d60204a92e_domain.tld.json.gz
│   ├── ssl_SHA1_17537bf84...73cb1d684a495db7ea5aa611b_domain.tld.json.gz
│   ├── ssl_SHA1_198d6d4ec...681b77585190078b07b37c5e1_domain.tld.json.gz
│   ├── ssl_SHA1_26a9c5618...d60eae2947b42263e154d203f_domain.tld.json.gz
│   ├── ssl_SHA1_3da3825a2...3b852a42470410183adc3b9ee_domain.tld.json.gz
│   ├── ssl_SHA1_4d0eab730...68cf11d2db94cc2454c906532_domain.tld.json.gz
│   ├── ssl_SHA1_8907dab4c...12fdbdd6c445a4a8152f6b7b7_domain.tld.json.gz
│   ├── ssl_SHA1_9a9b99eba...5dc5106cea745a591bf96b044_domain.tld.json.gz
│   ├── ssl_SHA1_a7c14d201...b6fd4bc4e95ab2897e6a0bsfd_domain.tld.json.gz
│   ├── ssl_SHA1_a90f4ddb0...85780bdb06de83fefdc8a612d_domain.tld.json.gz
│   ├── ssl_domain_domain.tld.json.gz
│   ├── ssl_subjectCN_domain.tld.json.gz
│   └── ssl_subject_domain.tld.json.gz
|   └── . . .
├── IP_VULNS
│   ├── 104.x.x.x.json.gz
│   ├── 107.x.x.x.json.gz
│   ├── 107.x.x.x.json.gz
│   └── 99.x.x.x.json.gz
|   └── . . .
├── favicons_domain.tld.txt
├── host_enum_domain.tld.txt
├── ips_inscope_domain.tld.txt
├── main_domain.tld.data
├── . . .

karma_v2 Newly Added Shodan Dorks

SonarQube
Apache hadoop node
Directory Listing
Oracle Business intelligence
Oracle Web Login
Docker Exec
Apache Status
Apache-Coyote/1.1 Tomcat-5.5
Swagger UI
H-SPHERE
Splunk
JBoss
phpinfo
ID_VC
Confluence
TIBCO_Jaspersoft
Shipyard_Docker_management
Symfony PHP info AWS creds
Ignored-by_CDNs
Django_Exposed
Cluster_Node_etcd
SAP_NetWeaver_Application

𝚔𝚊𝚛𝚖𝚊 𝚟𝟸 Supported Shodan Dorks

DORKs	DORKs	DORKs
`ssl.cert.fingerprint`	`http.status:"302" oauth`	`"Server: Jetty"`
`ssl`	`http.status:"302" sso`	`X-Amz-Bucket-Region`
`org`	`title:"401 Authorization Required"`	`"development" org:"Amazon.com"`
`hostname`	`http.html:"403 Forbidden"`	`"X-Jenkins" "Set-Cookie: JSESSIONID" http.title:"Jenkins [Jenkins]"`
`ssl.cert.issuer.cn`	`http.html:"500 Internal Server Error"`	`http.favicon.hash:81586312 200`
`ssl.cert.subject.cn`	*`ssl.cert.subject.cn:vpn`*	`product:"Kubernetes" port:"10250, 2379"`
`ssl.cert.expired:true`	`title:"citrix gateway"`	`port:"9100" http.title:"Node Exporter"`
`ssl.cert.subject.commonName`	`http.html:"JFrog"`	`http.title:"Grafana"`
`http.title:"Index of /"`	`"X-Jfrog"`	`http.title:"RabbitMQ"`
`ftp port:"10000"`	`http.title:"dashboard"`	`HTTP/1.1 307 Temporary Redirect "Location: /containers"`
`"Authentication: disabled" port:445 product:"Samba"`	`http.title:"Openfire Admin Console"`	`http.favicon.hash:1278323681`
`title:"Login - Adminer"`	`http.title:"control panel"`	`"MongoDB Server Information" port:27017 -authentication`
`http.title:"sign up"`	*`http.html:" The wp-config.php creation script uses this file"`**	`port:"9200" all:"elastic indices"`
`http.title:"LogIn"`	`clockwork`	`"220" "230 Login successful." port:21`
`port:"11211" product:"Memcached"`	`"port: 53" Recursion: Enabled`	`title:"kibana"`
`port:9090 http.title:"Prometheus Time Series Collection and Processing Server"`	`"default password"`	`title:protected`
`http.component:Moodle`	`http.favicon.hash:116323821`	`html:"/login/?next=" title:"Django"`
`html:"/admin/login/?next=" title:"Django"`	`title:"system dashboard" html:jira`	`http.component:ruby port:3000`
`html:"secret_key_base"`	`I will add more soon`	`. . .`

𝚔𝚊𝚛𝚖𝚊 𝚟𝟸 Newly Added Shodan Dorks

DORKs	DORKs	DORKs
`"netweaver"`	`port:"2379" product:"etcd"`	`http.title:"DisallowedHost"`
`ssl:"${target}" "-AkamaiGHost" "-GHost"`	`ssl:"${target}" "-Cloudflare"`	`ssl:"${target}" "-Cloudfront"`
`"X-Debug-Token-Link" port:443`	`http.title:"shipyard" HTTP/1.1 200 OK Accept-Ranges: bytes Content-Length: 5664`	`http.title:"TIBCO Jaspersoft:" port:"443" "1970"`
`"Confluence"`	`http.title:"SonarQube"`	*`html:"jmx?qry=Hadoop:"`**
`http.title:"Directory Listing"`	`http.title:"H-SPHERE"`	`http.title:"Swagger UI - "`
`Server: Apache-Coyote/1.1 Tomcat-5.5"`	`port:2375 product:"Docker"`	`http.title:"phpinfo()"`
`http.title:"ID_VC_Welcome"`	`"x-powered-by" "jboss"`	`jboss http.favicon.hash:-656811182`
`http.title:"Welcome to JBoss"`	`port:"8089, 8000" "splunkd"`	`http.favicon.hash:-316785925`
`title:"splunkd" org:"Amazon.com"`	`http.title:"oracle business intelligence sign in"`	`http.title:"Oracle WebLogic Server Administration Console"`
`http.title:"Apache Status"`	`I will add more soon`	`. . .`

Support

If you like ⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ and it help you in work, money/bounty, pentesting, recon or just brings you happy feelings, please show your support ! :stop_sign: Please avoid opening GitHub issues for support requests or questions! buy me a beer to keep me powered :)

karma_v2's People

Contributors

Stargazers

Watchers

Forkers

yuvanksoni rahultalekar tounsi007 petrusviet polling-repo-continua pareshparmar myhunt1996 afwu zpaav danzee1 ofjaaah lijinta1984 tk-t0n0y takeoverflo winshikhar r0x4r silentsoul04 cybersaki attacker-codeninja sleepyeinstein kenuosec puzzithinker prageeth1985 i-sylar mathevsval inosec2 kingofthebeat crackercat munjurhasan444 ckotherproject leereak baolqinfosec gsatyadev skidrow0200 zha0 an0nym0u5101 silocityit h4ckdi zc00l prettyrecon parkjunmin en-clair madusec isarabia92 c0de-sin sulaimanzai stefanaustin bug-tools dileepkumarjagadabi 4mrr spongyb myhkho ewardan sh9369 keyman9848 arijitdirghangi tirthikas waterwei sarmadbytes cqr-cryeye-forks yp-team hex-willer storenth resenhacyber tardenilesh-08 saurabhsam96216 482949203 designerscoders ethical-cronos rayiik startagain2016 sashka3076 ayplusllc jgoodacre93 0xsojalsec ch-ew andycradle mdsabbirkhan psoverflow raytheon0x21 simrotion13 kab0a1 ghost1141 fabrice8 serundengsapi haka110 patilraj2407 rishikesh-j longjoe76 jeffry38 alihunt excloudx6 usama-shahzad say383 websecurity-pentesting ap10-hub pprogg cyberfury101 take0versget cyb3rm3g

karma_v2's Issues

Error

Tried with free shodan key,all output files are empty and got this error

Permission issues

I was scanning a target after the count process I get permission denied error. But I'm root user which using the tool can you please suggest me some fixes.

root@user-karma:~ ./karma_v2 -d domain.com -s -l -1 -deep

DEEP SCAN
╔════════════════════════════════════════════════════════════════════════════════╗
  Shodan Result Count  [ No API Credits Use ]
╚════════════════════════════════════════════════════════════════════════════════╝

ssl_SHA1_8030d238993d330ad8a7271ad6       |  1952
ssl_SHA1_2a07268dee6805e75915e12d320fbaf  |  678
ssl_SHA1_4f8089f41b4969f1373d0            |  502
ssl_SHA1_2f681dcdcdae34e3986f06a54a       |  486

SSL_Domain                                         |  4469
Hostname_Domain                                    |  15
SSL_Subject                                        |  2964
Ignored-by_CDNs_SSL                                |  384
Ignored-by_CDNs_hostname                           |  15
Ignored-by_CDNs_subject_cn                         |  56
Indexing_SSL                                       |  1
LogIn_body_SSL_subject                             |  3
LogIn_body_SSL                                     |  3
403_Forbidden_SSL_subject                          |  6
403_Forbidden_SSL                                  |  7
403_Forbidden_Hostname                             |  4
Jetty_Detect_SSL_subject                           |  4
Jetty_Detect_SSL                                   |  4

Query credits available: 100
Scan credits available: 100

./karma_v2: line 510: /tmp/results: Permission denied

Thanks

Resume where exit

Please add a feature to resume where we left

Yesterday, I was scanning a target from last 2 Hours, accidently I closed my terminal and all scan data is terminated and have to start a new scan, which is again take me 3½ hours to complete the scan.

terminal:~ bash karma_v2 -d target.com -s -deep -l -1

DEEP SCAN
╔════════════════════════════════════════════════════════════════════════════════╗
  Shodan Result Count  [ No API Credits Use ]
╚════════════════════════════════════════════════════════════════════════════════╝

ssl_SHA1_0784e373a7c023a1943b488f06784a7399  	   |  118637
ssl_SHA1_078d343f121c2c220ae5ebe830e0ece8c0  	   |  86354
SSL_Domain                                         |  1442772
Hostname_Domain                                    |  2994
SSL_Issuer                                         |  150
SSL_Subject                                        |  109564
SSL_Expired                                        |  2
Ignored-by_CDNs_SSL                                |  1296505
Ignored-by_CDNs_hostname                           |  2994
Ignored-by_CDNs_issuer_cn                          |  148
Ignored-by_CDNs_subject_cn                         |  54423
Indexing_SSL                                       |  27
phpinfo_subject                                    |  1
LogIn_title_SSL_subject                            |  11
LogIn_title_SSL                                    |  44
LogIn_title_Hostname                               |  6
LogIn_body_SSL_subject                             |  31
LogIn_body_SSL                                     |  449
LogIn_body_Hostname                                |  11
OAuth_status_SSL                                   |  1
403_Forbidden_SSL_subject                          |  1034
403_Forbidden_SSL                                  |  10134
403_Forbidden_Hostname                             |  28
500_Status_html_SSL_subject                        |  52
500_Status_html_SSL                                |  139
500_Status_SSL_subject                             |  155
500_Status_SSL                                     |  1922
VPN_SSL_subject                                    |  7
VPN_SSL                                            |  37
VPN_Hostname                                       |  1
JFrog_html_SSL                                     |  1
Dashboard_title_SSL                                |  2
Jetty_Detect_SSL                                   |  7
Grafana_Detect_SSL                                 |  14
MongoDB_Server_Metrics_SSL                         |  5
ID_VC_subject                                      |  1
Swagger_UI_subject                                 |  3
SonarQube_subject                                  |  1

Query credits available: 10000
Scan credits available: 65535

>> Saved 118637 results into file /home/eshan/karma_v2/output/target.com-2021-09-27/Collect/ssl_SHA1_0784e373a7c023a1943b488f06784a7399_target.com.json.gz
>> Saved 86354 results into file /home/eshan/karma_v2/output/target.com-2021-09-27/Collect/ssl_SHA1_078d343f121c2c220ae5ebe830e0ece8c0_target.com.json.gz

Here, I accidently closed the terminal. Then I restarted the scan and go to the folder where my results are saved ( /home/eshan/karma_v2/output/target.com-2021-09-27/Collect/) but everything was deleted, and it was re-downloading every files.

Describe the solution you'd like

If possible, please add a feature in where karma will check if the file already exists, so it will skip that file and save next file.

Thanks

egrep and grep warning

╔════════════════════════════════════════════════════════════════════════════════╗
In-Scope-IPs [ Validated by CN=*.qimai.cn ]
╚════════════════════════════════════════════════════════════════════════════════╝
egrep: warning: egrep is obsolescent; using grep -E
grep: warning: stray \ before =
╔════════════════════════════════════════════════════════════════════════════════╗
Out-Of-Scope-IPs [ Verified by SSL/TLS certificate subject CN ]
╚════════════════════════════════════════════════════════════════════════════════╝
Usage: grep [OPTION]... PATTERNS [FILE]...
Try 'grep --help' for more information.

Any new validation mode ?

Congratulations for the tool..
But I already have httprobe would there be any other validation method?

Getting blank results and an error "Usage: grep [OPTION]... PATTERNS [FILE]..."

Getting blank results and an error "Usage: grep [OPTION]... PATTERNS [FILE]..." . No inscope and out of scope IP's and tool showing error:
Usage: grep [OPTION]... PATTERNS [FILE]...
Try 'grep --help' for more information.

error with karma_v2

Title: Error: Unable to find httprobe after updating paths in karma

Body:

Hi,

I’m experiencing an issue with the karma tool after updating paths in the scripts. When running the command, I get the following error:

┌──(myenv)(kali㉿kali)
└─$ karma -h

[!] Error: Unable to find httprobe. Make sure it installed OR 
	 - GO111MODULE=on go get -v github.com/tomnomnom/httprobe

I have updated the path of the httprobe in script /home/kali/go/bin/httprobe

GO111MODULE=on go get -v github.com/tomnomnom/httprobe

after solving that issue I am encountering issue with anew "command not found" error, and the issue seems related to line 140 in the script. eventhough anew installed in my system

Could you please help resolve this issue?

Thank you!

flag provided but not defined - Issue

what does mean?
use command -> ./karma_v2 -d test.com -l 50 -ip

Zero findings

Please sir dont close my problem,i have latest httprobe and all tools,and i have errors and zero findngs

Error: Empty search query

How can i solve that issue

Installations video

anyone share with me installations since when install i am getting error message

flag provided but not defined: -prefer-https

Hi Dheeraj,
When i tried to run the tool on a target with IP mode,the following error got output:

In-Scope-IPs [ Validated by CN=redacted.com ]
╚════════════════════════════════════════════════════════════════════════════════╝
flag provided but not defined: -prefer-https
Usage of httprobe:
-c int
set the concurrency level (default 20)
-p value
add additional probe (proto:port)
-s skip the default probes (http:80 and https:443)
-t int
timeout (milliseconds) (default 10000)
-v output errors to stderr
Traceback (most recent call last):
File "/usr/local/bin/interlace", line 33, in
sys.exit(load_entry_point('Interlace==1.9.5', 'console_scripts', 'interlace')())
File "/usr/local/lib/python3.9/dist-packages/Interlace-1.9.5-py3.9.egg/Interlace/interlace.py", line 36, in main
File "/usr/local/lib/python3.9/dist-packages/Interlace-1.9.5-py3.9.egg/Interlace/lib/threader.py", line 101, in init
File "/usr/local/lib/python3.9/dist-packages/Interlace-1.9.5-py3.9.egg/Interlace/interlace.py", line 11, in task_queue_generator_func
File "/usr/local/lib/python3.9/dist-packages/Interlace-1.9.5-py3.9.egg/Interlace/lib/core/input.py", line 264, in process_data_for_tasks_iterator
Exception: No target provided, or empty target list
╔════════════════════════════════════════════════════════════════════════════════╗
Out-Of-Scope-IPs [ Verified by SSL/TLS certificate subject CN ]
╚════════════════════════════════════════════════════════════════════════════════╝
Usage: grep [OPTION]... PATTERNS [FILE]...
Try 'grep --help' for more information.

Please support to understand this message and how to rectify the error.

Cant install anew

Unable to find httprobe. Make sure it installed OR

Ubuntu Server
installed using the following steps:
1. Clone the repo

git clone https://github.com/Dheerajmadhukar/karma_v2.git

Install shodan & mmh3 python module

python3 -m pip install shodan mmh3

Install JSON Parser [JQ]

apt install jq -y

Install httprobe @tomnomnom to probe the requests

GO111MODULE=on go get -v github.com/tomnomnom/httprobe

Install Interlace @codingo to multithread [Follow the codingo interlace repo instructions]

git clone https://github.com/codingo/Interlace.git & install accordingly.

Install nuclei @projectdiscovery

GO111MODULE=on go get -v github.com/projectdiscovery/nuclei/v2/cmd/nuclei

Install lolcat

apt install lolcat -y

Install anew

GO111MODULE=on go get -u github.com/tomnomnom/anew

bash karma_v2 -h results in the error message: [!] Error: Unable to find httprobe. Make sure it installed OR
- GO111MODULE=on go get -v github.com/tomnomnom/httprobe

ALL reqiment install but error

(tutorial-env) root@debian-s-1vcpu-2gb-blr1-01:/karma_v2# apt install lolcat -y
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
lolcat is already the newest version (100.0.1-3).
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
(tutorial-env) root@debian-s-1vcpu-2gb-blr1-01:/karma_v2#

ALL INSTALL
BUT THIS error
(tutorial-env) root@debian-s-1vcpu-2gb-blr1-01:~/karma_v2# bash karma_v2

[!] Error: Unable to find lolcat. Make sure it installed OR
- apt install lolcat -y
how to fix

I'm unable to print the output from karma_v2

I believe karma_v2 is a great tool for bug bounty hunters & red teamers.
After completing scan, I'm getting a output folder in which all the results are .json.gz format after gunzip-ing the files they are in json format which makes unable to read.
I think there might be some way to get the scanning results displayed in the Banner of the scan itself?

Problem with interlace

I'm having problem with interlace, i uninstalled and installed again, but don't resolve

throwing errors in httprobe

i have installed httprobe but one of my machines showing it's not installed

and on my vps it's showing this error -


flag provided but not defined: -prefer-https
Usage of httprobe:
  -c int
        set the concurrency level (default 20)
  -p value
        add additional probe (proto:port)
  -s    skip the default probes (http:80 and https:443)
  -t int
        timeout (milliseconds) (default 10000)
  -v    output errors to stderr
Traceback (most recent call last):
  File "/usr/local/bin/interlace", line 11, in <module>
    load_entry_point('Interlace==1.9.5', 'console_scripts', 'interlace')()
  File "/usr/local/lib/python3.8/dist-packages/Interlace-1.9.5-py3.8.egg/Interlace/interlace.py", line 36, in main
  File "/usr/local/lib/python3.8/dist-packages/Interlace-1.9.5-py3.8.egg/Interlace/lib/threader.py", line 101, in __init__
  File "/usr/local/lib/python3.8/dist-packages/Interlace-1.9.5-py3.8.egg/Interlace/interlace.py", line 11, in task_queue_generator_func
  File "/usr/local/lib/python3.8/dist-packages/Interlace-1.9.5-py3.8.egg/Interlace/lib/core/input.py", line 264, in process_data_for_tasks_iterator
Exception: No target provided, or empty target list

Empty search query Error While running Karma

bash karma_v2 -d redacted.com -l -1 -cve
..,,,,,,,,,..
.,;%%%%%%%%%%%%%%%%%%%%;,.
%%%%%%%%%%%%%%%%%%%%////%%%%%%, .,;%%;,
.;%/,%%%%%/////%%%%%%%%%%%%%%////%%%%,%%//%%%,
.,;%%%%/,%%%///%%%%%%%%%%%%%%%%%%%%%%%%%%%%,////%%%%;,
.,%%%%%%//,%%%%%%%%%%%%%%%%@@%a%%%%%%%%%%%%%%%%,%%/%%%%%%%;,
.,%//%%%%//,%%%%///////%%%%%%%@@@%%%%%%///////%%%%,%%//%%%%%%%%,
,%%%%%///%%//,%%//%%%%%///%%%%%@@@%%%%%////%%%%%%%%%,/%%%%%%%%%%%%%
.%%%%%%%%%////,%%%%%%%//%///%%%%@@@@%%%////%%/////%%%,/;%%%%%%%%/%%%
%/%%%%%%%/////,%%%%///%%////%%%@@@@@%%%///%%/%%%%%//%,////%%%%//%%%
%//%%%%%//////,%/%a` a%///%%%@@@@@@%%////a a%%%%,//%///%/%%%%%
%///%%%%%%///,%%%%@@aa@@%//%%%@@@@s@@@%%///@@aa@@%%%%%,/%////%%%%%
%%//%%%%%%%//,%%%%%///////%%%@s@@@@ss@@@%%/////%%%%%%%,%////%%%%%
%%//%%%%%%%//,%%%%/////%%@%@ss@@@@@@@s@@@@%%%%/////%%%,////%%%%%
%%%//%%%%/,%%%%@%@@@@@@@@@@@@@@@@@@@@@@@@@S@@%%%%%,/////%% %%%//%%%/,%%%@@@ss@@sss@@@@@@@@@@@@@sss@@@@@@%%%,//%%//%
%%%%%%/ %%S@@SS@@@@@Ss .,,. .sS@@@s@@@@%. ///%/%
%%%/ %SS@@@@SSS@@S. .S@@SSS@@@@. //%% /S@@@@@@ssssss, ,sSSSSS@@@@@.
@@@@@@@@@@@@@ss,sS@@@@@@@@@@@./
@@@@@@@@@@@@@.@@@@@@@@@@@.//
\00aaaaaaaaa00a00aaaaaaa00/
@@000000000000000000@@@/
00000000000000@@@@@@@@@
╭───────────────────────────────────────────────────────────────────────────────╮
⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ KARMA IS MY BITCH.....🧠

	 - https://github.com/Dheerajmadhukar
	 - https://twitter.com/Dheerajmadhukar

╰───────────────────────────────────────────────────────────────────────────────╯

╔════════════════════════════════════════════════════════════════════════════════╗
Shodan Result Count [ No API Credits Use ]
╚════════════════════════════════════════════════════════════════════════════════╝

Query credits available: 99
Scan credits available: 100

Error: Empty search query

please anyone can help ?

i already installed anew and this error keep appers to me every time i run karma
Error: Unable to find anew. Make sure it installed OR
- GO111MODULE=on go get -u github.com/tomnomnom/anew

    solved 👍

export PATH="$PATH:$(go env GOBIN):$(go env GOPATH)/bin"

httprobe error

Hi,
Httprobe is already added in my system, still getting httprobe error while running.

Error

[!] Error: Unable to find httprobe. Make sure it installed OR 
         - GO111MODULE=on go get -v github.com/tomnomnom/httprobe
         - 
         ```

No Api Found

Hi, I hope you are good. I am pass through this issue since v1 that when i run this it says me no api found but when i go to karma folder and type gedit .token, i found that token is placed there and everything is ok but when i try to run same problem comes again. Please Help. One more thing that we have to place that shodan token for which you have given the command cat > .token in shodan folder or somewhere else ?

jq: parse error: Invalid numeric literal

I get error in ASN section when i run this command "bash karma_v2 -d 'sub.domain.com' -l -1 -deep"

Interlace Error , Exception: No target provided, or empty target list

I am getting the below error while executing karma_v2 :

Traceback (most recent call last):
File "/usr/local/bin/interlace", line 33, in
sys.exit(load_entry_point('Interlace==1.9.8', 'console_scripts', 'interlace')())
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/local/lib/python3.11/dist-packages/Interlace-1.9.8-py3.11.egg/Interlace/interlace.py", line 34, in main
File "/usr/local/lib/python3.11/dist-packages/Interlace-1.9.8-py3.11.egg/Interlace/lib/threader.py", line 112, in init
File "/usr/local/lib/python3.11/dist-packages/Interlace-1.9.8-py3.11.egg/Interlace/interlace.py", line 11, in task_queue_generator_func
File "/usr/local/lib/python3.11/dist-packages/Interlace-1.9.8-py3.11.egg/Interlace/lib/core/input.py", line 271, in process_data_for_tasks_iterator
Exception: No target provided, or empty target list

I tried reinstalling Interlace , but no luck . I am running karma_v2 on Kali Linux .

dheerajmadhukar / karma_v2 Goto Github PK

karma_v2's Introduction

⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾

𝚔𝚊𝚛𝚖𝚊 𝚟𝟸 is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

Features

Installation

1. Clone the repo

2. Install shodan & mmh3 python module

3. Install JSON Parser [JQ]

4. Install httprobe @tomnomnom to probe the requests

5. Install Interlace @codingo to multithread [Follow the codingo interlace repo instructions]

6. Install nuclei @projectdiscovery

7. Install lolcat

8. Install anew

Ok, how do I use it?

Usage

MODEs

Demo

Output

karma_v2 Newly Added Shodan Dorks

𝚔𝚊𝚛𝚖𝚊 𝚟𝟸 Supported Shodan Dorks

𝚔𝚊𝚛𝚖𝚊 𝚟𝟸 Newly Added Shodan Dorks

Support

karma_v2's People

Contributors

Stargazers

Watchers

Forkers

karma_v2's Issues

Please add a feature to resume where we left

Describe the solution you'd like

git clone https://github.com/Dheerajmadhukar/karma_v2.git

python3 -m pip install shodan mmh3

apt install jq -y

GO111MODULE=on go get -v github.com/tomnomnom/httprobe

git clone https://github.com/codingo/Interlace.git & install accordingly.

GO111MODULE=on go get -v github.com/projectdiscovery/nuclei/v2/cmd/nuclei

apt install lolcat -y

GO111MODULE=on go get -u github.com/tomnomnom/anew

Recommend Projects

Recommend Topics

Recommend Org