Spector-Sec _

Advanced Security Tools Suite
# Professional security tools for reconnaissance, vulnerability scanning, and penetration testing
# Author: [hacksys | spector-sec]
# Version: 1.0.0
# Last Updated:

Tool Suite Overview

This comprehensive security toolkit includes six powerful tools designed for penetration testers, security researchers, and red team operators. Each tool is optimized for efficiency and provides specialized capabilities for different phases of security assessment.

Reconnaissance

Advanced target discovery and information gathering capabilities including Google dorking and historical data analysis.

Vulnerability Analysis

Automated identification of potential security weaknesses across multiple vectors.

Data Extraction

Specialized tools for retrieving sensitive information from web applications and services.

Fingerprinting

Advanced techniques for service identification and target profiling.

Tool Catalog

Advanced Google Dorking Tool

Python Reconnaissance

Automated Google search dorking using SerpAPI for comprehensive information gathering.

Features
Installation
Usage
  • Single or bulk target processing
  • Query input from file or manual entry
  • Results saving with timestamp
  • Real-time display of found URLs
  • Graceful interrupt handling
# Clone repository
git clone https://github.com/yourusername/security-tools.git
cd security-tools/google-dorking

# Install dependencies
pip install -r requirements.txt

# Get API key from https://serpapi.com/
# Add to script or environment variables
# Single target mode
python3 dork_tool.py

# Bulk mode with target file
python3 dork_tool.py targets.txt

Wayback Machine URL Extractor

Bash Data Extraction

Extract historical URLs from Wayback Machine for comprehensive target analysis.

Features
Installation
Usage
  • Domain list processing
  • Colorized sensitive pattern highlighting
  • Timestamped output organization
  • Real-time progress display
  • Comprehensive error handling
# Ensure you have required utilities
sudo apt install curl grep sed

# Make script executable
chmod +x wayback_extractor.sh
# Interactive mode
./wayback_extractor.sh

# With target file
./wayback_extractor.sh targets.txt

Web Content Scanner

Bash Vulnerability Analysis

Recursive website scraping with sensitive data detection capabilities.

Features
Installation
Usage
  • User-agent rotation
  • Custom regex pattern matching
  • Parallel processing ready
  • Configurable recursion depth
  • Request delay adjustment
# Install required packages
sudo apt install wget grep

# Download user agents file (optional)
wget https://example.com/user_agents.txt
# Run with default settings
./web_scanner.sh

# Custom settings
./web_scanner.sh -d 3 -t "php,html" targets.txt

Vulnerability Search Tool

Bash Threat Intelligence

Unified CVE/exploit lookup across multiple databases.

Features
Installation
Usage
  • Searches Exploit-DB, Metasploit, CVE databases
  • Filters high-impact vulnerabilities
  • JSON output for CVEs
  • Color-coded results
  • Direct integration with security databases
# Install required tools
sudo apt install exploitdb metasploit-framework jq

# Update databases
searchsploit -u
msfupdate
# Search for Apache 2.4.49 vulnerabilities
./vuln_search.sh Apache 2.4.49

# Output to JSON file
./vuln_search.sh Nginx 1.18.0 -o nginx_vulns.json

Enhanced Reconnaissance Tool

Bash Comprehensive Recon

Advanced web reconnaissance with multiple scanning techniques.

Features
Installation
Usage
  • Configurable recursion/delay
  • SIGINT handling for graceful exits
  • Real-time sensitive data detection
  • User-agent rotation
  • Comprehensive logging
# Install dependencies
sudo apt install wget grep sed

# Make script executable
chmod +x enhanced_recon.sh
# Interactive mode
./enhanced_recon.sh

# With custom settings
./enhanced_recon.sh -d 4 -w 1.5 targets.txt

Favicon Analysis Tool

Python Fingerprinting

Favicon-based fingerprinting with multiple hash algorithms.

Features
Installation
Usage
  • Multi-hash calculation (MD5/SHA/mmh3)
  • Auto-generated Shodan/VirusTotal links
  • Threaded common path discovery
  • JSON output for automation
  • Comprehensive error handling
# Install Python dependencies
pip install requests beautifulsoup4 mmh3 colorama

# Clone repository
git clone https://github.com/yourusername/favicon-analyzer.git
# Single domain analysis
python3 favicon_analyzer.py example.com

# Bulk analysis with JSON output
python3 favicon_analyzer.py domains.txt -o results.json

Complete Workflow

These tools can be chained together for comprehensive security assessments:

# Phase 1: Target Discovery
./google-dorking/dork_tool.py targets.txt

# Phase 2: Historical Analysis
./wayback_extractor.sh discovered_domains.txt

# Phase 3: Content Scanning
./web_scanner.sh -d 3 historical_urls.txt

# Phase 4: Vulnerability Assessment
./vuln_search.sh Apache 2.4.49

# Phase 5: Fingerprinting
python3 favicon_analyzer.py live_targets.txt -o fingerprints.json

Repository Structure

security-tools/
├── google-dorking/            # Tool 01
│   ├── dork_tool.py
│   ├── requirements.txt
│   └── README.md
├── wayback-extractor/         # Tool 02
│   ├── wayback_extractor.sh
│   └── README.md
├── web-scanner/               # Tool 03
│   ├── web_scanner.sh
│   ├── user_agents.txt
│   └── README.md
├── vuln-search/               # Tool 04
│   ├── vuln_search.sh
│   └── README.md
├── enhanced-recon/            # Tool 05
│   ├── enhanced_recon.sh
│   └── README.md
├── favicon-analyzer/          # Tool 06
│   ├── favicon_analyzer.py
│   ├── requirements.txt
│   └── README.md
├── LICENSE
└── README.md                  # Main project documentation