Skip to content

macdewee/aucote

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

836 Commits
.ci-utils @ 477ebf3
.ci-utils @ 477ebf3
 
 
.ci
.ci
 
 
.github
.github
 
 
.jenkins
.jenkins
 
 
api
api
 
 
database
database
 
 
dockerization
dockerization
 
 
docs
docs
 
 
fixtures
fixtures
 
 
internal_deps
internal_deps
 
 
migrations
migrations
 
 
scans
scans
 
 
scripts
scripts
 
 
start_scripts
start_scripts
 
 
static
static
 
 
tests
tests
 
 
threads
threads
 
 
tmp
tmp
 
 
tools
tools
 
 
utils
utils
 
 
.ci-utils.conf
.ci-utils.conf
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
aucote.py
aucote.py
 
 
aucote_cfg.py
aucote_cfg.py
 
 
aucote_cfg.yaml.example
aucote_cfg.yaml.example
 
 
aucote_cfg_default.yaml
aucote_cfg_default.yaml
 
 
docker-compose.yml
docker-compose.yml
 
 
package.sh
package.sh
 
 
requirements.txt
requirements.txt
 
 
structs.py
structs.py
 
 

Repository files navigation

Aucote - Automated Compliance Tests

Automated Compliance Tests is a service which is responsible for scanning network. First, it discovers open ports and next, it tries to find security vulnerabilities.

Installation

Install prerequirements:
apt-get update
apt-get install git python3 python3-dev virtualenv -y
git clone https://github.com/FCG-LLC/aucote.git
Install nanomsg

Install nanomsg from sources (This should be done before next steps):

apt-get install cmake -y
wget https://github.com/nanomsg/nanomsg/archive/1.0.0.tar.gz
tar xf 1.0.0.tar.gz
cd nanomsg-1.0.0/
mkdir build
cd build
cmake ..
make
make install
ldconfig
cd ../../
rm 1.0.0.tar.gz
rm -r nanomsg-1.00
Prepare environment:
cd aucote
virtualenv -p python3 venv
source venv/bin/activate # activate virtualenv
pip install -r requirements.txt
Documentation

To build documentation

make -C docs/gen/ clean
make -C docs/gen/ rst
make -C docs/gen/ html
Install tools:
apt-get install nmap masscan skipfish hydra -y

Configuration:

Copy example configuration:

cp aucote_cfg.yaml.exmaple aucote_cfg.yaml

Fulfill aucote_cfg.yaml - the most important fields are:

  • topdis.api.host and topdis.api.port, which define how to connect to Topdis
  • toucan.enable - might be good to disable for local runs
  • kuduworker.enable - might be good to disable for local runs

You might also want to change aucote_cfg_default.yaml - important fields:

  • service.scans.parallel_tasks - defines how many threads should be run
  • portdetection.ports.tcp/udp.include - range of ports, it is good to keep small range for testing purposes
  • portdetection.scan_type - determines whether to use LIVE or PERIODIC scans
  • portdetection.port_scan_rate and - max number of packets/s for port scans. This value should be set very carefully!
  • portdetection.network_scan_rate - max number of packets/s for networks scans. This value should be set very carefully!
  • portdetection.networks - list of networks which are allowed/disabled to be scanned. This value should be set very carefully!
  • portdetection.periodic_scan.cron - cron-like scanning schedule Time is always in UTC!

More details and options are described in the files itself.

Usage

Aucote can be run as one-time scanner or service. It also can synchronize local exploits database with kudu

To run one-time scan you should run command from virtualenv:

python acucote.py scan

To run as periodically service:

python acucote.py service

Contact

In case of any problem, please contact me!

Dominik Rosiek <[email protected]>

About

Automated network ports and vulnerability scanner

apidoc.cs.int/aucote/tree/master/index.html

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

52 tags

Packages

No packages published

Languages

  • Lua 50.0%
  • Python 49.7%
  • Other 0.3%