Skip to content

Releases: HalilDeniz/NetworkSherlock

v1.5.0

25 Dec 08:59
7ecfa87
Compare
Choose a tag to compare

🔐 Enhanced Vulnerability Scanning

  • CVE-2020-1938 (Ghostcat): Now detect the Apache Tomcat AJP File Read/Include Vulnerability.
  • CVE-2014-0160 (Heartbleed): Identify systems vulnerable to the infamous Heartbleed bug.
  • CVE-2018-11776: We've added scanning for Apache Struts vulnerabilities.
  • CVE-2020-0688: Uncover potential risks with our new Microsoft Exchange Server vulnerability scanning.
  • CVE-2022-22784 & CVE-2022-1388: Stay ahead with the latest vulnerability checks for these critical CVEs.

🌐 IP Address File Reading

  • You can now feed a list of IP addresses directly from a file, streamlining your scanning process.

🤖 Robots.txt Detection

  • NetworkSherlock will now alert you if a target's robots.txt file contains potentially sensitive information.

🛡️ WAF Detection

  • We've integrated WAF (Web Application Firewall) detection capabilities to help you better understand the security posture of your web applications.

🔧 Bug Fixes and Improvements

  • We've squashed some bugs and optimized our tool for smoother and more reliable performance.

v1.4.0

18 Dec 05:03
b862e72
Compare
Choose a tag to compare

1. SSL/TLS Certificate Analysis

  • Dive deep into SSL/TLS security by analyzing certificates on your network. This feature allows you to inspect certificate details such as issuer, validity period, and more for enhanced security insights.

2. OS Fingerprinting

  • Uncover the operating systems running on network devices with our new OS Fingerprinting feature. This tool helps you identify potential vulnerabilities specific to OS types and versions.

3. New Vulnerability Scans

  • SMBGhost (CVE-2020-0796): A critical vulnerability in Windows SMBv3. NetworkSherlock now can detect if your systems are vulnerable to this flaw.
  • Shellshock (CVE-2014-6271): Scan for the notorious Shellshock vulnerability, a serious issue affecting Bash, the Unix shell.
  • EternalBlue (CVE-2017-0144): This feature targets the well-known vulnerability in Microsoft's SMBv1 protocol.
  • BlueKeep (CVE-2019-0708): A dangerous vulnerability in Microsoft's Remote Desktop Protocol (RDP). Our tool checks for this weakness in your network.
  • Apache Struts (CVE-2017-5638): Scan for vulnerabilities in Apache Struts, a popular framework for creating Java web applications.

1.3.0

11 Dec 10:01
5b6ba3c
Compare
Choose a tag to compare

🌐 New Feature Update for NetworkSherlock: FTP Anonymous, ARP Discovery, ASN & ORG Information and Geolocation Data!

🛰️ What's New?

  1. ASN & ORG Information:
  2. Geolocation Data Retrieval:
  3. Enhanced Shodan Integration:
  4. 🌐ARP Discovery:
  5. 🔐 FTP Anonymous Login Checking:

🔄 How to Use These New Features?

  • Simply update your NetworkSherlock tool from our GitHub repository: NetworkSherlock.
  • For ARP Discovery, use the --arp-discover and --iface flags to specify the network and interface.
  • FTP Anonymous Login Checking is automatically performed for FTP services found during the scan.

v1.1.0

04 Dec 08:39
cef20fc
Compare
Choose a tag to compare

🎉 ### What's New?

  1. Shodan Integration:

    • NetworkSherlock now integrates with Shodan, the world's leading search engine for internet-connected devices.
    • This powerful combination allows you to enrich your local port scans with data from Shodan's vast repository of internet-wide scan data.
    • Discover more detailed information about the devices and services in your network, including their open ports, services running, and potential vulnerabilities.
  2. Enhanced Banner Grabbing:

    • We've upgraded our banner grabbing techniques to provide more detailed insights into the services running on each open port.
  3. Configurable via .config File:

    • Easily manage your Shodan API key and other settings through a convenient configuration file.
  4. Colorful Console Output:

    • Enjoy an improved user experience with colorful console outputs, making scan results more readable and informative.

v0.1

27 Nov 13:39
5a7a23d
Compare
Choose a tag to compare
v0.1 Pre-release
Pre-release

🔍 What is NetworkSherlock?
NetworkSherlock is a highly versatile and efficient port scanner that allows users to perform in-depth network analysis. It's crafted to scan IP ranges, CIDR blocks, and multiple targets, delivering detailed insights and identifying vulnerabilities with precision.

🌟 Key Features:

  • Efficient scanning of multiple IPs, IP ranges, and CIDR blocks.
  • Support for both TCP and UDP protocols.
  • Advanced banner grabbing functionality.
  • Ping check integration to identify reachable targets.
  • Multi-threading capabilities for rapid scanning operations.
  • Option to save scan results for comprehensive reporting.
  • Detailed version information for services.