Elmasy will be an attack surface analysis tool. Discover and assess as many as possible publicly accessible assets from a domain name.
This project has 3 goals:
- To provide a website for non-professionals/professionals to check the attack surfaces of publicly accessible assets.
- To provide an API for professionals to work with easily.
- The website will use the same API as your service.
- To provide a wide range of libraries for professionals to work with without relying on external services.
- The API will use the same libraries as you.
As we grow, we will know more protocols, more services and assess/evaluate as fast as the programming language allows. The project is starts from lower layers (like TCP and UDP), basic services (like web servers) and gathering basic information about the servers (like TLS ciphers).
wget https://raw.githubusercontent.com/elmasy-com/elmasy/main/scripts/install.shsudo bash install.sh installcp /opt/elmasy/elmasy.conf.example /opt/elmasy/elmasy.confEdit the config file.
The installer create a service for Elmasy.
To start:
systemctl start elmasyIf -config not specified, Elmasy look for the config file in the current directory.
cd /opt/elmasy && ./elmasysudo bash install.sh updateself && sudo bash install.sh installNOTE: If Elmasy was running before update, the install command will restart automatically.