Rmissax Full <Instant - 2025>

name: myplugin
description: "Custom HTTP header injection scanner"
version: "0.1.0"
author: "Your Name <you@example.com>"
type: discovery   # or vulnerability / exploitation
entrypoint: main.run   # Python callable

| Item | Minimum Version | |------|-----------------| | Python | 3.9+ | | pip | 21.0+ | | OpenSSL (optional, for TLS checks) | 1.1.1+ | | libpcap (Linux/macOS) | any recent release |

Note: Some plugins depend on external tools (nmap, masscan, nikto). Those must be installed separately and be reachable on $PATH.

Once the directory is placed under plugins/, run: rmissax full

rmissax --list-plugins
# You should see `myplugin` listed.

Then you can invoke it like any other:

rmissax scan -t 10.0.0.1 --plugins myplugin -o myplugin-results.json

---

Below is a typical “recon‑to‑exploit” pipeline using rmissax. | Item | Minimum Version | |------|-----------------| |

# 1️⃣ Discovery – find live hosts, open ports, and services
rmissax scan -t 10.10.0.0/16 \
    --plugins portscan,service-fingerprint,sslinfo \
    -o step1-discovery.json --format json
# 2️⃣ Vulnerability Check – map services to known CVEs
rmissax scan -t step1-discovery.json \
    --plugins cve-search \
    -o step2-vulns.json --format json
# 3️⃣ Filter for exploitable services (e.g., SMB on 445)
jq '.hosts[] | select(.services[]?.port==445)' step2-vulns.json > smb-targets.txt
# 4️⃣ Exploit – attempt unauthenticated SMB share access
rmissax exploit -t smb-targets.txt \
    --plugin smb-guest \
    --payload smb-read \
    --output step3-exploit.json --format json
# 5️⃣ Report – generate a polished HTML report
rmissax report -i step3-exploit.json -o final-report.html --format html

Result: A single HTML file (final-report.html) that lists every host, open ports, discovered CVEs, and successful exploitation attempts, complete with screenshots (if plugins provide them) and a summary table.

---

| Resource | URL | |----------|-----| | GitHub Repository | https://github.com/securelab/rmissax | | Issue Tracker | https://github.com/securelab/rmissax/issues | | Documentation Site | https://rmissax.readthedocs.io | | Discord Community | https://discord.gg/rmissax | | Plugin Marketplace | https://rmissax.io/plugins (community‑contributed plugins) | Note: Some plugins depend on external tools (

Contributions are welcomed via pull requests. The project follows a Contributor Covenant code of conduct.

---

Performs discovery and vulnerability checks.

# Basic TCP port scan of a CIDR block + banner grab
rmissax scan -t 192.168.1.0/24 -p 1-65535 --plugins portscan,banner
# Full recon: DNS enumeration, SSL cert inspection, CVE lookup
rmissax scan -t example.com \
    --plugins subfinder,crtsh,sslinfo,cve-search \
    --output results.json --format json

| Option | Example | Meaning | |--------|---------|---------| | -t, --targets | -t 10.10.10.0/24,10.10.20.5 | Target IPs or hostnames (comma‑separated). | | -p, --ports | -p 80,443,8080-8090 | Port list/range for the portscan plugin. | | --plugins | --plugins portscan,ssh-brute | Comma‑separated list of plugin identifiers. | | --exclude | --exclude 10.10.10.5 | Omit specific hosts from the scan. |

© 2010-2025  |  Site map  |  Art  |  Friends  |  Disclaimer  |  Privacy Policy  |  Terms of Use  |  Contact