You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
| -t | Specify a target or domain name either in comma format, CIDR notation, or as an individual host.|
18
+
| -t | Specify a target or domain name either in comma-delimited format, CIDR notation, or as an individual host |
19
19
| -tL | Specify a list of targets or domain names |
20
20
| -threads | Specify the maximum number of threads to run at any one time (DEFAULT:5) |
21
-
| -timeout | Specify a timeout value in seconds for any one thread (DEFAULT:600) |
21
+
| -timeout | Specify a timeout value in seconds for any single thread (DEFAULT:600) |
22
22
| -c | Specify a single command to execute over each target or domain |
23
23
| -cL | Specify a list of commands to execute over each target or domain |
24
24
| -o | Specify an output folder variable that can be used in commands as \_output\_|
25
25
| -p | Specify a list of port variable that can be used in commands as \_port\_. This can be a single port, a comma delimited list, or use dash notation |
26
26
| -rp | Specify a real port variable that can be used in commands as \_realport\_|
27
-
| --no-cidr | If set then CIDR notation in a target file will not be automatically be expanded into individual hosts.|
27
+
| --no-cidr | If set then CIDR notation in a target file will not be automatically be expanded into individual hosts |
28
28
| --no-color | If set then any foreground or background colours will be stripped out |
29
-
| --silent | If set then only important information will be displayed and banners and other information will be redacted.|
29
+
| --silent | If set then only important information will be displayed and banners and other information will be redacted |
30
30
| -v | If set then verbose output will be displayed in the terminal |
31
31
32
32
## Further information regarding ports (-p)
@@ -38,22 +38,22 @@ Dependencies will then be installed and Interlace will be added to your path as
38
38
| 80,443 | Perform a command for both port 80, and port 443 |
39
39
40
40
## Further information regarding targets (-t or -tL)
41
-
Both `-t` and `-tL` will be processed the same. You can pass targets the same as you would when using nmap. This can be done using CIDR notation, dash notation, or a commadelimited list of targets. A single target list file can also use different notation types per line.
41
+
Both `-t` and `-tL` will be processed the same. You can pass targets the same as you would when using nmap. This can be done using CIDR notation, dash notation, or a comma-delimited list of targets. A single target list file can also use different notation types per line.
42
42
43
43
# Variable Replacements
44
-
The following varaibles will be replaced in commands at runtime:
44
+
The following variables will be replaced in commands at runtime:
|\_target\_| Replaced with the expanded target list that the current thread is running against |
49
-
|\_host\_| Works the same as \_target\_, can be used interchangably.|
49
+
|\_host\_| Works the same as \_target\_, can be used interchangeably|
50
50
|\_output\_| Replaced with the output folder variable from interlace |
51
51
|\_port\_| Replaced with the expanded port variable from interlace |
52
52
|\_realport\_| Replaced with the real port variable from interlace |
53
53
54
54
# Usage Examples
55
55
## Run Nikto Over Multiple Sites
56
-
Let's assume that you had a file `targets.txt` that had the following contents:
56
+
Let's assume that you have a file `targets.txt` that has the following contents:
57
57
58
58
```
59
59
bugcrowd.com
@@ -69,12 +69,12 @@ Interlace v1.0 by Michael Skelton (@codingo_)
69
69
[14:33:23] [THREAD] [nikto --host hackerone.com > ./hackerone.com-nikto.txt] Added to Queue
70
70
[14:33:23] [THREAD] [nikto --host bugcrowd.com > ./bugcrowd.com-nikto.txt] Added to Queue
71
71
```
72
-
This would run nikto over each host and save to a file for each target. Note that in the above example since we're using the `>` operator so results won't be fed back to the terminal, however this is desired functionality as otherwise we wouldn't be able to attribute which target Nikto results were returning for.
72
+
This would run Nikto over each host and save to a file for each target. Note that in the above example since we're using the `>` operator, the results won't be fed back to the terminal; however this is desired functionality as otherwise we wouldn't be able to attribute which target Nikto results were returning for.
73
73
74
74
For applications where you desire feedback simply pass commands as you normally would (or use `tee`).
75
75
76
76
## Run Nikto Over Multiple Sites and Ports
77
-
Using the above example, let's assume you want independant scans to be run for both ports `80` and `443` for the same targets. You would then use the following:
77
+
Using the above example, let's assume you want independent scans to be run for both ports `80` and `443` for the same targets. You would then use the following:
This would then run nikto, sslscan, and testssl.sh for both port 80 and 443 against example.com and save files into your engagements folder.
102
102
103
103
## CIDR notation with an application that doesn't support it
104
-
Interlace automatically expands CIDR notation when starting threads (unless the --no-cidr flag is passed). This allows you to pass CIDR notation to a variety of applications:
104
+
Interlace automatically expands CIDR notation when starting threads (unless the `--no-cidr` flag is passed). This allows you to pass CIDR notation to a variety of applications:
105
105
106
-
To run a virtual host scan against every target within 192.168.12.0/24 using a direct command you could use:
106
+
To run a virtual host scan against every target within `192.168.12.0/24` using a direct command you could use:
Yet again, VHostScan does not having any inbuilt glob range format support.
119
+
Yet again, VHostScan does not have any inbuilt glob range format support.
120
120
121
121
## Threading Support for an application that doesn't support it
122
-
Run a [virtual host scan](https://github.com/codingo/VHostScan) against each host in a file (target-lst.txt), whilst also limiting scans at any one time to 50 maximum threads.
122
+
Run a [virtual host scan](https://github.com/codingo/VHostScan) against each host in a file (`target-lst.txt`), whilst also limiting scans at any one time to 50 maximum threads.
123
123
124
124
This could be done using a direct command:
125
125
```bash
@@ -130,14 +130,14 @@ Or, alternatively, to run the same command as above, but using a command file, t
This would output a file for each target in the specified output folder. You could also run multiple commands simply by adding them into the command file.
138
138
139
-
# Auhors and Thanks
140
-
Originally written by Michael Skelton ([codingo](https://twitter.com/codingo_)) and Sajeeb Lohani ([sml555](https://twitter.com/sml555_)) with help from Charelle Collett ([@Charcol0x89](https://twitter.com/Charcol0x89)) for threading refactoring and overall appraoch, and Luke Stephens ([hakluke](https://twitter.com/hakluke)) for testing and approach.
139
+
# Authors and Thanks
140
+
Originally written by Michael Skelton ([codingo](https://twitter.com/codingo_)) and Sajeeb Lohani ([sml555](https://twitter.com/sml555_)) with help from Charelle Collett ([@Charcol0x89](https://twitter.com/Charcol0x89)) for threading refactoring and overall approach, and Luke Stephens ([hakluke](https://twitter.com/hakluke)) for testing and approach.
141
141
142
142
# Contributions
143
143
Contributions to this project are very welcome. If you're a newcomer to open source and would like some help in doing so, feel free to reach out to me on twitter ([@codingo_](https://twitter.com/codingo_)) and I'll assist wherever I can.
0 commit comments