SEAT

From aldeid
Jump to: navigation, search
Seat-logo.png

Description

Search Engine Assessment Tool (a.k.a. SEAT) is an application that gathers information from various search engines (Google, Yahoo, MSN, AltaVista, AllTheWeb, AOL, DMOZ) and Vulnerability Databases (GHDB, NIKTO, GSDB, WMAP, URLCHK, NESTEA). Its multi-threading capabilities make it quick. In addition, it embeds an abstraction layer that enables to adapt a unique query language to all supported search engines languages.

Full documentation is available on the official website: http://midnightresearch.com/common/seat/documentation.pdf

Installation

Prerequisites

Install following packages:

$ sudo apt-get install perl libxml-smart-perl

Then install necessary perl modules via cpan:

$ sudo cpan
cpan[1] > install Gtk2
cpan[2] > install threads
cpan[3] > install threads::shared
cpan[4] > install XML::Smart

If you get a compilation error while trying to install Gtk2, you can rather install it via the packages:

$ sudo apt-get install libgtk2-perl

Installation of SEAT

Following commands will install SEAT in /pentest/enumeration/seat/

$ cd /data/src/
$ wget http://midnightresearch.com/common/seat/seat-0.3.tar.bz2
$ mkdir -p /pentest/enumeration/
$ bzip2 -cd seat-0.3.tar.bz2 | tar xf - -C /pentest/enumeration/

Usage

Start SEAT

To start SEAT, open a terminal and issue following command:

$ cd /pentest/enumeration/seat/
$ ./seat
Info.png
Note
Notice that root privileges aren't required to use the application.

If all required dependencies are found, you should get a similar screen:

Seat-001.png

Preparation

This section refers to the first tab: Preparation.

Target selection

Seat-target-selection.png

Select the "Preparation" tab and enter one or more target(s). Targets can be IP addresses (e.g. 192.168.1.*) or domain names (e.g. target.com).

By using the icons, you can:

  • Add a new target
  • Delete the selected target
  • Clear the list
  • Load a list of targets from a file
  • Save the list of targets in a file
  • Check/Uncheck all targets

Queries

Seat-queries-selection.png

To add queries, either:

  • enter queries manually,
  • or load a predefined set of queries by loading a file (use the load icon to select a signature file, located in the databases/ directory of your SEAT installation):
    • cgis.wmap
    • dirs.wmap
    • file.wmap
    • filetype.gs
    • gdork.gs
    • GHDB.xml
    • indexof.gs
    • inurl.gs
    • newdb.xml
    • scan_database.nikto
    • test.xml
    • url.urlchk
    • vuln.nestea

By clicking on a query, a description of the payload is displayed in the description field.

You also have the possibility to check/uncheck some payloads.

Execution

This section refers to the second tab: Execution.

Search engines selection

Seat-searchengines-selection.png

Before launching the scan, select the search engines to imply in the scan. You can load the default list by clicking on the load icon and by selecting the default.xml file, located in the searchengines/ directory of your SEAT installation.

You can select/unselect search engines by using the checkboxes.

You also have the possibility to add search engines. In this case, you will have to provide SEAT with the template to use for language conversions (abstraction layer).

Preferences

Seat-preferences.png

This panel enables you to fine-tune the scan:

  • search depth: defines how many levels of search results SEAT will traverse/digg. 0 will order to give up after the first page.
  • use mined results: during the scan, SEAT will try to mine domains that are related to the original target domain.
    • Never: don't use mined domains
    • Save for later: adds mined domains in the list of targets for a future scan
    • Immediately request: adds mined domains to current scan
  • sleep time between runs: specifies the time between 2 requests.
  • Number of threads: specifies the number of requests to send in parallel.
  • User Agent: Enables to specify a fixed or random user agent (SEAT, Google Bot, MSN Bot, Slurp, Random Bot, Random Browser)
  • Use Proxy Server: eventually scan through a proxy server
Info.png
Note
Notice that preferences can be defined before the scan as well as during the scan. They take effect immediately.
Info.png
Note
To optimize your scan while minimizing the risk of being banned by search engines, respect 2 seconds between the scans and select Random Browser as User-Agent.

Scan

Once you have setup all the parameters of your scan, click on the Execute icon from the center panel. At any time during the scan, notice that you can pause/resume the scan or completely abort it by clicking on the appropriate buttons.

Seat-scan.png

Analysis

Incomplete.png
INCOMPLETE SECTION OR ARTICLE
This section/article is being written and is therefore not complete.
Thank you for your comprehension.

Comments