Metadata-Version: 2.4
Name: inspector-cli
Version: 1.0.0
Summary: A modular cybersecurity CLI tool for scanning, recon, and malware analysis.
Home-page: https://github.com/bmp-43/INSPECTOR-CLI.git
Author: Aegis Martin
Classifier: Programming Language :: Python :: 3
Classifier: Operating System :: OS Independent
Classifier: License :: OSI Approved :: GNU General Public License v3 (GPLv3)
Requires-Python: >=3.7
Description-Content-Type: text/markdown
License-File: LICENSE
Requires-Dist: requests
Requires-Dist: colorama
Requires-Dist: pyfiglet
Requires-Dist: dnspython
Requires-Dist: python-whois
Requires-Dist: ipwhois
Requires-Dist: aiohttp
Dynamic: author
Dynamic: classifier
Dynamic: description
Dynamic: description-content-type
Dynamic: home-page
Dynamic: license-file
Dynamic: requires-dist
Dynamic: requires-python
Dynamic: summary

# Inspector

Inspector is a beginner-friendly cybersecurity toolkit designed to make common security assessment tasks simple, educational, and accessible. Its modular design helps newcomers understand the basics of cybersecurity, networking, and reconnaissance before moving on to more advanced tools. Inspector emphasizes clarity, ease of use, and practical learning, making it an ideal starting point for anyone new to the field.

## Version

**Current version:** 1.0.0

## Features

* 🔍 Multi-threaded port scanning for speed <sub>*(since 0.1.0 BETA)*</sub>
* 🌐 Fast subdomain enumeration <sub>*(since 0.2.0 ALPHA)*</sub>
* 🏷️ Banner grabbing for open ports (now grabs banners from all frequently used ports) <sub>*(basic since 0.2.1 BETA, upgraded in 0.2.3 BETA)*</sub>
* 📂 Path enumerator (directory brute-forcer) <sub>*(since 0.2.2)*</sub>
* 🧠 Validates hostnames and IP addresses <sub>*(since 0.1.1 BETA)*</sub>
* ⚙️ Reads config from `config.txt` (port range, timeout, threads) <sub>*(since 0.1.0 BETA)*</sub>
* 🛠️ Modular design for future tools <sub>*(since 0.2.0 ALPHA)*</sub>
* 📝 Displays open ports with descriptions and common vulnerabilities <sub>*(since 0.1.1 BETA)*</sub>
* 🦠 **Malware Analyser** (uses VirusTotal for scanning hashes, URLs, and files) <sub>*(hash identifier since 0.3.1 BETA, renamed and upgraded in 0.3.2 BETA)*</sub>
* 🗂️ **Domain DNS/WHOIS Lookup** <sub>*(added in 0.4.0, improved with DNS resolver in 0.4.1 BETA)*</sub>
* 🌍 **IP WHOIS Lookup** <sub>*(added in 0.4.2 BETA)*</sub>
* 🔄 **Reverse DNS Lookup** <sub>*(added in 0.4.2 BETA)*</sub>
* 🧩 Unified **Recon & OSINT** menu for all reconnaissance tools <sub>*(since 0.4.3 BETA)*</sub>
* 🎨 Consistent color-coded exception and info messages <sub>*(since 0.4.3 BETA)*</sub>
* 📝 **Scan Logging** <sub>*(since 0.5.0 BETA — Inspector now logs all scans performed by the user. Logging is enabled by default and can be easily disabled in `config.txt`.)*</sub>
* 🔗 **Tool Chaining for Full Recon Scan** <sub>*(added in 0.5.1 BETA — allows running Port Scanner + OSINT tools in one go.)*</sub>

## Current Toolset

* **Port Scanner**

  * Fast and customizable scanning with thread and timeout control
  * Takes an IP or domain as input
  * Prints out open ports, a brief description for each, and common vulnerabilities associated with those ports
  * Includes banner grabbing for all frequently used ports
* **Recon & OSINT**

  * **Subdomain Enumerator**: Quickly finds subdomains for a given domain
  * **Path Enumerator (Directory Brute-Forcer)**: Enumerates directories/paths on web servers to find hidden or sensitive locations
  * **DNS/WHOIS Lookup**: Retrieves DNS and WHOIS information for domains (with DNS resolver integration)
  * **IP WHOIS Lookup**: Retrieves WHOIS information for resolved IP addresses
  * **Reverse DNS Lookup**: Resolves hostnames for IP addresses found
* **Malware Analyser**

  * Uses the VirusTotal API to scan hash values, URLs, and files for malware analysis

## How to Use

1. Install the package using pip (You have pip installed right?):

   ```bash
      pip install inspector-cli
   ```

2. After first run config file will be created at `~/.config/inspector-cli/config.txt`with values like:

   ```
   logging_enabled=True
   timeout=0.7
   max_threads=100
   start_port=1
   end_port=100
   ```

3. If you will use the Malware Analyser, set up your VirusTotal API key (If you dont have one register VirusTotal acc) in the tool's config.

4. Run the toolkit:

   ```bash
   inspector
   ```

   * Select the tool you want to use (Port Scanner, Recon & OSINT, Full Recon Scan, or Malware Analyser).

   * Follow the prompts for each tool.

   * For the Port Scanner, enter the IP address or domain to scan.

   * For the Malware Analyser, input the hash string, URL, or file you want to scan.

   * For Recon & OSINT, choose from Subdomain Enumerator, Directory Brute-Forcer, or DNS Profiler (which includes DNS/WHOIS, IP WHOIS, and Reverse DNS lookups).

   * For Full Recon Scan, enter a domain and let Inspector automatically perform scanning and recon in one chain.

   > **Note:** All exception and status messages now use consistent prefixes and color coding for clarity.
   > **Scan logs are saved by default.** You can disable this in `config.txt`.
   > **Tool chaining and logging behavior were improved in 0.5.1 BETA.** See the `CHANGELOG.md` for more info.

## Folder Structure

The project folder structure was reorganized in 0.2.0 ALPHA for better modularity. Each core tool now resides in its own directory, making it easier to expand and maintain the toolkit.

## Planned

* Plugin support (custom tools via `plugins/` folder)
* General UX improvements
* CLI flags for silent/full recon modes
* New tools and upgrade old ones

## License

This project is licensed under the GNU General Public License v3.0.
You’re free to use, study, share, and modify the code.
You must also share your changes under the same license.
No one can legally steal or privatize your code.
Commercial use is allowed only if they also keep it open-source and name of the original developer.

Read more: [https://www.gnu.org/licenses/gpl](https://www.gnu.org/licenses/gpl)
