Axiom is a dynamic infrastructure framework to efficiently work with multi-cloud environments, build and deploy repeatable infrastructure focussed on offensive and defensive security.
Axiom works by pre-installing your tools of choice onto a 'base image', and then using that image to deploy fresh instances. From there, you can connect and instantly gain access to many tools useful for both bug hunters and pentesters. With the power of immutable infrastructure, most of which is done for you, you can just spin up 15 boxes, perform a distributed nmap/ffuf/screenshotting scan, and then shut them down.
Because you can create many disposable instances very easily, axiom allows you to distribute scans of many different tools (full list here). Once installed and setup, you can distribute a scan of a large set of targets across 100-150 instances within minutes and get results extremely quickly. This is called axiom-scan.
Axiom supports several cloud providers, eventually, axiom should be completely cloud agnostic allowing unified control of a wide variety of different cloud environments with ease. Currently, DigitalOcean, IBM Cloud, Linode, Azure and AWS are officially supported providers. GCP isnt supported but is partially implemented and on the roadmap. If you would like prioritization of a feature or provider implementation, please contact me @pry0cc on Twitter and we can discuss :)
Resources
- Introduction
- Troubleshooting & FAQ
- Quickstart
- Demo
- Story
- Installation Instructions
- Scan Modules
- Installed Packages
- Contributors
Credits
The original and best supported provider for Axiom is Digital Ocean! If you're signing up for a new Digital Ocean account, please use my link for $100 free credit!
The best supported business provider for Axiom is IBM Cloud! If you're signing up for a new IBM Cloud account, please use this link for $200 free credit!
Installation
Docker
This will create a docker container, initiate axiom-configure
and axiom-build
and then drop you out of the docker container. Once the Packer image is successfully created, you will likely need to re-exec into your docker container via docker exec -it $container_id zsh
.
docker exec -it $(docker run -d -it --platform linux/amd64 ubuntu:20.04) sh -c "apt update && apt install git -y && git clone https://github.com/pry0cc/axiom ~/.axiom/ && cd && .axiom/interact/axiom-configure"
Easy Install
You should use an OS that supports our easy install.
For Linux systems you will also need to install the newest versions of all packages beforehand sudo apt dist-upgrade
.
bash <(curl -s https://raw.githubusercontent.com/pry0cc/axiom/master/interact/axiom-configure)
If you have any problems with this installer, or if using an unsupported OS please refer to Installation.
Demo
In this demo (sped up out of respect for your time ;) ), we show how easy it is to initialize and ssh into a new instance.
Sponsored By SecurityTrails! We are lucky enough to be sponsored by the awesome SecurityTrails! Sign up for your free account here!
Support
If you like Axiom and it saves you time, money or just brings you happy feelings, please show your support through sponsorship! Click the little sponsor button in the header and sponsor for as little as $1 per month :)
Or buy me a coffee to keep me powered :)
Operating Systems Supported
OS | Supported | Easy Install | Tested |
---|---|---|---|
Ubuntu | Yes | Yes | Ubuntu 20.04 |
Kali | Yes | Yes | Kali 2021.3 |
Debian | Yes | Yes | Debian 10 |
Windows | Yes | Yes | WSL w/ Ubuntu |
MacOS | Yes | Yes | MacOS 11.6 |
Arch Linux | Yes | No | Yes |
Contributors
We've had some really fantastic additions to axiom, great feedback through issues, and perseverence through our heavy beta phase!
A list of all contributors can be found here, thank you all!
Art
The original logo was made by our amazing s0md3v! Thank you for making axiom look sleek as hell! Really beats my homegrown logo :)
The awesome referral banners were inspired by fleex and were made by the one and only xm1k3!
Tools to Date
for default provisioner
- aiodnsbrute
- Amass
- anew
- anti-burl
- aquatone
- Arjun
- assetfinder
- axiom
- axiom-dockerfiles
- cent
- cero
- chaos-client
- commix
- concurl
- Corsy
- CrackMapExec
- crlfuzz
- dalfox
- dirdar
- DNSCewl
- dnsgen
- dnsrecon
- dns resolvers by trickest
- dnsvalidator
- dnsx
- Docker
- ERLPopper
- exclude-cdn
- feroxbuster
- fff
- ffuf
- findomain
- gau
- gauplus
- getJS
- gf
- Gf-Patterns
- github-endpoints
- github-subdomains
- Go
- gobuster
- google-chrome
- gorgo
- gospider
- gowitness
- gron
- Gxss
- hakrawler
- hakrevdns
- httprobe
- httpx
- interactsh-client
- Interlace
- ipcdn
- jaeles
- kiterunner
- kxss
- leaky-paths
- LinkFinder
- masscan
- massdns
- medusa
- meg
- naabu
- nmap
- nuclei
- OpenRedireX
- ParamSpider
- phantomjs
- proxychains-ng
- puredns
- qsreplace
- responder.py
- RustScan
- s3scanner
- scrying
- SecLists
- shuffledns
- six2dez dns permutations
- sqlmap
- subfinder
- subjack
- subjs
- testssl
- thc-hydra
- tlsx
- trufflehog
- ufw
- unimap
- wafw00f
- waybackurls
- webscreenshot
- wpscan
Packages Installed via apt-get
for default provisioner
- bison
- build-essential
- fail2ban
- firebird-dev
- flex
- git
- grc
- jq
- libgcrypt11-dev_1.5.4-3+really1.8.1-4ubuntu1.2_amd64.deb
- libgcrypt20-dev
- libgpg-error-dev
- libgtk2.0-dev
- libidn11-dev
- libmemcached-dev
- libmysqlclient-dev
- libpcap-dev
- libpcre3-dev
- libpq-dev
- libssh-dev
- libssl-dev
- libsvn-dev
- net-tools
- ohmyzsh
- p7zip
- python3-pip
- ruby-dev
- rubygems
- ufw
- unzip
- zsh
- zsh-autosuggestions
- zsh-syntax-highlighting
Do you want to add a package to axiom? Read the wiki!