Exploitation 240502-C

CMS Detection

Exploitation suite is tool for scanning wordpress, joomla, Drupal and more than 100 other CMS.Functions of CMSeek:
1. Basic CMS Detection of over 80 CMS
 2. Drupal version detection 
3. Advance wordpress scans
4. Detects version 
5. User enumeration 
6. Plugins enumeration 
7. Theme enumeration
8. Detects User (3 Detection method)
9. Loop for version vulnerabilities and much more!
10. Advanced Joomla Scans 
11. Version detection
12. Backup file finder
13. Core vulnerability detection
14. Directory listing check
Config leak detection ...and many more

Installation:
$ apt update && apt upgrade
$ apt install git
$ apt install git
$ apt install python2
$ apt install python
$ git clone https://github.com/Tuhinshubhra/CMSeeK
$ cd CMSeeK
$ chmod +x *
$ Run : 
$ python cmseek.py
Here select your option and Use the required option.


Zarp-Local Network Tool

This tool worls only in rooted phones. This is local network exploitation tool.

Installtion: 
$ apt update && apt upgrade
$ apt install git
$ apt install python2
$ git clone https://githum.com/hatRiot/zarp
$ cd zarp
$ chmod +x zarp.py
Run:
$ sudo python2 zarp.py


TM-Venom

Tmvenom is a python based tool specially designed for Termux users.
This payload generates some basic payloads using metasploit-framework.
so You must install metasploit framework on your Termux.
This tool works both rooted and non rooted devices.
This is very helpfull for beginners.
this tool also guide you to generate payloads easily
Requirments:-
Termux APp
metasploit-framework

Installation :
$ apt update
$ apt upgrade
$ apt install git
$ apt install python2
$ git clone https://github.com/TechnicalMujeeb/tmvenom
$ cd tmvenom
$ chmod +x *
$ sh install.sh
usage :
python2 tmvenom.py
Now select payload options and you can easily generates payloads.



MetaSploit Framework 

If you wish to install the metasploit-framework all by itself
You can use a shell script to install it.
remember dont turn off your internet connection
follow these steps :
1. uninstall termux app
2. Newly install Termux app
3. open Termux app
4. run these commands
$ apt update
$ apt upgrade
$ apt install wget
5. clone metasploit with this command
$ wget https://github.com/rapid7/metasploit-framework
$ bash metasploit.sh
This script will install the latest version of metasploit-framework.
script also include some extras to make updating metasploit faster.
If all goes well, i.e. No red colored warnings,
you can start metasploit using ./msfconsole.
Now take a coffe and sit down and wait 15-20 minutes
to install metasploit in termux
after installation type this command :
$ cd metasploit-framework
Now run msfconsole
$ ./msfconsole
Enjoy metasploit....


A-Rat Exploit

A-Rat = Remote access tool
we can generate python based rat
installation :
$ apt update
$ apt upgrade
$ apt install git
$ apt install python2
$ apt install python
$ git clone https://github.com/AhMyth/AhMyth-Android-RAT
$ cd A-Rat
$ chmod +x *
usage :
$ python2 A-Rat.py
$ help
$ set host 127.0.0.1 [your ip]
$ set port 1337
$ set output /$HOME/rat.py
$ generate
It generates rat.py in termux home directory
Open termux new session
type $ ls
here you get that rat.py
go to again A-Rat means privious session of termux
Type run to start exploit.
$ run
and then open new session and run rat like this
$ python rat.py
and come back to A-Rat session
Now its connected to that rat. means Hacked.
press control + c to stop.


Hulk [DOS Tool]
.
HULK DoS tool ported to Go with some additional features.

Installation :
$ apt update && apt upgrade
$ apt install git
$ apt install python2
$ git clone https://github.com/grafov/hulk
$ cd hulk
$ chmod +x *
usage :
$ python2 hulk.py [url]



Golden-Eye

GoldenEye
GoldenEye is an python app for SECURITY TESTING PURPOSES ONLY!
GoldenEye is a HTTP DoS Test Tool.
Attack Vector exploited: HTTP Keep Alive + NoCache

Installation :
$ apt update && apt upgrade
$ apt install git
$ apt install python2
$ git clone https://github.com/jseidl/GoldenEye
$ cd GoldenEye
$ chmod +x *
Run :
$ python2 goldeneye.py [url]


Brutal

Brutal = this is a toolkit to quickly create various payload,
powershell attack, virus attack.and launch listener
for a human interface devices..this is extreamly useful
for executing scripts on a target machin..
For use this tool you must install sudo in your termux
means it need rooted devices..

Installation :
$ apt update && apt upgrade
$ apt install git
$ git clone https://github.com/Screetsec/Brutal
$ cd Brutal
$ chmod +x *
Run :
$ sudo ./Brutal.sh
Now simply select your option which you want..






Comments

Post a Comment

Popular posts from this blog

Image & Video GPT Models

What GPT is good for image generation of personal pics? Sources:  whatplugin.ai  (1)  featuredgpts.com  (2)  semrush.com  (3)  whatplugin.ai  (4) Sure, I can help you with that! Based on my knowledge, there are several GPTs (General Purpose Technologies) that are good for image generation of personal pics. Here are a few: DeepArt : This GPT uses a technique called style transfer to turn your photos into works of art in the style of famous artists. DeepDreamGenerator : This GPT uses Google's DeepDream AI to transform your photos into dream-like images. Runway ML : This GPT is a creative toolkit powered by machine learning that allows you to create images, videos, and 3D content. It's user-friendly and doesn't require any coding knowledge. Daz 3D : This GPT is a bit different - it's a 3D modeling application that allows you to create realistic human figures and environments. You can use it to create personalized 3D portraits or scenes. GANPaint Stud...
Read more

The science of external controls.

The science of external controls THE SCIENCE OF EXTERNAL CONTROLS A - MONITORING (ASSET CONTROL) Every intelligence service since time began has sought methods of owning people and ensuring they stayed loyal. Two of 13 Illuminati families who are known to have developed extremely well-run bloodline intelligence groups are the Li family and the Rothschild family. The Li’s  family started its Chinese intelligence back in 1400 A.D. They had already been an ancient Chinese aristocratic family for many centuries prior to this. Some of their techniques for their agents were state of the art mind control techniques. The Rothschild’s personal spy network and their own mail service was known to be superior to the national european governments during the 19th century. Traditional spycraft has involved the ability to recruit and keep agents loyal. The professional spook manipulates his recruits for a living. He becomes adept at controlling people. For thousands of years, spy operations have h...
Read more