Giter VIP home page Giter VIP logo

pt-tools's Introduction

PT-tools

Various tools for Penetration Testing

Combinator

Useful for generating passwords for a dictionary attack based on a target's name (for example).

Usage examples:

  • Basic usage:
echo "john
fitzgerald
kennedy" > names
python ./combinator.py -i names
  • Using minimum and maximum for more lengths:
python ./combinator.py -i names -min 1 -max 3
  • Returning only concatenation results without underscores (-c) and only lowercase (-l):
python ./combinator.py -i names -l -c

FindComments

Finds comments inside web pages. These can sometimes contain useful information.

Usage examples:

  • Recursively scanning a directory containing a website:
python ./find_comments.py "/local/path/to/website/dir"
  • Scanning a single file:
python ./find_comments.py "/local/path/to/some/index.html"
  • No errors and no titles etc. in output:
python ./find_comments.py -e -s "/local/path/to/page_or_dir"

SimpleDllInjector

Injects a DLL of our choice to a process of our choice, calling its DllMain function in the victim process.

Usage:

SDI.exe <Target PID> <DLL Path>

Subdomainer

Finds subdomains of a given website. Works well with https://github.com/averagesecurityguy/axfr/blob/master/subdomains_nc.txt (entire runtime is likely to take a while, but it will find most results quickly, and the script allows for stopping and picking up from a previous spot)

Usage examples:

  • Using the one-click, no-questions-asked script:
./simple_run.sh example.com
  • Basic usage:
echo "www
mail" > subdomain_options
python ./subdomainer.py -i subdomain_options -d example.com
  • Using subdomains_nc and output to file:
python ./subdomainer.py -i subdomains_nc.txt -d example.com -o subdomains
  • Scan only first 10,000 subdomain options in the list:
python ./subdomainer.py -i subdomains_nc.txt -d example.com -n 10000 -o subdomains
  • Continue from line 10,001:
python ./subdomainer.py -i subdomains_nc.txt -d example.com -s 10001

SubdomainDataExtractor

Collects data about a given list of subdomains. Useful to run on the output of Subdomainer.

Usage examples:

echo "www
mail" > subdomains
./extractor.sh subdomains example.com
  • Using the one-click, no-questions-asked script, including running Subdomainer:
./simple_run.sh example.com

PHPObfuscator

Very simple obfuscator for php. I mainly wrote it for the sport, but it's not nearly as good as some of the other ones out there, like fopo.com.ar

Usage:

python obfuscate.py my.php

pt-tools's People

Contributors

eranzim avatar romainr88 avatar

Stargazers

avatar avatar

Watchers

avatar avatar

Forkers

romainr88 python-popular-repos

pt-tools's Issues

Make subdomainer.py faster

Possibly need to create a C version, or maybe we can take some of the implementation of socket.gethostbyname instead of calling it (e.g. we don't need to get the IP from the reply, just know that there is one).

Find GeoLocations of servers

Generate a file containing a (unique) IP:Location list, for all IPs found (country is enough, based on IP ranges).

Find JS comments with find_comments.py

find_comments.py finds html comments with beautifulsoup, it should be extended to look for other comments, such as JS (and possibly others such as CSS) comments.

Call EP in SimpleDllInjector

Currently, DllMain is called (with DLL_PROCESS_ATTACH), but that's it, and DllMain is limited in the logic it can do. SDI should be able to run an EP of choice after the DLL loads.

Download pages from robots.txt in SubdomainDataExtractor

Since robots.txt often includes interesting pages, we should make sure the extractor script gets them recursively (they could just be downloaded with another wget -r, and that would assure they'd be there if they exist). At this point, it might be worth moving the whole "get entire website" logic to a separate script file, or at least another function.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.