Tools and Scripts used for Pentesting like HackTheBox, tryhackme, and more (only white-hat stuff ofc :p)

Roman Hergenreder a86fff1b36 update fix 3 months ago
win 21b2396076 Update 3 months ago
.gitignore dc4babba88 pingscan 1 year ago
LinEnum.sh eadff755a0 Project Update 1 year ago
README.md 3a0a75e278 Project Update / removed AutoRecon 8 months ago
__init__.py 8adc30d7ae Project re-structuring (python naming conventions) 5 months ago
chisel 21b2396076 Update 3 months ago
chisel64 1f55516c59 Project Update 4 months ago
crack_hash.py 48727a7aa6 windows binaries + Name The Hash 5 months ago
crawl_urls.py 631dade746 only parse html files 5 months ago
deepce.sh 1f55516c59 Project Update 4 months ago
dnsserver.py 21b2396076 Update 3 months ago
fileserver.py 21b2396076 Update 3 months ago
find_git_commit.py f640b45acf chmod +x 4 months ago
first_scan.sh 59a10ddead wfuzz -> ffuf 1 year ago
git-dumper.py 21b2396076 Update 3 months ago
gobuster.sh 78e5fd16d9 Update 10 months ago
jsp-webshell.jsp 6172f68da8 update 1 year ago
linpeas.sh 21b2396076 Update 3 months ago
linux-exploit-suggester.sh 1f55516c59 Project Update 4 months ago
lse.sh 21b2396076 Update 3 months ago
ncat 3ea1cba7ca Added ncat + background shell listener 8 months ago
p0wny-shell.php eadff755a0 Project Update 1 year ago
padBuster.pl 718aaa6f6c Update 8 months ago
php-reverse-shell.php a0476d4c17 Initial Commit 2 years ago
phpinfo-analyzer.py f640b45acf chmod +x 4 months ago
pingscan.py ec70ac9c60 Ping/Portscan update, git-dumper fix, genRevShell trigger shell 1 year ago
portscan.py ec70ac9c60 Ping/Portscan update, git-dumper fix, genRevShell trigger shell 1 year ago
pspy 95f3cad742 Windows Binaries + MSSQL hash type 1 year ago
pspy64 a0476d4c17 Initial Commit 2 years ago
requirements.txt 48727a7aa6 windows binaries + Name The Hash 5 months ago
rev_shell.py 8adc30d7ae Project re-structuring (python naming conventions) 5 months ago
socat efc3b655a8 Update 11 months ago
sql.php 12af2f80b7 some windows binaries, git commit finder 7 months ago
ssh-check-username.py efc3b655a8 Update 11 months ago
subdomainFuzz.sh 8adc30d7ae Project re-structuring (python naming conventions) 5 months ago
template.py f640b45acf chmod +x 4 months ago
test_ciphers.sh 6fb9c6562f fileserver xss, git dumper submodules, ciphers test, exif bugfix 1 year ago
unix-privesc-check.sh eadff755a0 Project Update 1 year ago
update.sh a86fff1b36 update fix 3 months ago
upload_file.py 712b851f36 xss + utils 2 years ago
uptux.py a0476d4c17 Initial Commit 2 years ago
util.py 1f55516c59 Project Update 4 months ago
web_service_finder.py 73c9f72561 python include fix, web service finder: osticket 1 year ago
xp_cmdshell.py 12af2f80b7 some windows binaries, git commit finder 7 months ago
xss_handler.py 494a1e0f4b xss_handler + fileserver update 1 year ago

README.md

HackingScripts

This repository contains self-made and common scripts for information gathering, enumeration and more.

Enumeration: Initial Scans

  • first_scan.sh: Performs initial nmap scan
  • gobuster.sh: Performs gobuster dir scan with raft-large-words-lowercase.txt
  • ssh-check-username.py: Check if user enumeration works for ssh
  • git-dumper.py
  • subdomainFuzz.sh: Fuzzes subdomains for a given domain

Enumeration: Privilege Escalation & Pivoting

  • LinEnum.sh
  • linpeas.sh
  • lse.sh
  • unix-privesc-check.sh
  • uptux.py
  • pspy64
  • portscan.py: small python script, which scans open TCP ports natively with multithread support. Can be deployed on victim machines to scan the intranet.
  • pingscan.py: small python script, which can detect internal hosts via ping probes natively. Can be deployed on victim machines to scan the intranet.
  • deepce.sh: Docker Privilege Escalation (e.g. exposed socket)

Reverse Shell: Payloads

Miscellaneous

  • upload_file.py: Starts a local tcp server, for netcat usage
  • xss_handler.py: Starts a local http server and generates xss payload to steal cookies
  • padBuster.pl
  • sql.php: Execute sql queries passed via GET/POST
  • util.py: Collection of some small functions
  • fileserver.py: Create a temporary http server serving in-memory files
  • dnsserver.py: Create a temporary dns server responding dynamically to basic DNS requests (in-memory)

Windows