Tools and Scripts used for Pentesting and CTFs like HackTheBox, tryhackme, and more
autorecon_config | ||
win | ||
.gitignore | ||
autorecon.py | ||
crack_hash.py | ||
first_scan.sh | ||
genRevShell.py | ||
git-dumper.py | ||
gobuster.sh | ||
LinEnum.sh | ||
linpeas.sh | ||
lse.sh | ||
p0wny-shell.php | ||
padBuster.pl | ||
php-reverse-shell.php | ||
portscan.py | ||
pspy64 | ||
README.md | ||
requirements.txt | ||
ssh-check-username.py | ||
subdomainFuzz.sh | ||
unix-privesc-check.sh | ||
upload_file.py | ||
uptux.py | ||
util.py | ||
xss_handler.py |
HackingScripts
This repository contains self-made and common scripts for information gathering, enumeration and more.
Enumeration: Initial Scans
- first_scan.sh: Performs initial nmap scan
- gobuster.sh: Performs gobuster dir scan with raft-large-words-lowercase.txt
- ssh-check-username.py: Check if user enumeration works for ssh
- git-dumper.py
- autorecon.py
- subdomainFuzz.sh: Fuzzes subdomains for a given domain
Enumeration: Privilege Escalation
- LinEnum.sh
- linpeas.sh
- lse.sh
- unix-privesc-check.sh
- uptux.py
- pspy64
Reverse Shell: Payloads
- genRevShell.py: Generates a reverse shell command (e.g. netcat, python, ...)
- php-reverse-shell.php
- p0wny-shell.php
- powercat.ps1
Miscellaneous
- upload_file.py: Starts a local tcp server, for netcat usage
- xss_handler.py: Starts a local http server and generates xss payload to steal cookies
- padBuster.pl