Tools and Scripts used for Pentesting and CTFs like HackTheBox, tryhackme, and more
Go to file
2020-08-28 23:04:41 +02:00
autorecon_config GitHack 2 -> 3, crack hash, requirements 2020-06-03 19:21:25 +02:00
win pingscan 2020-08-28 23:04:41 +02:00
__init__.py Pwn utils 2020-07-12 20:36:14 +02:00
.gitignore pingscan 2020-08-28 23:04:41 +02:00
aspx-reverse-shell.aspx aspx-reverse-shell.aspx 2020-08-16 14:32:45 +02:00
autorecon.py GitHack 2 -> 3, crack hash, requirements 2020-06-03 19:21:25 +02:00
crack_hash.py SHA256 2020-06-13 13:19:18 +02:00
first_scan.sh wfuzz -> ffuf 2020-08-09 16:49:02 +02:00
genRevShell.py pingscan 2020-08-28 23:04:41 +02:00
git-dumper.py git-dumper fix 2020-06-16 21:42:43 +02:00
gobuster.sh Initial Commit 2020-01-28 22:15:42 +01:00
LinEnum.sh Initial Commit 2020-01-28 22:15:42 +01:00
linpeas.sh Initial Commit 2020-01-28 22:15:42 +01:00
lse.sh Initial Commit 2020-01-28 22:15:42 +01:00
p0wny-shell.php Initial Commit 2020-01-28 22:15:42 +01:00
padBuster.pl Powercat + Padbuster 2020-04-09 10:36:42 +02:00
php-reverse-shell.php Initial Commit 2020-01-28 22:15:42 +01:00
pingscan.py pingscan 2020-08-28 23:04:41 +02:00
portscan.py AutoRecon 2020-02-23 12:20:57 +01:00
pspy64 Initial Commit 2020-01-28 22:15:42 +01:00
README.md win binaries + git-dumper + crack_hash 2020-06-08 14:28:22 +02:00
requirements.txt GitHack 2 -> 3, crack hash, requirements 2020-06-03 19:21:25 +02:00
ssh-check-username.py Initial Commit 2020-01-28 22:15:42 +01:00
subdomainFuzz.sh wfuzz -> ffuf 2020-08-09 16:49:02 +02:00
unix-privesc-check.sh Initial Commit 2020-01-28 22:15:42 +01:00
upload_file.py xss + utils 2020-06-02 14:15:03 +02:00
uptux.py Initial Commit 2020-01-28 22:15:42 +01:00
util.py setRegisters 2020-08-06 18:38:40 +02:00
xss_handler.py xss handler improvement 2020-06-02 15:25:10 +02:00

HackingScripts

This repository contains self-made and common scripts for information gathering, enumeration and more.

Enumeration: Initial Scans

  • first_scan.sh: Performs initial nmap scan
  • gobuster.sh: Performs gobuster dir scan with raft-large-words-lowercase.txt
  • ssh-check-username.py: Check if user enumeration works for ssh
  • git-dumper.py
  • autorecon.py
  • subdomainFuzz.sh: Fuzzes subdomains for a given domain

Enumeration: Privilege Escalation

Reverse Shell: Payloads

Miscellaneous

  • upload_file.py: Starts a local tcp server, for netcat usage
  • xss_handler.py: Starts a local http server and generates xss payload to steal cookies
  • padBuster.pl