Showing posts with label Linux. Show all posts
Showing posts with label Linux. Show all posts

Darksplitz - Exploit Framework

darksplitz-exploit-framework

This tools is sustained from Nefix, DirsPy and Xmasspy project.

Installation

darksplitz-exploit-framework

Will work fine within the debian shade software system, like Backbox, Ubuntu or Kali.
  1. $ git clone https://github.com/koboi137/darksplitz
  2. $ cd darksplitz/
  3. $ sudo ./install.sh

Features

    • Extract mikrotik inform, user, password, credential (user.dat)
    • Password generator
    • Reverse IP lookup
    • Mac address sniffer
    • Online md5 cracker
    • Mac address lookup
    • Collecting url from web.archive.org
    • (Dark Shell) Web backdoor
    • (CVE-2018-14847) WinboxExploit
    • (Mikrotik) ChimeyRed exploit for mipsbe
    • Exploit web application
    • (CVE-2018-4407) Mass apple dos
    • (CVE-2018-10933) Libssh exploit
    • Discover Mikrotik device
    • Scan a directory
    • Subdomain scanner
    • Scanner Mac address
    • Ping of Mac address
    • Scan vhost (cloudflare bypass)
    • Bruteforce mass for wordpress
    • Interactive msfrpc client

    Exploit web application

    • File upload for plupload
    • (CVE-2018-9206) file upload for jQuery
    • Laravel (.env)
    • (misc) sftp-config.json
    • Enable wordpress register
    • File upload for elfinder
    • (CVE-2018-7600) Exploit Drupal 7
    • (CVE-2018-7600) Exploit Drupal 8
    • Exploit com_fabrik for Joomla
    • Wordpress plugin file upload: gravityform
    • Wordpress plugin file upload: geoplace3
    • Wordpress plugin file upload: peugeot-music

    Notes

    This tool can work fine beneath root, as a result of scapy module and different would like root user to access a lot of options. however you'll run as user too in some options.