Metasploit contribution | Metasploit experiments | NMAP NSE script | Bettercap contribution | Generic codes | Perl modules | Miscellaneous stuff

Metasploit contribution

Name Path
Anonymous FTP Access Detection auxiliary/scanner/ftp/anonymous
AWStats configdir Remote Command Execution exploits/unix/webapp/awstats_configdir_exec
Chargen Probe Utility auxiliary/scanner/chargen/chargen_probe
FrontPage Server Extensions Anonymous Login Scanner auxiliary/scanner/http/frontpage_login
HP LaserJet Printer SNMP Enumeration auxiliary/scanner/snmp/snmp_enum_hp_laserjet
HTTP Open Proxy Detection auxiliary/scanner/http/open_proxy
JBoss Status Servlet Information Gathering auxiliary/scanner/http/jboss_status
NTP Monitor List Scanner auxiliary/scanner/ntp/ntp_monlist
PAJAX Remote Command Execution exploits/unix/webapp/pajax_remote_exec
phpMyAdmin Authenticated Remote Code Execution exploit/multi/http/phpmyadmin_null_termination_exec
Printer Directory Listing Scanner auxiliary/scanner/printer/printer_list_dir
Printer Environment Variables Scanner auxiliary/scanner/printer/printer_env_vars
Printer File Download Scanner auxiliary/scanner/printer/printer_download_file
Printer Ready Message Scanner auxiliary/scanner/printer/printer_ready_message
Printer Volume Listing Scanner auxiliary/scanner/printer/printer_list_volumes
Printer Version Information Scanner auxiliary/scanner/printer/printer_version_info
Simple PHP Blog 0.4.0 Remote Command Execution exploits/unix/webapp/sphpblog_file_upload
SNMP Enumeration Module auxiliary/scanner/snmp/snmp_enum
SNMP Set Module auxiliary/scanner/snmp/snmp_set
TikiWiki Information Disclosure auxiliary/admin/tikiwiki/tikidblib
TikiWiki jhot Remote Command Execution exploits/unix/webapp/tikiwiki_jhot_exec
TikiWiki tiki-graph_formula Remote PHP Code Execution exploits/unix/webapp/tikiwiki_graph_formula_exec
Tomcat Administration Tool Default Access auxiliary/admin/http/tomcat_administration
Tomcat Application Manager Login Utility auxiliary/scanner/http/tomcat_mgr_login
VNC Authentication None Detection auxiliary/scanner/vnc/vnc_none_auth
Webmin File Disclosure auxiliary/admin/webmin/file_disclosure
Wireshark chunked_encoding_dissector function DOS auxiliary/dos/wireshark/chunked
WordPress Symposium Plugin SQL Injection auxiliary/admin/http/wp_symposium_sql_injection

Metasploit experiments

Name Path
Rc file used to check web servers automatically auto_http_light.rc
Rc file used to gath info by Jboss status servlet jboss-scan
Class formats text... text.rb
SMTP Open Relay Server Detection smtp_open_relay1
SMTP Open Relay Server Detection smtp_open_relay2
US female names list names_female_us.txt
US male names list names_male_us.txt
US surname list names_surname_us.txt
[Exploit Pack for Metasploit - Collection of modules gathered across time and internets (by Mubix)]

NMAP NSE script

Name Description
chargen Script to identify open chargen service checking the answer
http-status Script to identify Apache/Tomcat/Jboss Server server-status pages
dns-open-resolver Script to identify open DNS resolvers

Bettercap contribution

Name Description
htmlmail.rb HTML email address parser
htmlphone.rb HTML email address parser
htmltitle.rb HTML title response parser
snmp_protocol.rb SNMP protocol parser
snmp_sniffer.rb SNMP community string parser

Generic codes

Name Description Bash script to parse Apache access log (CLF) and get total requests and bandwidth with Gnuplot charts (requests, bandwidth)
appar Perl script to parse Apache access log (CLF) and migrate it to MySQL
atrax A simple web spider useful during a penetration test
backup.ps1 Powershell script to backup files and directories
bind_stats Simple DNS Bind log parser (top FQDN,src,type,src port,src flag)
check_routing_loop Scapy script useful to identify routing loops through ICMP time exceeded
CVE-2011-3192 Apache Remote Denial of Service
CVE-2014-3704 Drupal Core SQL Injection Vulnerability
CVE-2014-6271 Bash 'Shellshock' Vulnerability
CVE-2015-1635 MS15-034 HTTP.sys IIS DoS
CVE-2016-5734 phpMyAdmin 4.6.2 - Authenticated Remote Code Execution
CVE-2017-5638 Apache Struts Jakarta Multipart Parser OGNL Injection
CVE-2018-7600 Drupal: unsanitized requests allow remote attackers to execute arbitrary code
curl_http_code Bash script to retrieve HTTP codes
curl_http_headers Bash script to retrieve HTTP headers
curl_http_title Bash script to retrieve HTTP title
dns_amply, dns_amply_domain Search DNS server that respond at 'any +dnssec +ignore' requests. Useful to choose a good server and domain to use during a DNS Amplification Attacks.
dns_tail_block DNS Bind log parser and iptables block
dnsbrute Bash script to automate the discovery tasks
extract_ip Perl script to extract IP address from text
firehol Perl script to download and check IP address from FireHOL lists
googlegath Shows the first 100 google results and...
hidester_checker Simple Perl script for fetching some proxies...
host_info Perl script to obtain DNS/ASN/GEO info from a IP/FQDN address list
jboss-status-gath Jboss status servlet clients info gathering
inetsim_smtp_parser Inetsim SMTP log parser
ip_catcher Bash script to extract IP address
ip_create_list Perl script to create IP address list
meta-generator Recon-ng auxiliary module. Checks for 'meta generator' tags. Useful to identify CMS
nmap_parser Nmap parser written in Ruby using Nmap::Parser library
phpinfo PHP shell with IP and User-Agent filter
pkg_search Packages finder for OpenBSD
reboot_fiber ( Python script to reboot TIM HUB fiber router
robotscan Robots.txt audit bash script
router_reboot Wireless Modem Router N300 rebooter
sap-tcodes Bash script to obtain informations about SAP transaction via
sniffme A rude sniffer for jailbroken iPhone written on a gloomy day!
snmpcheck Tool to enumerate information via SNMP protocol
snmpscan SNMP multithread scanner written in Perl
snmpsize A rudimentary snmpwalk-like with scapy. Useful to choose a good OID to use during a SNMP reflected amplification DDos attack
sql_load_file Simple MySQL Injection load_file() fuzzer
SSHGuessable Simple Ruby SSH bruteforcer (guessable user)
ssl_cert_details Perl script to get SSL certificate details
training_dump Bash script to extract results from Runner's world training XML log
twitter_monitor Perl script to monitor your followers on Twitter filtering/excluding for keywords (DBM support)
webss Perl script to scan web site
wext Perl script to help you while testing HTTP related stuff
xor Ruby script to decrypt payload encrypted using XOR (XOR DDoS botnet)

Perl modules

Name Description
Mail-Maps-Lookup Query the MAPS lookup service via DNS
Mail-OpenRelay-Simple Check if a mail server runs as an open relay
WWW-UserAgent-Random Perl extension to generate random User Agent

Miscellaneous stuff

Name Description
cntlm.ini, stunnel_server.conf, stunnel_client.conf Cntlm + Stunnel settings
dionaea_installation, dionaea.cfg Dionaea installation notes - Ubuntu 16.04.3 LTS
honeypot_telnet AppArmor config file
OpenBSD/game boy advanced sp my 2004 April fools' day with Slashdot effect! :) sample iptables rules for host firewall (kernel options,honeypot,limit,log)
references some references to my site or my tools
report_email Cowrie SSH honeypot daily report (HTML format)
SNMP Reflected Amplification DDoS Attack rainy day considerations... :)
User-Agent list User-Agent collected on
virustotal_report Python script to query VirusTotal for reports