Black Box vBulletin Vulnerability Scanner Tool - OWASP VBScan 0.1.6

OWASP VBScan (short for [VB]ulletin Vulnerability [Scan]ner) is an opensource project in perl programming language to detect VBulletin CMS vulnerabilities and analyses them .

Why OWASP VBScan ?

If you want to do a penetration test on a vBulletin Forum, OWASP VBScan is Your best shot ever! This Project is being faster than ever and updated with the latest VBulletin vulnerabilities.

• Project Leader : Mohammad Reza Espargham
• Github : https://github.com/rezasp/vbscan/
• SourceForge : https://sourceforge.net/projects/vbscan/
• OWASP Page : https://www.owasp.org/index.php/OWASP_VBScan_Project

Usage :

perl vbscan.pl <target>
perl vbscan.pl http://target.com/vbulletin
perl vbscan.pl --help

Download OWASP VBScan

Read More

Penetration Testing Distribution - BlackArch Linux v2017.06.14

BlackArch Linux is an Arch Linux-based distribution for penetration testers and security researchers. The repository contains 1410 tools. You can install tools individually or in groups. BlackArch Linux is compatible with existing Arch installs.

ChangeLog:

• added new (improved) BlackArch Linux installer
• include linux kernel 4.5.1
• added new blackarch linux installer
• fixed an EFI boot issue
• fixed the well-known i686 boot issue
• added more than 80 new tools
• updated all blackarch tools
• updated all system packages
• updated menu entries for window managers (awesome, fluxbox, openbox)

Installing on top of ArchLinux

BlackArch Linux is compatible with existing/normal Arch installations. It acts as an unofficial user repository. Below you will find instructions on how to install BlackArch in this manner.

# Run https://blackarch.org/strap.sh as root and follow the instructions.
$ curl -O https://blackarch.org/strap.sh
  
# The SHA1 sum should match: 86eb4efb68918dbfdd1e22862a48fda20a8145ff
$ sha1sum strap.sh
  
# Set execute bit
$ chmod +x strap.sh
  
# Run strap.sh
$ sudo ./strap.sh

You may now install tools from the blackarch repository.

# To list all of the available tools, run
$ sudo pacman -Sgg | grep blackarch | cut -d' ' -f2 | sort -u
 
# To install all of the tools, run
$ sudo pacman -S blackarch
  
# To install a category of tools, run
$ sudo pacman -S blackarch-<category>

# To see the blackarch categories, run
$ sudo pacman -Sg | grep blackarch

As part of an alternative method of installation, you can build the blackarch packages from source. You can find the PKGBUILDs on github. To build the entire repo, you can use the blackman tool.
# First, you must install blackman.

If the BlackArch package repository is setup on your machine,

# you can install blackman like:
$ sudo pacman -S blackman

# Download, compile and install package:
$ sudo blackman -i <package>
 
# Download, compile and install whole category
$ sudo blackman -g <group>
  
# Download, compile and install all BlackArch tools
$ sudo blackman -a
  
# To list blackarch categories
$ blackman -l
  
# To list category tools
$ blackman -p <category>                                 

Installing from ISO

You can install BlackArch Linux (packages AND environment) using the Live or Netinstall medium.

# Install blackarch-install-scripts package
$ sudo pacman -S blackarch-install-scripts
  
# Now, you can run and follow the instructions
$ sudo blackarch-install 

Download Black Arch Linux V2017.06.14

Read More

Password cracking rules for Hashcat based on statistics and industry patterns - Hob0Rules

Password cracking rules for Hashcat based on statistics and industry patterns. The following blog posts on passwords explain the statistical signifigance of these rulesets:

• Statistics Will Crack Your Password
• Praetorian Password Cracking Rules Released

Useful wordlists to utilize with these rules have been included in the wordlists directory
Uncompress these with the unfollowing command

gunzip rockyou.txt.gz

hob064

This ruleset contains 64 of the most frequent password patterns used to crack passwords. Need a hash cracked quickly to move on to more testing? Use this list.

hashcat -a 0 -m 1000 <NTLMHASHES> wordlists/rockyou.txt -r hob064.rule -o cracked.txt

d3adhob0

This ruleset is much more extensive and utilizes many common password structure ideas seen across every industry. Looking to spend several hours to crack many more hashes? Use this list.

hashcat -a 0 -m 1000 <NTLMHASHES> wordlists/english.txt -r d3adhob0.rule -o cracked.txt

Download Hob0Rules

Read More

HTTP Server for Phishing - Weeman v1.7

HTTP server for phishing in python. (and framework) Usually you will want to run Weeman with DNS spoof attack. (see dsniff, ettercap).

Press

• 1.7 - is out 25-03-2016
• Added profiles
• Weeman framework 0.1 is out !!!
• Added command line options.
• Beautifulsoup dependency removed.

Weeman will do the following steps:

1. Create fake html page.
2. Wait for clients
3. Grab the data (POST).
4. Try to login the client to the original page

The framework

You can use weeman with modules see examples in modules/ , just run the command framework to access the framework.

Write a module for the framework

If you want to write a module please read the modules/. Soon I will write docs for the API.


Profiles

You can load profiles in weeman, for example profile for mobile site and profile for desktop site.
./weeman.py -p mobile.localhost.profile

Requirements

• Python <= 2.7.

Platforms

• Linux (any)
• Mac (Tested)
• Windows (Not supported)

Contributing

Contributions are very welcome!

1. fork the repository
2. clone the repo (git clone git@github.com :USERNAME/weeman.git)
3. make your changes
4. Add yourself in contributors.txt
5. push the repository
6. make a pull request

Thank you - and happy contributing!

Download Weeman

Read More