• 0x01 前言

    两款基于Python的可绕过安全检测的RAT,简单分析下代码

    Powershell-RAT Python based backdoor that uses Gmail to exfiltrate data as an e-mail attachment

    Python-Rootkit Python Remote Administration Tool (RAT) to gain meterpreter session

    共同点差不多就是:功能单一、相对隐蔽

    Use your social engineer skills to make him open the file这句话逗笑了,精髓啊

  • https://github.com/NullArray/AutoSploit

    简单看了下这个工具的源码,核心的关键代码分为两部分

    • 第一部分:通过shadon获取目标IP
            api = shodan.Shodan(SHODAN_API_KEY)
    
  • os fingerprint

    xprobe2
    NetworkMiner
    Nmap

    xss

    xsshunter The XSS Hunter service

    XSS-Harvest xss keylogger

    java

    jexboss Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

    bluetooth

    BtleJuice Bluetooth Smart (LE) Man-in-the-Middle framework
    bluepot Bluetooth Honeypot

    credentials

    LaZagne Credentials recovery project 一键获取服务器所有明文密码
    NetRipper 截获内存中的各类https明文密码

    phishing

    PoT Phishing on Twitter

    information

    ID-entify Search for information related to a domain

    malware

    malware.one a binary substring searchable malware catalog containing terabytes of malicious code

    deserialization

    modjodaAndroid Java Deserialization Vulnerability Tester

    xxe

    XXEinjector Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.

    fuzz

    Droid-Application-Fuzz-Framework Android application fuzzing framework with fuzzers and crash monitor.


    会把平时遇到的一些有用的工具放在这,遇到就加几个