description
black-widow is one of the most useful, powerful and complete offensive penetration testing tool

black-widow

Offensive penetration testing tool (Open Source)

black-widow provides easy ways to execute many kinds of information gatherings and attacks.

• Fully Open Source
• Written in Python
• Continuously updated and extended

Features

• Localhost Web GUI
• Sniffing
• Website crawling
• Web page parsing
• SQL injection
• Injected database management
• Brute force attacks
• Cluster between other black-widows
• Multiple asynchronous requests
• Multiple targets management
• Useful CTF features

  APT installation (ubutu/debian)

sudo add-apt-repository ppa:offensive-hub/black-widow
sudo apt-get update
sudo apt-get install black-widow

  APT installation (other distro)

1. Put the following text on /etc/apt/sources.list.d/black-widow.list file:

   deb http://ppa.launchpad.net/offensive-hub/black-widow/ubuntu focal main 
   deb-src http://ppa.launchpad.net/offensive-hub/black-widow/ubuntu focal main 
   

2. Execute the following commands:

   sudo sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 5D26C76613E84EA9
   sudo apt-get update
   sudo apt-get install black-widow
   

  PyPI installation

sudo pip3 install black-widow

  Docker installation

1. If you haven't Docker, install it
2. Run docker:
   • Command line: docker run --rm offensive/black-widow [arguments]
   • GUI: docker run -d -p 8095:80 --rm offensive/black-widow -g
     • Than visit: http://localhost:8095

Manual installation

1. sudo apt-get update && sudo apt-get install tidy clang tshark
2. git clone git@github.com:offensive-hub/black-widow.git
3. cd black-widow
4. sudo pip3 install -U -r requirements.txt
5. ./black-widow.py --django migrate
6. sudo ./black-widow.py <arguments>

Run

• GUI: sudo ./black-widow.py -g
• Command line: sudo ./black-widow.py <arguments>

Debug

• Run django (examples):
  • ./black-widow.py --django runserver
  • ./black-widow.py --django help
  • ./black-widow.py --django "help createsuperuser"

Project layout

[root]
  |
  |-- app/              # Main application package
  |    |
  |    |-- arguments/       # User input arguments parser (100%)
  |    |
  |    |-- attack/          # Attack modality package (0%)
  |    |-- defense/         # Defense modality package (0%)
  |    |
  |    |-- gui/             # Graphical User Interface package (100%)
  |    |
  |    |-- helpers/         # Helper methods package (100%)
  |    |
  |    |-- managers/        # Managers package
  |    |    |
  |    |    |-- cluster/        # Cluster managers package (0%)
  |    |    |-- crypto/         # Encryption managers package (70%)
  |    |    |-- injection/      # Injection managers package (60%)
  |    |    |-- parser/         # Parser managers package (100%)
  |    |    |-- request/        # Request managers package (70%)
  |    |    |-- sniffer/        # Sniffer managers package (95%)
  |    |
  |    |-- services/        # Services package
  |    |    |
  |    |    |-- logger.py       # Logger service (100%)
  |    |    |-- multitask.py    # MultiTask service (100%)
  |    |    |-- serializer.py   # PickleSerializer and JsonSerializer serivces (100%)
  |    |
  |    |-- storage/         # Storage directory
  |    |
  |    |-- env.py           # Environment variables management
  |
  |-- .env              # Environment variables
  |
  |-- black-widow.py    # Main executable

Links

• Homepage: https://black-widow.io
• PyPI: https://pypi.org/project/black-widow
• GitHub: https://github.com/offensive-hub/black-widow
• Docker Registry: https://hub.docker.com/r/offensive/black-widow
• Free Software Directory: https://directory.fsf.org/wiki/Black-widow

Contacts

• offensive-hub@protonmail.com

Authors

• Fabrizio Fubelli

Thanks to

• PyShark
• Sqlmap
• Material Dashboard

Follow Us

       

SPONSORS

1st level Sponsors

 

2nd level Sponsors

 

3th level Sponsors