BLACKBOx Penetration Testing Framework
Clone or download
Latest commit 7a25220 Dec 20, 2018
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
payload initial commit Dec 20, 2018
COPYING initial commit Dec 20, 2018
README.md initial commit Dec 20, 2018
blackbox.py initial commit Dec 20, 2018
install initial commit Dec 20, 2018
requirements.txt initial commit Dec 20, 2018

README.md

BLACKBOx Penetration Testing Framework

Python 2.7 License Twitter

PASSWORD ATTACKs:
  • MD5, SHA1, SHA224, SHA256, SHA384, SHA512, MSSQL2000, MSSQL2005, MYSQL323, MYSQL41, ORACLE11 CRACKER
BRUTEFORCING :
  • Wordpress Bruteforce – Bruteforce wordpress panel
  • FTP Bruteforce – Bruteforcing FTP LOGIN
  • SSH Bruteforce – Bruteforcing SSH LOGIN
  • Admin Page Finder – Find Admin Page
INFORMATION GATHERING :
  • Dnsinfo – dns info via Yougetsignal & viewdns & hackertarget
EXPLOIT :
  • Magento Rce – Magento eCommerce - Remote Code Execution
  • Joomla Rce – 1.5 - 3.4.5 remote code execution
  • Prestashop Exploit – PrestaShop Arbitrary file Upload (9 Modules)
  • PhpmoAdmin Rce – Exploit for phpMoAdmin, CVE-2015-2208
  • ElasticSearch rce – Exploit for ElasticSearch , {CVE-2015-1427}
  • PhpmoAdmin Rce – Exploit for phpMoAdmin, {CVE-2015-2208}
  • ElasticSearch rce – Exploit for ElasticSearch , {CVE-2015-1427}
  • LotusCMS Rce – LotusCMS 3.0 Unauthenticated Remote Code Execution
  • WPNmedia upload vuln – Wordpress N-Media Website Contact Form with File Upload 1.3.4
  • WPSHOP upload vuln – Wordpress WPShop eCommerce Shell Upload (WPVDB-7830)
WEB HACKING :
  • Google Dorker – google dorker (LFI/SQLi/XSS/RCE SCANNER)
  • Bing Dorker – bing dorker (LFI/SQLi/XSS/RCE SCANNER )
  • Scan list – Scan url in list from Vuln (SQLi/RCE/XSS/LFI)
INSTALL :
git clone https://github.com/sepehrdaddev/blackbox.git && cd blackbox \
      && chmod +x install && sudo ./install && cd