Manas Bellani manasmbellani

## recon_info_crtsh.py
#!/usr/bin/python3

import subprocess
import shlex
import requests
from bs4 import BeautifulSoup
from sys import exit
from argparse import ArgumentParser, RawTextHelpFormatter

### URL to crt.sh to get all the domains

## recon_info_netcraft.py
#!/usr/bin/python3

import subprocess
import shlex
import requests
from bs4 import BeautifulSoup
from sys import exit
from argparse import ArgumentParser, RawTextHelpFormatter


## modified-sudo-backdoor.sh
#!/bin/bash
# Script created for testing and learning purposes only. The author does not take any responsibility for the actions taken
# when using this script.
# Note that it is generally not a good idea to be storing plain text credentials to disk where other users will be able to
# access them.


# Drop this file on disk in the leading directory on $PATH and make it executable
# Then update the CREDS_FILE to the location that the creds must be written

## zzz_exploit_2.py
#!/usr/bin/python
from impacket import smb, smbconnection
from mysmb import MYSMB
from struct import pack, unpack, unpack_from
import sys
import socket
import time

'''
MS17-010 exploit for Windows 2000 and later by sleepya

## recon_info_grepassets.py
#!/usr/bin/python3

import os
import re
import subprocess
import shlex
import requests
from argparse import ArgumentParser, RawTextHelpFormatter

DEFINITION = ("Greps the assets, IPs, and emails from a given input file, and "

## check_live_assets_via_ping.sh
#!/bin/bash
if [ $# -lt 2 ]; then
    echo "[-] $0 <assets-list> <out-active-assets-list>"
    exit
fi
assets_list="$1"
out_active_assets_list="$2"

for asset in `cat "$assets_list"`; do
    echo "[*] Testing asset '$asset'"

## get_dorks_for_sensitive_dirs.sh
#!/bin/bash
./get_latest_dorks_from_ghdb.sh 3

## get_all_akamai_waf_protected_domains.sh
#!/bin/bash
if [ $# -lt 1 ]; then
    echo "[-] $0 [out-file]"
    read -p "[*] Press any key to continue..."
fi
out_file="$1"

[ -z "$out_file" ] && out_file="out-akamai-waf-protected-domains.txt"
echo "[+] out_file = $out_file"

## extract_ips_from_file.py
#!/usr/bin/python3
import re
import argparse

parser = argparse.ArgumentParser(description="Get the IPs and ranges from the file")
parser.add_argument("-f", "--infile", action="store", dest="infile", required=True,
                    help="Input file")
parser.add_argument("-e", "--exclude-results", action="store", dest="exclude_results",
                    help="exclude_results from output separated by commas")
args = parser.parse_args()

## get_network_packets_in_linux.py
#!/usr/bin/python3
# Packet sniffer in python for Linux
# Sniffs only incoming TCP packet
# Code taken from: https://webcache.googleusercontent.com/search?q=cache:3DWFZjyjEsAJ:https://www.binarytides.com/python-packet-sniffer-code-linux/+&cd=1&hl=en&ct=clnk&gl=au

import socket, sys
from struct import *
import argparse

parser = argparse.ArgumentParser(description="Code to capture network packets in Linux machines in any interface")
	#!/usr/bin/python3

	import subprocess
	import shlex
	import requests
	from bs4 import BeautifulSoup
	from sys import exit
	from argparse import ArgumentParser, RawTextHelpFormatter

	### URL to crt.sh to get all the domains
	#!/bin/bash
	# Script created for testing and learning purposes only. The author does not take any responsibility for the actions taken
	# when using this script.
	# Note that it is generally not a good idea to be storing plain text credentials to disk where other users will be able to
	# access them.


	# Drop this file on disk in the leading directory on $PATH and make it executable
	# Then update the CREDS_FILE to the location that the creds must be written
	#!/usr/bin/python
	from impacket import smb, smbconnection
	from mysmb import MYSMB
	from struct import pack, unpack, unpack_from
	import sys
	import socket
	import time

	'''
	MS17-010 exploit for Windows 2000 and later by sleepya
	#!/usr/bin/python3

	import os
	import re
	import subprocess
	import shlex
	import requests
	from argparse import ArgumentParser, RawTextHelpFormatter

	DEFINITION = ("Greps the assets, IPs, and emails from a given input file, and "
	#!/bin/bash
	if [ $# -lt 2 ]; then
	echo "[-] $0 <assets-list> <out-active-assets-list>"
	exit
	fi
	assets_list="$1"
	out_active_assets_list="$2"

	for asset in `cat "$assets_list"`; do
	echo "[*] Testing asset '$asset'"
	#!/bin/bash
	if [ $# -lt 1 ]; then
	echo "[-] $0 [out-file]"
	read -p "[*] Press any key to continue..."
	fi
	out_file="$1"

	[ -z "$out_file" ] && out_file="out-akamai-waf-protected-domains.txt"
	echo "[+] out_file = $out_file"
	#!/usr/bin/python3
	import re
	import argparse

	parser = argparse.ArgumentParser(description="Get the IPs and ranges from the file")
	parser.add_argument("-f", "--infile", action="store", dest="infile", required=True,
	help="Input file")
	parser.add_argument("-e", "--exclude-results", action="store", dest="exclude_results",
	help="exclude_results from output separated by commas")
	args = parser.parse_args()
	#!/usr/bin/python3
	# Packet sniffer in python for Linux
	# Sniffs only incoming TCP packet
	# Code taken from: https://webcache.googleusercontent.com/search?q=cache:3DWFZjyjEsAJ:https://www.binarytides.com/python-packet-sniffer-code-linux/+&cd=1&hl=en&ct=clnk&gl=au

	import socket, sys
	from struct import *
	import argparse

	parser = argparse.ArgumentParser(description="Code to capture network packets in Linux machines in any interface")