Pentmenu: Rubutun Bash don Bincike da Harin DOS
Daga lokaci zuwa lokaci, muna amfani da damar da za mu binciko kayan aiki kyauta, buɗaɗɗe da kyauta a fannin tsaro na kwamfuta, musamman ma a cikin tsarin. duniya na hacking da pentesting. Don haka, a yau muna amfani da damar don gabatar muku da wani kayan aiki mai ban sha'awa kuma mai amfani na wannan nau'in da ake kira "Pentmenu".
Kuma menene Pentmenu? To, a taƙaice shi ne, un karama Rubutun Linux da aka yi a Bash Shell wanda mai amfani ya halicce shi hare-haren leken asiri da DOS. Kuma ba shakka, duk wannan ta hanya mai sauƙi, ta hanyar aKyakkyawan menu na zaɓi don bincike mai sauri da sauƙi na hanyar sadarwa don haka nasarar aiwatar da hare-haren da suka wajaba.
Kayan aikin Hacking 2023: Mafi dacewa don amfani akan GNU/Linux
Amma, kafin fara wannan post na yanzu game da wannan ban sha'awa hacking da pentesting kayan aiki kira "Pentmenu", muna ba da shawarar ku bincika bayanan da suka gabata:
Pentmenu: Hacking da pentesting kayan aiki
Nemo Pentmenu akan GNU/Linux
para zazzage, bincika kuma ku san kayan aikin Pentmenu kamar yadda muka saba za mu yi amfani da mu na yau da kullun Respin MilagrOS. Kuma hanyar aiwatar da wannan ita ce wacce ta bayyana akan ku official website akan GitHub. Kuma shi ne kamar haka:
Saukewa
wget https://raw.githubusercontent.com/GinjaChris/pentmenu/master/pentmenubada izini
chmod +x pentmenuKisa
./pentmenu
Menu 1: Sake (Modules Gane)
Wannan menu ko tsarin yana ba da ayyuka masu zuwa:
- Nuna IP: Wannan zaɓi yana amfani da umarnin curl don bincika IP na waje na kwamfutar mu.
- Ganewar DNS: Wannan zaɓin yana yin hari ne don ganowa ba tare da izini ba, saboda haka yana yin bincike na DNS da kuma duba wanda aka sa a gaba.
- Ping Sweep: Wannan zaɓin yana amfani da umarnin nmap don yin echo (ping) na ICMP akan mai masaukin baki ko cibiyar sadarwa.
- Cikakken sauƙi: Wannan zaɓi yana aiki azaman na'urar daukar hoto ta TCP, ta hanyar amfani da umarnin nmap don nemo wuraren buɗe ido ta amfani da sikanin TCP SYN.
- cikakken scan: Wannan zaɓin yana amfani da umarnin nmap don gano runduna masu aiki, buɗe tashoshin jiragen ruwa, yunƙurin gano tsarin aiki, rubuta banners, da ƙari.
- Binciken UDP: Wannan zaɓi yana amfani da umarnin nmap don bincika buɗaɗɗen tashoshin jiragen ruwa na UDP. Haka kuma duba dukkan tashoshin jiragen ruwa na UDP na mai masaukin baki.
- Duba Uptime Server: Wannan zaɓin yana ƙididdige lokacin lokacin da aka yi niyya ta hanyar tambayar buɗaɗɗen tashar TCP tare da hping3. Daidaiton sakamako na iya bambanta ko ba zai yi aiki daga na'ura zuwa na'ura ba.
- IPsec Scan: Wannan zaɓin an yi niyya ne don ƙoƙarin gano kasancewar uwar garken IPsec VPN ta amfani da ike-scan da shawarwari na Phase 1 daban-daban.
Menu na 2: DOS (Modules harin DOS)
- ICMP Echo Ambaliyar: Wannan zaɓin yana amfani da aikace-aikacen hping3 CLI don ƙaddamar da ambaliya na ICMP na gargajiya a kan mai masaukin baki.
- ICMP Blacknurse Ambaliyar: Wannan zaɓin yana amfani da aikace-aikacen hping3 CLI don ƙaddamar da ambaliya ta ICMP Blacknurse ta gargajiya a kan mai masaukin baki.
- TCP SYN Ambaliyar: Wannan zabin yana aika ambaliya na fakitin TCP SYN ta amfani da hping3. Amma, ehIdan bai sami hping3 ba, gwada amfani da kayan aikin nmap-nping maimakon.
- TCP ACK Ambaliyar: Wannan zabin yana ba da zaɓuɓɓuka iri ɗaya da na SYN Flood, amma yana saita Tutar TCP ACK (Acknowledgment) maimakon.
- TCP RST Ambaliyar: Wannan zabin yana ba da zaɓuɓɓuka iri ɗaya da ambaliyar SYN, amma saita Tutar TCP RST (Sake saitin) maimakon.
- TCP XMAS Ambaliyar: Wannan zabin yana ba da zaɓuɓɓuka iri ɗaya da Ambaliyar SYN da ACK Ambaliyar, amma yana aika fakiti tare da duk saita tutocin TCP (CWR, ECN, URG, ACK, PSH, RST, SYN, FIN).
- Ambaliyar UDP: Wannan zabin yana ba da zaɓuɓɓuka iri ɗaya da Ambaliyar SYN, amma a maimakon haka aika fakitin UDP zuwa ƙayyadadden mai watsa shiri: tashar jiragen ruwa.
- SSL BIYU: Wannan zaɓi yana amfani da OpenSSL don yunƙurin kai hari DOS a kan tashar tashar jiragen ruwa. Yana yin haka ta hanyar buɗe haɗin kai da yawa da sanya uwar garken yin lissafin musafaha masu tsada.
- slowloris: Wannan zaɓin yana amfani da shirin netcat don aika masu rubutun HTTP sannu a hankali zuwa masaukin masauki: tashar jiragen ruwa tare da niyya na yunwa da albarkatu.
- IPsec DOS: Wannan zaɓin yana amfani da shirin na-ike-scan don ƙoƙarin ambaliya ƙayyadaddun IP tare da babban yanayi da fakitin yanayin yanayi 1 daga tushen IPs bazuwar.
- Duban hankali: Wannan zabin ba a zahiri yana haifar da harin DOS ba, amma kawai yana ƙaddamar da sikanin TCP SYN da yawa, ta amfani da hping3, daga IP ɗin da aka zaɓe na zaɓin mu.
Menu na 3: Cire
- Aika fayil: Wannan tsarin yana amfani da shirin netcat don aika bayanai tare da TCP ko UDP. wanda yawanci mai matukar amfani don fitar da bayanai daga runduna masu niyya.
- Ƙirƙiri Mai Sauraro: Wannan tsarin yana amfani da netcat don buɗe mai sauraro akan tashar TCP ko UDP mai daidaitawa. Wanne yawanci yana da matuƙar amfani don gwada haɗin haɗin syslog, karɓar fayiloli, ko duba aiki mai aiki akan hanyar sadarwa.
A ƙarshe, da menu na 4 (Duba Karatun) Yana ba mu damar ganin gida da ƙarin cikakkun bayanai, duk abin da aka bayyana a sama, wanda bi da bi, shine abin da aka samo akan GitHub. Kuma menu na 5 (Kitaba), asali shine fita da rufe shirin.
Tsaya
A takaice, "Pentmenu" yana daya daga da yawa hacking da pentesting kayan aikin, kyauta, budewa da kyauta, akwai don koyo da aiwatar da ayyuka a fagen tsaro na kwamfuta. Duk da haka, kuma kamar yadda yake tare da wasu da yawa waɗanda muka yi magana a nan ko a'a, dole ne a yi amfani da wannan kayan aiki tare da la'akari da alhakin da kuma izinin amfani da abin da za a yi amfani da shi, don haka duk abin da aka yi da shi yana da alhakin mai amfani. . Kuma idan wani ya gwada ta ko ya gwada ta a baya, muna gayyatar ku don gaya mana abubuwan da kuka samu game da shi, ta hanyar sharhi.
A ƙarshe, ku tuna ziyarci mu «shafin gida» kuma ku shiga official channel dinmu na sakon waya don bincika ƙarin labarai, jagora da koyawa. Hakanan, yana da wannan rukuni don yin magana da ƙarin koyo game da kowane batun IT da aka rufe anan.