Pentmenu: A Bash Script yeReconnaissance uye DOS Attacks
Nguva nenguva, isu tinotora mukana wekuongorora yemahara, yakavhurika uye yemahara chishandiso mumunda wekuchengetedza komputa, kunyanya mune nyika yekubira uye pentesting. Nechikonzero ichi, nhasi isu tinotora mukana wekukuzivisa iwe kune imwe inonakidza uye inobatsira chishandiso cherudzi urwu chinonzi "Pentmenu".
Uye chii chinonzi Pentmenu? Zvakanaka, muchidimbu ndizvo, un diki Linux script yakagadzirwa muBash Shell iyo yakagadzirwa nemushandisi reconnaissance uye DOS kurwisa. Uye zvechokwadi, zvese izvi nenzira iri nyore, kuburikidza neIyo inotonhorera yekusarudza menyu yekukurumidza uye nyore network reconnaissance uye nekudaro budiriro kuuraya kunodiwa kurwiswa.
Hacking Zvishandiso 2023: Yakanakira kushandiswa paGNU/Linux
Asi, usati watanga ichi iripo positi nezve ichi chinonakidza chekucheka uye pentesting chishandiso chinonzi "Pentmenu", tinokurudzira kuti uongorore yapfuura inoenderana posvo:
Pentmenu: Kubira uye pentesting chishandiso
Kuongorora Pentmenu paGNU/Linux
Para dhawunirodha, ongorora uye ziva iyo Pentmenu chishandiso semazuva ese isu tichashandisa yedu yakajairika Respin MilagrOS. Uye maitiro ekuita izvi ndiwo anoonekwa pauri yepamutemo webhusaiti paGitHub. Uye ndizvo zvinotevera:
Download
wget https://raw.githubusercontent.com/GinjaChris/pentmenu/master/pentmenukupa mvumo
chmod +x pentmenuKuitwa
./pentmenu
Menyu 1: Recon (Recognition Modules)
Iyi menyu kana module inopa zvinotevera zvinoshanda:
- Ratidza IP: Iyi sarudzo inoshandisa curl command kutsvaga yekunze IP yekombuta yedu.
- DNS Kuzivikanwa: Iyi sarudzo inotarisa kungozivikanwa, uye nekudaro inoita DNS kutarisa uye whois lookup yechinangwa.
- Ping Sweep: Sarudzo iyi inoshandisa iyo nmap kuraira kuita ICMP echo (ping) inopesana nekwauri kuenda kana network.
- Quick Scan: Iyi sarudzo inoshanda seTCP port scanner, nekushandisa iyo nmap kuraira kutsvaga madoko akavhurika uchishandisa TCP SYN scan.
- Detailed scan: Sarudzo iyi inoshandisa iyo nmap kuraira kuona mauto anoshanda, akavhurika madoko, kuyedza kuona iyo inoshanda sisitimu, kunyora mabhana, nezvimwe.
- UDP Scan: Iyi sarudzo inoshandisa iyo nmap kuraira kutsvaga yakavhurika UDP ports. Naizvozvo inotarisa ese maUDP madoko enzvimbo yekuenda.
- Tarisa Server Uptime: Sarudzo iyi inoverengera nguva yekukwirisa kweanotariswa mubati nekubvunza yakavhurika TCP port ine hping3. Kurongeka kwemhedzisiro kunogona kusiyana kana kusashanda kubva muchina kuenda kumuchina.
- IPsec Scan: Iyi sarudzo inoitirwa kuyedza kuona kuvepo kweIPsec VPN server uchishandisa ike-scan uye akasiyana Phase 1 mazano.
Menyu 2: DOS (DOS kurwisa modules)
- ICMP Echo Mafashamo: Sarudzo iyi inoshandisa iyo hping3 CLI application kuvhura yechinyakare ICMP echo mafashama achipokana neanoitirwa.
- ICMP Blacknurse Mafashamo: Iyi sarudzo inoshandisa iyo hping3 CLI application kuvhura yechinyakare ICMP Blacknurse mafashama achipokana neakananga.
- TCP SYN Mafashamo: Iyi sarudzo inotumira mafashama eTCP SYN mapaketi uchishandisa hping3. Asi, honguKana ikasawana hping3, edza kushandisa nmap-nping utility panzvimbo.
- TCP ACK Mafashamo: Iyi sarudzo inopa sarudzo dzakafanana neSYN Mafashamo, asi inoisa TCP ACK (Kutenda) mureza panzvimbo.
- TCP RST Mafashamo: Iyi sarudzo inopa sarudzo dzakafanana seSYN Mafashamo, asi inoseta iyo TCP RST (Reset) mureza panzvimbo.
- TCP XMAS Mafashamo: Iyi sarudzo inopa sarudzo dzakafanana neSYN Mafashamo uye ACK Mafashamo, asi inotumira mapaketi ane ese TCP mireza yakaiswa (CWR, ECN, URG, ACK, PSH, RST, SYN, FIN).
- UDP Mafashama: Iyi sarudzo inopa sarudzo dzakafanana neSYN mafashamo, asi panzvimbo pezvo inotumira UDP mapaketi kune yakatsanangurwa host: port.
- SSL TWO: Sarudzo iyi inoshandisa OpenSSL kuyedza DOS kurwisa kune kwainoenda: port. Inoita izvi nekuvhura akawanda ekubatanidza uye kuita kuti sevha iite inodhura maverengero ekubata maoko.
- slowloris: Sarudzo iyi inoshandisa chirongwa chenetcat kutumira misoro yeHTTP zvishoma nezvishoma kunzvimbo yekuenda:port nechinangwa chekuiuraya nenzara nezviwanikwa.
- IPsec DOS: Iyi sarudzo inoshandisa iyo ike-scan chirongwa kuyedza kufashama iyo yakataurwa IP ine main mode uye ine hukasha modhi chikamu 1 mapakeji kubva kusingango tsime IPs.
- DistractionScan: Iyi sarudzo hainyatso kukonzeresa kurwiswa kweDOS, asi inongovhura akawanda TCP SYN scans, uchishandisa hping3, kubva kuSpoofed IP yekusarudza kwedu.
Menyu 3: Kubvisa
- Tumira Faira: Iyi module inoshandisa netcat chirongwa kutumira data neTCP kana UDP. izvo zvinowanzo inobatsira zvakanyanya pakutora data kubva kune vanotarirwa.
- Gadzira Muteereri: Iyi module inoshandisa netcat kuvhura muteereri pane inogadziriswa TCP kana UDP port. Izvo zvinowanzo batsira zvakanyanya pakuyedza syslog yekubatanidza, kugamuchira mafaera, kana kutarisa inoshanda scanning pane network.
Pakupedzisira, iyo menyu 4 (Ona Readme) Inotibvumira kuona munharaunda uye zvakadzama, zvese zvakatsanangurwa pamusoro, izvo zvakare, ndizvo zvinowanikwa paGitHub. Uye menyu 5 (Rega), chaizvo ndeye kubuda uye kuvhara chirongwa.
Resumen
Muchidimbu, "Pentmenu" ndomumwe wevakawanda Hacking uye pentesting zvishandiso, yakasununguka, yakazaruka uye yakasununguka, inowanikwa yekudzidza nekudzidzira mabasa mumunda wekuchengetedzwa kwekombiyuta. Nekudaro, uye sevamwe vazhinji vatataura pano kana kwete, chishandiso ichi chinofanirwa kushandiswa tichifunga nezve zvine chekuita uye nemvumo yekushandiswa kwezvichashandisirwa, saka, zvese zvinoitwa nazvo zvine basa remushandisi. . Uye kana mumwe munhu akazviedza kana kuti akambozviedza, tinokukoka iwe kuti utiudze nezve chiitiko chako nazvo, kuburikidza nemhinduro.
Pakupedzisira, rangarira shanyira kwedu «peji rekumba» uye ubatane nechiteshi chedu chepamutemo che teregiramu kuongorora dzimwe nhau, madhairekitori uye tutorials. Uye zvakare, ane izvi boka kutaura uye kudzidza zvakawanda nezve chero IT musoro wakafukidzwa pano.