Ngezikhathi ezithile, sithatha ithuba lokuhlola ithuluzi lamahhala, elivulekile nelikhululekile emkhakheni wezokuphepha kwekhompyutha, ikakhulukazi umhlaba wokugebenga kanye ne-pentesting. Ngenxa yalesi sizathu, namuhla sithatha ithuba lokukwethula elinye ithuluzi elithakazelisayo neliwusizo lalolu hlobo olubizwa ngokuthi "I-Pentmenu".
Futhi yini i-Pentmenu? Kafushane nje, un encane Isikripthi se-Linux senziwe nge-Bash Shell edalwe ngumsebenzisi ukuhlaselwa kabusha kanye ne-DOS. Futhi-ke, konke lokhu ngendlela elula, ngokusebenzisa aImenyu epholile yokukhetha yokuhlola inethiwekhi ngokushesha futhi kulula kanjalo nokwenza ngempumelelo ukuhlasela okudingekayo.
Kodwa, ngaphambi kokuqala lokhu okuthunyelwe samanje mayelana nokugenca ezithakazelisayo futhi ithuluzi pentesting ngokuthi "I-Pentmenu", sincoma ukuthi uhlole i okuthunyelwe kwangaphambilini okuhlobene:
I-Pentmenu: Ithuluzi lokugebenga kanye ne-pentesting
Ukuhlola i-Pentmenu ku-GNU/Linux
para landa, hlola futhi wazi ithuluzi le-Pentmenu njengenjwayelo sizosebenzisa i-Respin MilagrOS yethu evamile. Futhi inqubo yokwenza lokhu yileyo evelayo kuwe iwebhusayithi esemthethweni ku-GitHub. Futhi lokhu okulandelayo:
Landa
wget https://raw.githubusercontent.com/GinjaChris/pentmenu/master/pentmenu
ukunikezwa kwezimvume
chmod +x pentmenu
Ukwenziwa
./pentmenu
Imenyu 1: Recon (Amamojula Wokuqaphela)
Le menyu noma imojuli inikeza imisebenzi elandelayo:
- Bonisa i-IP: Le nketho isebenzisa umyalo we-curl ukucinga i-IP yangaphandle yekhompyutha yethu.
- Ukuqashelwa kwe-DNS: Le nketho iqondise ekuboneni okwenziwayo, futhi ngokulandelayo yenza ukubheka kwe-DNS kanye nokubheka i-whois yethagethi.
- I-Ping Shanela: Le nketho isebenzisa umyalo we-nmap ukwenza i-ICMP echo (ping) ngokumelene nomsingathi wendawo noma inethiwekhi.
- Iskena esheshayo: Le nketho isebenza njengesikena sembobo ye-TCP, ngokusebenzisa umyalo we-nmap ukuze ubheke izimbobo ezivulekile usebenzisa ukuskena kwe-TCP SYN.
- ukuskena okuningiliziwe: Le nketho isebenzisa umyalo we-nmap ukuhlonza abasingathi abasebenzayo, izimbobo ezivulekile, imizamo yokuhlonza isistimu yokusebenza, ukubhala izibhengezo, nokuningi.
- Ukuskena kwe-UDP: Le nketho isebenzisa umyalo we-nmap ukucinga izimbobo ze-UDP ezivulekile. Ngenxa yalokho, iskena zonke izimbobo ze-UDP zomsingathi wendawo.
- Hlola Isikhathi Seseva: Le nketho ibala isikhathi sokusebenza sosokhaya okuqondiwe ngokubuza imbobo evulekile ye-TCP nge-hping3. Ukunemba kwemiphumela kungase kuhluke noma kungase kusebenze emshinini ngomshini.
- I-IPsec Scan: Le nketho ihloselwe ukuzama ukukhomba ubukhona beseva ye-IPsec VPN isebenzisa i-ike-scan kanye neziphakamiso zeSigaba 1 ezahlukahlukene.
Imenyu 2: I-DOS (amamojula okuhlasela e-DOS)
- I-ICMP Echo Flood: Le nketho isebenzisa uhlelo lwe-hping3 CLI ukwethula isikhukhula se-ICMP esivamile ngokumelene nomsingathi oqondiwe.
- I-ICMP Blacknurse Flood: Le nketho isebenzisa uhlelo lwe-hping3 CLI ukwethula isikhukhula se-ICMP Blacknurse esivamile ngokumelene nomsingathi oqondiwe.
- Izikhukhula ze-TCP SYN: Le nketho ithumela izikhukhula zamaphakethe e-TCP SYN isebenzisa i-hping3. Kodwa, yeboUma ingayitholi i-hping3, zama ukusebenzisa insiza ye-nmap-nping esikhundleni salokho.
- TCP ACK Izikhukhula: Le nketho inikeza izinketho ezifanayo njengoZamcolo we-SYN, kodwa isetha ifulegi le-TCP ACK (Ukuvuma) esikhundleni.
- TCP RST Izikhukhula: Le nketho inikeza izinketho ezifanayo njenge-SYN Flood, kodwa isetha ifulegi le-TCP RST (Setha kabusha) esikhundleni.
- TCP XMAS Izikhukhula: Le nketho inikeza izinketho ezifanayo njenge-SYN Flood kanye ne-ACK Flood, kodwa ithumela amaphakethe anawo wonke amafulegi e-TCP asethiwe (CWR, ECN, URG, ACK, PSH, RST, SYN, FIN).
- Isikhukhula se-UDP: Le nketho inikeza izinketho ezifanayo njengoZamcolo we-SYN, kodwa esikhundleni salokho ithumela amaphakethe e-UDP kumsingathi oshiwo: port.
- I-SSL YESIBILI: Le nketho isebenzisa i-OpenSSL ukuzama ukuhlasela kwe-DOS ngokumelene nomsingathi wendawo:imbobo. Ikwenza lokhu ngokuvula ukuxhumana okuningi nokwenza iseva yenze izibalo zokuxhawula izandla ezibizayo.
- I-Slowloris: Le nketho isebenzisa uhlelo lwe-netcat ukuthumela kancane izihloko ze-HTTP kumsingathi wendawo:port ngenhloso yokuyilambisa izisetshenziswa.
- IPsec DOS: Le nketho isebenzisa uhlelo lwe-ike-scan ukuze izame ukugcwala i-IP eshiwo ngemodi eyinhloko namaphakethe esigaba 1 semodi enolaka asuka kuma-IP omthombo ongahleliwe.
- UkuphazamisekaSkena: Le nketho empeleni ayikuqalisi ukuhlaselwa kwe-DOS, kodwa ivele yethule izikena eziningi ze-TCP SYN, kusetshenziswa i-hping3, kusuka ku-IP eyi-spoofed esiyithandayo.
Imenyu 3: Isizinda
- Thumela Ifayela: Le mojula isebenzisa uhlelo lwe-netcat ukuthumela idatha nge-TCP noma i-UDP. okuyinto ngokuvamile iwusizo kakhulu ekukhipheni idatha kubasingathi okuqondiwe.
- Dala Umlaleli: Le mojula isebenzisa i-netcat ukuvula isilaleli ku-TCP elungisekayo noma imbobo ye-UDP. Okuvame ukuba wusizo kakhulu ekuhloleni uxhumano lwe-syslog, ukwamukela amafayela, noma ukuhlola ukuskena okusebenzayo kunethiwekhi.
Ekugcineni, i imenyu 4 (Buka i-Readme) Kusivumela ukuthi sibone endaweni kanye nangemininingwane eyengeziwe, yonke into echazwe ngenhla, nayo, yilokho okutholakala ku-GitHub. Futhi imenyu 5 (Yeka), ngokuyisisekelo iwukuba uphume futhi uvale uhlelo.
Isifingqo
Ngokufingqa, "I-Pentmenu" ingenye yeziningi amathuluzi nokugenca kanye pentesting, mahhala, evulekile futhi mahhala, etholakalayo ukuze ufunde futhi usebenzise imisebenzi emkhakheni wokuphepha kwekhompyutha. Kodwa-ke, futhi njengabanye abaningi esikhulume nabo lapha noma cha, lolu hlelo lokusebenza kufanele lusetshenziswe kukhunjulwa ukusetshenziswa okunesibopho nokugunyaziwe kwalokho okuzosetshenziswa kukho, ngakho-ke, konke okwenziwa ngayo kuphezu kwesibopho somsebenzisi. . Futhi uma kwenzeka othile eyizama noma wake wayizama ngaphambilini, sikumema ukuthi usitshele ngolwazi lwakho ngayo, ngokuphawula.
Okokugcina, khumbula vakashela wethu «ikhasi lasekhaya» futhi ujoyine isiteshi sethu esisemthethweni se- yocingo ukuze uhlole ezinye izindaba, imihlahlandlela kanye nezifundo. Futhi, unalokhu iqembu ukuze ukhulume futhi ufunde kabanzi nganoma yisiphi isihloko se-IT esimbozwe lapha.