An intranet tool for easily intranet pentesting

Related tags

Security related resourcesIntraKnife
Overview

IntarKnife v1.0

a tool can be used in intarnet for easily pentesting

moudle

hash spray

U can use this tool to spray hash on a webshell

IntraKnife.exe -m spray -l com.txt -u user.txt -P admin123
IntraKnife.exe -m spray -l com.txt -u user.txt -ha xxxxxxxxxxxxxxxxxxxxxxxxx

search adinfo

U can use this tool to collect adinfo

IntraKnife.exe -m adinfo -d 10.10.1.1 -dn "dc=cia,dc=local" -u cia\administrator -P admin123 -f user
IntraKnife.exe -m adinfo -d 10.10.1.1 -dn "dc=cia,dc=local" -u cia\administrator -P admin123 -f computer
IntraKnife.exe -m adinfo -d 10.10.1.1 -dn "dc=cia,dc=local" -u cia\administrator -P admin123 -f group

parse DNS

U can use this tool to get the machine's ip by their hostname

IntraKnife.exe -m dns -l com.txt

list share

U can use this tool to list shares

IntraKnife.exe -m share -l com.txt -u cia/administrator -p admin123
IntraKnife.exe -m share -l com.txt -u cia/administrator -ha xxxxxxxxxxxxxxxxxxxxxxxx

find active

U can use this tool to find the active host in intranet (with ping)

IntraKnife.exe -m active -l com.txt
Owner
GitHub Repository
Wonk is a tool for combining a set of AWS policy files into smaller compiled policy sets.

Wonk is a tool for combining a set of AWS policy files into smaller compiled policy sets.

Amino, Inc 140 Dec 16, 2022
๐™พ๐š™๐šŽ๐š— ๐š‚๐š˜๐šž๐š›๐šŒ๐šŽ ๐š‚๐šŒ๐š›๐š’๐š™๐š - ๐™ฝ๐š˜ ๐™ฒ๐š˜๐š™๐šข๐š›๐š’๐š๐š‘๐š - ๐šƒ๐šŽ๐šŠ๐š– ๐š†๐š˜๐š›๐š” - ๐š‚๐š’๐š–๐š™๐š•๐šŽ ๐™ฟ๐šข๐š๐š‘๐š˜๐š— ๐™ฟ๐š›๐š˜๐š“๐šŽ๐šŒ๐š - ๐™ฒ๐š›๐šŽ๐šŠ๐š๐šŽ๐š ๐™ฑ๐šข : ๐™ฐ๐š•๐š• ๐šƒ๐šŽ๐šŠ๐š– - ๐™ฒ๐š˜๐š™๐šข๐™ฟ๐šŠ๐šœ๐š ๐™ฒ๐šŠ๐š— ๐™ฝ๐š˜๐š ๐™ผ๐šŠ๐š”๐šŽ ๐šˆ๐š˜๐šž ๐š๐šŽ๐šŠ๐š• ๐™ฟ๐š›๐š˜๐š๐š›๐šŠ๐š–๐š–๐šŽ๐š›

๐™พ๐š™๐šŽ๐š— ๐š‚๐š˜๐šž๐š›๐šŒ๐šŽ ๐š‚๐šŒ๐š›๐š’๐š™๐š - ๐™ฝ๐š˜ ๐™ฒ๐š˜๐š™๐šข๐š›๐š’๐š๐š‘๐š - ๐šƒ๐šŽ๐šŠ๐š– ๐š†๐š˜๐š›๐š” - ๐š‚๐š’๐š–๐š™๐š•๐šŽ ๐™ฟ๐šข๐š๐š‘๐š˜๐š— ๐™ฟ๐š›๐š˜๐š“๐šŽ๐šŒ๐š - ๐™ฒ๐š›๐šŽ๐šŠ๐š๐šŽ๐š ๐™ฑ๐šข : ๐™ฐ๐š•๐š• ๐šƒ๐šŽ๐šŠ๐š– - ๐™ฒ๐š˜๐š™๐šข๐™ฟ๐šŠ๐šœ๐š ๐™ฒ๐šŠ๐š— ๐™ฝ๐š˜๐š ๐™ผ๐šŠ๐š”๐šŽ ๐šˆ๐š˜๐šž ๐š๐šŽ๐šŠ๐š• ๐™ฟ๐š›๐š˜๐š๐š›๐šŠ๐š–๐š–๐šŽ๐š›

CodeX-ID 2 Oct 27, 2022
Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.

Log4jScanner Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains. Disc

Pushpender Singh 35 Dec 12, 2022
CVE-2022-21907 Vulnerability PoC

CVE-2022-21907 Description POC for CVE-2022-21907: HTTP Protocol Stack Remote Code Execution Vulnerability. create by antx at 2022-01-17, just some sm

Michele 16 Dec 18, 2022
Unauthenticated Sqlinjection that leads to dump data base but this one impersonated Admin and drops a interactive shell

Unauthenticated Sqlinjection that leads to dump database but this one impersonated Admin and drops a interactive shell

sam 16 Nov 09, 2022
hackinsta: a program to hack instagram

hackinsta a program to hack instagram Yokoback_(instahack) is the file to open, you need libraries write on import. You run that file in the same fold

1 Dec 04, 2021
Dependency Combobulator is an Open-Source, modular and extensible framework to detect and prevent dependency confusion leakage and potential attacks.

Dependency Combobulator Dependency Combobulator is an Open-Source, modular and extensible framework to detect and prevent dependency confusion leakage

Apiiro 84 Dec 23, 2022
dos-atack-tor script de python que permite usar conexiones cebollas para atacar paginas .onion o paginas convencionales via tor.

script de python que permite usar conexiones cebollas para atacar paginas .onion o paginas convencionales via tor. tiene capacidad de ajustar la cantidad de informacion a enviar, el numero de hilos a

Desmon 2 Jun 01, 2022
Microsoft Exchange Server SSRFๆผๆดž(CVE-2021-26855)

Microsoft_Exchange_Server_SSRF_CVE-2021-26855 zoomeye dork๏ผšapp:"Microsoft Exchange Server" ไฝฟ็”จSeebugๅทฅๅ…ท็ฎฑๅŠpocsuite3็ผ–ๅ†™็š„่„šๆœฌMicrosoft_Exchange_Server_SSRF_CV

conjojo 37 Nov 12, 2022
AutoScan ๆœ‰ๅคšไธช็›ฎๆ ‡ๆ—ถ๏ผŒ่ฐƒ็”จxray+rad่ฟ›่กŒ่‡ชๅŠจๆ‰ซๆ

Usage: ๅœจ้ซ˜็บง็‰ˆXrayๅ’ŒradๅŒ็›ฎๅฝ•ไธ‹่ฟ่กŒ python3 X-AutoXray.py xxxx.txt ๅ†™็š„่›ฎไบบๆ€งๅŒ–็š„ๅ“ฆ๏ผŒos,linux,windows้€š็”จ ็”Ÿๆˆ็š„xrayๆŠฅๅ‘Šไผšๅœจๅฝ“ๅ‰็›ฎๅฝ•็š„/resultไธ‹้ข Ctrl+c ๆ‰“ๆ–ญ่„šๆœฌ่ฟ่กŒๆ—ถ่ฟ˜ๅฏไปฅ็ป“็ฎ—ๆ‰ซๆ่ฟ›ๅบฆ๏ผŒ็”Ÿๆˆๅทฒๆ‰ซๆๅ’Œๆœชๆ‰ซๆ็š„่ฟ›ๅบฆๆ–‡ไปถ๏ผŒ

ๆ–ฏๆ–‡ 73 Jan 01, 2023
StarUML cracker - StarUML cracker With Python

StarUML_cracker Usage On Linux Clone the repo. git clone https://github.com/mana

Bibek Manandhar 9 Jun 20, 2022
่šๅˆGithubไธŠๅทฒๆœ‰็š„Pocๆˆ–่€…Exp๏ผŒCVEไฟกๆฏๆฅ่‡ชCVEๅฎ˜็ฝ‘ใ€‚Auto Collect Poc Or CVE from Github by CVE ID.

PocOrExp in Github ่šๅˆGithubไธŠๅทฒๆœ‰็š„Pocๆˆ–่€…Exp๏ผŒCVEไฟกๆฏๆฅ่‡ชCVEๅฎ˜็ฝ‘ ๆณจๆ„๏ผšๅช้€š่ฟ‡้€š็”จ็š„CVEๅท่šๅˆ๏ผŒๅ› ๆญคๅฏนไบŽMS17-010็ญ‰Windows็ผ–ๅทๆผๆดžไปฅๅŠ่‘—ๅ็š„ๆœ‰็ปฐๅท็š„ๆผๆดž๏ผŒ่ฟ˜ๆ˜ฏ่‡ชๅทฑๆฃ€็ดขไธ€ไธ‹ๆฏ”่พƒๅฅฝ Usage python3 exp.py -h usage: ex

567 Dec 30, 2022
A secure password generator written in python

gruvbox-factory ๐Ÿญ "The main focus when developing gruvbox is to keep colors easily distinguishable, contrast enough and still pleasant for the eyes"

Paulo Pacitti 430 Dec 27, 2022
OpenPort scanner GUI tool (CNMAP)

CNMAP-GUI- OpenPort scanner GUI tool (CNMAP) as you know it is the advanced tool to find open port, firewalls and we also added here heartbleed scanni

9 Mar 05, 2022
A Python tool to automate some dorking stuff to find information disclosures.

WebDork v1.0.3 A open-source tool to find publicly available sensitive information about Companies/Organisations! WebDork A Python tool to automate so

Rahul rc 123 Jan 08, 2023
Proof of concept GnuCash Webinterface

Proof of Concept GnuCash Webinterface This may one day be a something truly great. Milestones [ ] Browse accounts and view transactions [ ] Record sim

Josh 14 Dec 28, 2022
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.

The Recon-ng Framework Recon-ng content now available on Pluralsight! Recon-ng is a full-featured reconnaissance framework designed with the goal of p

2.4k Jan 07, 2023
๐Ÿ”Ž Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

๐Ÿ”Ž Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

BhavKaran 1.5k Dec 28, 2022
ProxyLogon Pre-Auth SSRF To Arbitrary File Write

ProxyLogon Pre-Auth SSRF To Arbitrary File Write For Education and Research Usage: C:\python proxylogon.py mail.evil.corp lulz 117 Nov 28, 2022

Seamless deployment and management of cybersecurity solutions ๐Ÿ—๏ธ

Description ๐Ÿ–ผ๏ธ Background ๐Ÿ‘ด๐Ÿผ Vision ๐Ÿ“œ Concepts ๐Ÿ’ฌ Solutions' Lifecycle. Operations โญ• Functionalities ๐Ÿš€ Supported Cybersecurity Solutions ๐Ÿ“ฆ Insta

MutableSecurity 36 Nov 10, 2022