AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.
Project description
AutoPWN Suite
AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.
How does it work?
AutoPWN Suite uses nmap TCP-SYN scan to enumerate the host and detect the version of softwares running on it. After gathering enough information about the host, AutoPWN Suite automatically generates a list of "keywords" to search NIST vulnerability database.
Demo
AutoPWN Suite has a very user friendly easy to read output.
Installation
You can install it using pip. (sudo recommended)
sudo pip install autopwn-suite
OR
You can clone the repo.
git clone https://github.com/GamehunterKaan/AutoPWN-Suite.git
OR
You can use Google Cloud Shell.
Usage
$ python3 autopwn.py -h
usage: autopwn.py [-h] [-o OUTPUT] [-t TARGET] [-hf HOSTFILE] [-st SCANTYPE] [-s SPEED] [-a API] [-y] [-m MODE] [-v]
AutoPWN Suite
options:
-h, --help show this help message and exit
-o OUTPUT, --output OUTPUT
Output file name. (Default : autopwn.log)
-t TARGET, --target TARGET
Target range to scan. This argument overwrites the hostfile argument. (192.168.0.1 or 192.168.0.0/24)
-hf HOSTFILE, --hostfile HOSTFILE
File containing a list of hosts to scan.
-st SCANTYPE, --scantype SCANTYPE
Scan type. (Ping or ARP)
-s SPEED, --speed SPEED
Scan speed. (0-5) (Default : 3)
-a API, --api API Specify API key for vulnerability detection for faster scanning. You can also specify your API key in api.txt file. (Default : None)
-y, --yesplease Don't ask for anything. (Full automatic mode)
-m MODE, --mode MODE Scan mode. (Evade, Noise, Normal)
-v, --version Print version and exit.
TODO
- Vulnerability detection based on version.
- Easy to read output.
- Function to output results to a file.
- pypi package for easily installing with just
pip install autopwn-suite
. - Automatically install nmap if its not installed.
- Noise mode. (Does nothing but creating a lot of noise)
- Function to automatically download exploit related to vulnerability.
- .deb package for Debian based systems like Kali Linux and Parrot Security.
- Arch Linux package for Arch based systems like BlackArch and ArchAttack.
- Seperate script for checking local privilege escalation vulnerabilities.
- Windows and OSX support.
- Functionality to brute force common services like
ssh
,vnc
,ftp
etc. - Built in reverse shell handler that automatically stabilizes shell like pwncat.
- Function to generate reverse shell commands based on IP and port.
- GUI interface.
- Meterpreter payload generator with common evasion techniques.
- Fileless malware unique to AutoPWN Suite.
- Daemon mode.
- Option to email the results automatically.
- Web application analysis.
- Web application content discovery mode. (dirbusting)
- Option to use as a module.
- Config file argument to specify configurations in a seperate config file.
- Argument for passing custom nmap flags.
Contributing to AutoPWN Suite
I would be glad if you are willing to contribute this project. I am looking forward to merge your pull request unless its something that is not needed or just a personal preference. Click here for more info!
Legal
You may not rent or lease, distribute, modify, sell or transfer the software to a third party. AutoPWN Suite is free for distribution, and modification with the condition that credit is provided to the creator and not used for commercial use. You may not use software for illegal or nefarious purposes. No liability for consequential damages to the maximum extent permitted by all applicable laws.
Support or Contact
Having trouble using this tool? You can reach me out on discord or create an issue!
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for autopwn_suite-1.0.4-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | e4526fad239169c8ee6662ad9c391ab9127c8d5c1886e7d364acfdf8f3467852 |
|
MD5 | 0a51cc1b49ad3fd4a9deafee127ad2df |
|
BLAKE2b-256 | 0f2f9523d9b4f8cb4d4ba736bb89e616b4aed2716f9fed3d891e5c3f1b87a256 |