babysploit 1.1.11

Beginner Pentesting Toolkit/Framework

<p align="center">
<a href="https://github.com/M4cs/BabySploit/network"><img src="https://img.shields.io/github/forks/M4cs/BabySploit.svg" alt="Forks"></a>
<a href="https://github.com/M4cs/BabySploit/stargazers"><img src="https://img.shields.io/github/stars/M4cs/BabySploit.svg" atl="Stars"></a>
<a href="https://github.com/M4cs/BabySploit/issues"><img src="https://img.shields.io/github/issues/M4cs/BabySploit.svg" alt="Issues"></a>
<a href=""><img src="https://img.shields.io/badge/version-0.1.9-green.svg?syle=popout"></a>
<a href="https://github.com/M4cs/BabySploit/blob/master/LICENSE.md"><img src="https://img.shields.io/github/license/M4cs/BabySploit.svg" alt="License"></a>
<a href="http://www.python.org/download/"><img alt="Python 3.6+" src="https://img.shields.io/badge/Python-3.6+-yellow.svg"></a>
<a href="https://twitter.com/intent/tweet?text=Wow:&url=https%3A%2F%2Fgithub.com%2FM4cs%2FBabySploit"><img src="https://img.shields.io/twitter/url/https/github.com/M4cs/BabySploit.svg?style=popout" alt="Twitter"></a>
<a href="https://discord.gg/7VN9VZe"><img src="https://img.shields.io/badge/discord-join-blue.svg?syle=popout"></a>

<p align="center">
<b>Tested on Kali Linux. If you are not on Kali you need to add the Kali repository to your APT Sources list and then run install.</b>
</br><a href="https://twitter.com/maxbridgland alt="Twitter Link"><b>Developed by @maxbridgland</b></a></br>
<a href="https://bit.ly/2Ke9uVi">Donate</a>
</p>
<p align="center">
<a href="https://discord.gg/7VN9VZe"><img src="https://steamcdn-a.akamaihd.net/steamcommunity/public/images/clans/27090541/8dd5c907f2a0eecb73dc6a4776fc9a25878ebcdd.png" alt="Forks"></a>

<p align="center">
<b>BabySploit is a penetration testing toolkit aimed at making it easy to learn how to use bigger,</br>
more complicated frameworks like Metasploit. With a very easy to use UI and toolkit, anybody</br>
from any experience level will find use out of BabySploit. Below are some screenshots of the framework.</b>
</p>
<p align="center">
<a href="https://asciinema.org/a/Hm2mwhJvQnGAaK4xWAn5NY9l6" target="_blank"><img src="https://asciinema.org/a/Hm2mwhJvQnGAaK4xWAn5NY9l6.svg" /></a></br>
<b> Video Demonstration </b>
</p>
# Installation Instructions:

BabySploit is best run out of the home directory so to clone it there run:
```
git clone git://github.com/M4cs/BabySploit ~/BabySploit
cd ~/BabySploit
```

After cloning the installation you must install some pre-requisites. **If you are on Kali you should already have all of these installed but it doesn't hurt to do so anyways just in case**. Do so by running the following:


**If you are not on Kali you need to add the Kali repository to your APT Sources list and then run install.**
```
~- From Within The BabySploit Directory -!
sudo apt-get update
sudo apt-get upgrade
sudo python3 install.py
virtualenv babysploit
source babysploit/bin/activate
pip3 install -r requirements.txt
python3 start.py

!- To Leave The Virtual Environment -!

deactivate
```

# Changelog:

## Types of Updates:
- Updates: Framework has been updated with new features or major fixes.
- Releases: Stable release milestone.
- Hotfix: Quick hotfix. Minor bug fix or minor change.

#### 0.1.11 Hotfix:
- Fix nmap logging
#### 0.1.10 Hotfix:
- Bug Fixes
#### 0.1.9 Hotfix:
- Fix Installer
- Fix Updater
#### 0.1.8 Update:
- Switch To Virtual Env Installation
#### 0.1.7 Update:
- Added Installer Script
- Fixed Updater
#### 0.1.6 Update:
- Added Cloudflare Bypasser
- Added WPSeku WP Vuln Scan
#### 0.1.4 & 0.1.5 Hotfixes:
- Fix updater
#### 0.1.3 Hotfix:
- Fix Method of grabbing default gateway
#### 0.1.2 Hotfix:
- Bug fixes
#### 0.1.1 Hotfix:
- Fix Requirements.txt
#### 0.1.0 Release:
- Basic Release
#### 0.0.9 Hotfix:
- Fix Updater
#### 0.0.8 Update:
- Fix Updater
- Add Raccoon Vuln Scan
- Fix PDFMeta
- Update Display
#### 0.0.7 Hotfix:
- Fix some bugs
#### 0.0.6 Update:
- Fix updater script
- Remove tcpdump
- Add ftpvulnscan and pdfmeta

# Getting Started:

#### Setting Configuration Values:

BabySploit uses ConfigParser in order to write and read configuration. Your config file is automatically
generated and located at `./babysploit/config/config.cfg`. You can manually change configuration settings
by opening up the file and editing with a text editor or you can use the set command to set a new value for
a key. Use the set command like so:
```
set rhost
>> Enter Value For rhost: 10
>> Config Key Saved!
```

If before running this command the rhost key had a value of 80, the rhost key after running this command has a
value of 10. You can also add configuration variables to the config by using the set command with a new key after it
like so:
```
set newkey
>> Enter Value For newkey: hello
>> Config Key Saved!
```

Before running this there was no key named "newkey". After running this you will have a key named "newkey" in your config
until you use the `reset` command which resets the saved configuration.

#### Running A Tool

In order to run a tool all you have to do is enter the name of the tool into BabySploit. You can use the `tools` command
to display a menu with all the currently availble tools. If we run tools we get the depiction:
<p align="center">
<img src="https://image.prntscr.com/image/dMlUOjFnQk_KSyru1gTQ2A.png" alt="Tools"/>
</p>
*this depiction may be outdated*

This menu will display the tools available and the description of each tool. To run a tool simply enter the tool name
into BabySploit. Ex: `ftpbruteforce` - runs the ftpbruteforce tool.

# Features (Current, In The Works, Planned):

[Visit](https://github.com/M4cs/BabySploit/projects/1) project board for tools.

- Information Gathering
- Exploitation
- Post Exploitation
- Bruteforcing
- Phishing
- Cryptography/Stenography

### Information Gathering:

- Nmap
- IP Info
- Tcpdump (In The Works)
- Datasploit (In The Works)
- Censys Lookup
- DNS Lookup
- Raccoon
- Cloudflare Bypasser

### Exploitation:

- Searchsploit
- ReverseShell Wizard
- FTP Buffer Overflow Scan
- WPSeku WordPress Vuln Scanner

### Post Exploitation:

- In The Works

### Bruteforcing:

- FTP Bruteforcer
- WPSeku WordPress Login Bruteforce

### Phishing:

- BlackEye Python

### Crypto/Stegano:

- MetaKiller
- PDFMeta

# Contributing

Feel free to contribute by making plugins or fixing bugs with a Pull Request. All contributions are helpful and will help make this a great tool.

Licensed Under [MIT](https://github.com/M4cs/BabySploit/blob/master/LICENSE.md).

Copyright (c) 2018 Syndicated Intelligence