Advanced SMB Exploitation Framework
Project description
SMB Exploitation Tool
Advanced SMB Exploitation Framework with Interactive Colorful Terminal Interface - For Authorized Security Testing and Penetration Testing Only.
🤝 Open Source Collaboration
We're looking for collaborators! This project is open source and welcomes contributions from security researchers and developers.
Repository: https://github.com/PDFSage/smb_exploitation_tool
How to contribute:
- Fork the repository
- Create feature branches
- Submit pull requests
- Report issues and bugs
- Suggest new features
- Improve documentation
All contributors are welcome regardless of experience level. Whether you're fixing typos, adding features, or improving security - your contributions matter!
⚠️ Legal Disclaimer
FOR AUTHORIZED SECURITY TESTING ONLY
This tool is designed for authorized security professionals conducting legitimate penetration tests and security assessments. Unauthorized access to computer systems is illegal under laws including (but not limited to):
- Computer Fraud and Abuse Act (CFAA) in the United States
- Computer Misuse Act in the United Kingdom
- Similar legislation in other jurisdictions worldwide
BY USING THIS TOOL, YOU AGREE:
- You have explicit written authorization to test the target systems
- You understand and accept all legal responsibilities
- You will use this tool only for lawful purposes
- The authors are not responsible for any misuse or damage
🎯 Features
Interactive Colorful Shell
- Beautiful terminal UI powered by Rich library
- Easy-to-use menu-driven interface
- Real-time configuration display
- Progress tracking and status updates
Advanced SMB Exploitation
- Multiple evasion techniques (4 levels: 0-3)
- Protocol switching and tunneling
- HTTP/HTTPS tunneling capabilities
- SSL/TLS obfuscation
- Traffic morphing and protocol impersonation
- Reverse shell functionality
Comprehensive Testing
- Target scanning and enumeration
- Vulnerability detection (EternalBlue, SMBGhost, Zerologon, etc.)
- Exploitation with configurable parameters
- Detailed logging and reporting
📦 Installation
From PyPI
pip install smb-exploitation-tool
From Source
git clone https://github.com/PDFSage/smb_exploitation_tool.git
cd smb_exploitation_tool
pip install -r requirements.txt
pip install -e .
🚀 Usage
Interactive Mode (Recommended)
Launch the colorful interactive shell:
smb
Or alternatively:
smb-tool
This provides an easy-to-use menu interface where you can:
- Configure targets
- Set ports and duration
- Adjust evasion levels
- Configure reverse shell settings
- Start assessments
Command-Line Mode
For advanced users and automation:
smb-exploit --target <TARGET_IP> -e 3 --http-tunnel -d 1200
Command-Line Options
--target TARGET Target host(s) or file containing targets (required)
-p, --ports PORTS SMB ports (default: 139,445)
-d, --duration SECONDS Assessment duration (default: 1200)
-e, --evasion LEVEL Evasion level 0-3 (default: 3)
-o, --output FILE Output results file (default: exploitation_results.json)
--no-exploit Disable exploitation attempts (scan only)
--http-tunnel Force HTTP tunneling
--reverse-shell-port Port for reverse shell (default: 4444)
--reverse-shell-ip IP for reverse shell (default: auto-detect)
🎨 Interactive Shell Screenshots
The interactive shell provides:
- Colorful ASCII art banner
- Organized menu system
- Configuration tables
- Progress indicators
- Real-time status updates
📋 Examples
Example 1: Quick Security Assessment
# Launch interactive shell
smb
# Then select:
# 1. Configure Target(s) → Enter: 192.168.1.100
# 10. Run Quick Scan
Example 2: Full Penetration Test
smb-exploit --target targets.txt -e 3 --http-tunnel -d 3600 --reverse-shell-port 4444
Example 3: Stealth Assessment
smb-exploit --target 10.0.0.0/24 -e 3 --no-exploit -d 600 -o stealth_scan.json
🔧 Configuration
Evasion Levels
- Level 0: No evasion (direct connection)
- Level 1: Basic evasion (fragmentation, random delays)
- Level 2: Moderate evasion (+ junk data, protocol switching, traffic morphing)
- Level 3: Advanced evasion (+ SSL/HTTP tunneling, protocol impersonation)
Target Specification
Targets can be specified as:
- Single IP:
192.168.1.100 - Multiple IPs:
192.168.1.100,192.168.1.101 - IP with port:
192.168.1.100:8445 - File containing targets:
/path/to/targets.txt
📊 Output
Results are saved in JSON format containing:
- Detected vulnerabilities
- Exploitation attempts and results
- Crash reports
- Evasion techniques used
- Timestamp and metadata
🛡️ Defensive Recommendations
Organizations can use this tool to:
- Test their defenses against SMB exploits
- Validate security controls
- Improve detection capabilities
- Train security teams
Defense Strategies
- Keep systems patched and updated
- Disable SMBv1 protocol
- Enable SMB signing
- Implement network segmentation
- Deploy EDR/XDR solutions
- Monitor for anomalous SMB traffic
- Use application allowlisting
🔒 Security Features
- Requires explicit authorization confirmation
- Comprehensive logging
- Configurable exploit disable mode
- Detailed reporting for compliance
🤝 Contributing
Join us on GitHub: https://github.com/PDFSage/smb_exploitation_tool
This is a security research tool. We welcome contributions that focus on:
- Improving detection capabilities
- Adding defensive features
- Enhancing logging and reporting
- Bug fixes and stability improvements
- Documentation improvements
- New evasion techniques
- Better exploitation modules
Contribution Guidelines:
- Fork the repository
- Create a feature branch:
git checkout -b feature/amazing-feature - Commit your changes:
git commit -m 'Add amazing feature' - Push to the branch:
git push origin feature/amazing-feature - Open a Pull Request
We review PRs regularly and provide feedback. Don't hesitate to reach out!
📝 License
MIT License - See LICENSE file for details
👥 Authors
Security Research Team
🙏 Acknowledgments
This tool is for educational and authorized testing purposes. It demonstrates various SMB vulnerabilities and exploitation techniques to help security professionals understand and defend against these attacks.
📚 Resources
⚖️ Responsible Disclosure
If you discover vulnerabilities in systems during authorized testing, follow responsible disclosure practices:
- Document findings thoroughly
- Report to appropriate parties
- Allow time for remediation
- Follow disclosure guidelines
Remember: With great power comes great responsibility. Use this tool ethically and legally.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file smb_exploitation_tool-1.0.1.tar.gz.
File metadata
- Download URL: smb_exploitation_tool-1.0.1.tar.gz
- Upload date:
- Size: 21.6 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
f2b48d00e3e35f1ba1147defe9e0f4dbf4a7a08e1849aa13cce31a6019fae8ab
|
|
| MD5 |
08b468ffd5614a0f88cdb834a7575c85
|
|
| BLAKE2b-256 |
dd0660095461790245b243d3324330ea60921459f0feb1c87f0e3e16966a8d35
|
File details
Details for the file smb_exploitation_tool-1.0.1-py3-none-any.whl.
File metadata
- Download URL: smb_exploitation_tool-1.0.1-py3-none-any.whl
- Upload date:
- Size: 22.8 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
e2fd57ef1dea160f24af1d99da9aef1e80dae3596ae8cac3551aa47b7e972845
|
|
| MD5 |
b66287f75ed79891713550562c04d899
|
|
| BLAKE2b-256 |
5f5d05387c517fd3cadc9e6369eb1f56493940f1a03a64e5b9a64a9a5968fca8
|
