Darksplitz - Exploit Framework
This tools is continued from Nefix, DirsPy as well as Xmasspy project.
Installation
Will operate fine inwards the debian shade operating system, similar Backbox, Ubuntu or Kali linux.
$ git clone https://github.com/koboi137/darksplitz$ cd darksplitz/$ sudo ./install.sh
Features
- Extract mikrotik credential (user.dat)
- Password generator
- Reverse IP lookup
- Mac address sniffer
- Online md5 cracker
- Mac address lookup
- Collecting url from web.archive.org
- Web backdoor (Dark Shell)
- Winbox exploit (CVE-2018-14847)
- ChimeyRed exploit for mipsbe (Mikrotik)
- Exploit spider web application
- Mass apple tree dos (CVE-2018-4407)
- Libssh exploit (CVE-2018-10933)
- Discovering Mikrotik device
- Directory scanner
- Subdomain scanner
- Mac address scanner
- Mac address pinger
- Vhost scanner (bypass cloudflare)
- Mass bruteforce (wordpress)
- Interactive msfrpc client
Exploit spider web application
- plUpload file upload
- jQuery file upload (CVE-2018-9206)
- Laravel (.env)
- sftp-config.json (misc)
- Wordpress register (enable)
- elfinder file upload
- Drupal vii exploit (CVE-2018-7600)
- Drupal 8 exploit (CVE-2018-7600)
- com_fabrik exploit (joomla)
- gravityform plugin file upload (wordpress)
- geoplace3 plugin file upload (wordpress)
- peugeot-music plugin file upload (wordpress)
Notes
This tool volition operate fine nether root, because scapy module as well as other ask root user to access to a greater extent than features. But yous tin give the axe run equally user equally good inwards only about features. ;)
