www.OffSecNewbie.com
Search…
Intro
Pre-engagement
General methodology
OSCP Templates
Recon
Attack Types
Network
Shells
Port Forwarding / SSH Tunneling
Transferring files
Web
SQL
Password cracking
Useful Linux Commands
Android
Buffer Overflow
TCP Dump and Wireshark Commands
Cloud Pentesting
Privilege Escalation
Linux
Windows
Kali Configuration
My bash Profile Files
Terminator Configuration
Tmux Configuration
Fish Config
Useful things to Install
VSCode Configuration
Automated
Tools
Videos
My Youtube Channel
IppSec Videos
The Cyber Mentor
VMs Similar to OSCP
Machines Similar to OSCP
Search Ippsec's Videos
Search Ippsec's Videos
Pcap Analysis
Pcap analysis
RegEx
MSFvenom Cheetsheet
Support me
Donate
Powered By GitBook
Useful things to Install

Hotwax

1
https://github.com/BrashEndeavours/hotwax
Copied!
Hotwax is a script to provision a set of extra pentesting tools onto a Kali Linux machine in a consistent manner.
Tools updated:
1
Samba 4.10.8 (smbclient,rpcclient,nmblookup - Patched to fix issues with polenum, enum4linux, and restoring smbclient connection output.
2
enum4linux - Fix minor parsing issues. Updates temporarily included by BrashEndeavours fork, until PR is merged.
Copied!
Tools installed:
1
AutoRecon - AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
2
chisel - A fast TCP tunnel over HTTP
3
gobuster - Directory/File, DNS and VHost busting tool written in Go
4
LinEnum - Local Linux Enumeration & Privilege Escalation Script
5
nishang - Framework and collection of scripts and payloads which enables usage of PowerShell for penetration testing.
6
One-Lin3r - On demand one-liners that aid in penetration testing operations, privilege escalation and more
7
PowerSploit - Collection of Microsoft PowerShell modules that can be used to aid penetration testers during all phases of an assessment.
8
proxychains-ng - proxychains ng (new generation) - a preloader which hooks calls to sockets in dynamically linked programs and redirects it through one or more socks/http proxies. continuation of the unmaintained proxychains project.
9
pspy - Monitor linux processes without root permissions.
10
SecLists - Collection of usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and more.
11
sherlock - Find usernames across social networks.
12
sshuttle - Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
13
webshell - This is a webshell open source project.
14
Windows PHP Reverse Shell - Simple php reverse shell implemented using binary, based on an webshell.
15
OSCP Exam Report Template - Modified template for the OSCP Exam
Copied!
Check out One-Lin3r it's particularly useful
To enable access to script from any directory, example below
1
ln -n ~/go/bin/hakrawler /usr/local/bin/
Copied!

Enum4LinuxPy

1
https://github.com/0v3rride/Enum4LinuxPy
Copied!
The original Perl version has a number of outstanding issues that have been open for over a year and have not been addressed. This results in mangled output, errors, etc.

grc - frontend for generic colouriser grcat

1
apt install grc
Copied!
1
alias nmap='grc nmap'
Copied!
​
Kali Configuration - Previous
Fish Config
Next - Kali Configuration
VSCode Configuration
Last modified 1yr ago
Copy link
Contents
Hotwax
Enum4LinuxPy
grc - frontend for generic colouriser grcat