mgeeky-Penetration-Testing-.../linux
mgeeky 8b03b5ba40 Added code-exec-templates and some additions to rogue-dot-net 2020-05-07 01:42:52 +02:00
..
README.md Added toggleWaf.sh 2020-05-05 15:03:36 +02:00
find-nessus-plugin.sh Added find-nessus-plugin 2019-06-25 16:06:10 +02:00
openvas-automate.sh First 2018-02-02 22:22:43 +01:00
prepare-kali.sh Added WhatWeb 2020-02-20 16:55:01 +01:00
toggleWaf.sh Added code-exec-templates and some additions to rogue-dot-net 2020-05-07 01:42:52 +02:00

README.md

Linux-based Penetration Testing tools, scripts and cheatsheets.

  • find-nessus-plugin.sh - Given a Nessus plugin ID this script will echo path to the file containing the plugin's NASL code. Useful when there is a need to review what did the Nessus detected.
$ ./find-nessus-plugin.sh 62940
/opt/nessus/lib/nessus/plugins/iis_ftp7_ms12-073.nasl
  • openvas-automate.sh - A simple OpenVAS scanner automation script. If you want to use your custom defined scan type - you'll need to edit script's code, especially targets array and if decision statement in lines 111-137. gist

  • prepare-kali.sh - A script that supplies fresh Kali installation with set of initial packages, configurations, wordlists (/root/data) and a big repository of tools I've found useful (located in /root/tools). (gist)

  • toggleWaf.sh - Simple script used to quickly enable/disable ModSecurity on Apache2