stuff updates is a python scripts and tools useful for pentest, reversing and exploitation process.

stuff updates is a python scripts and tools useful for pentest, reversing and exploitation process.

Latest change 30/5/2016:
+ smbwalk.py; smbwalk: added pydoc info.
+ unmap.py & xor-payloads.py: smbwalk: moved bordel -> stuff
+ ida_scripts *new

stuff is a python scripts and tools useful for pentest, reversing and exploitation process.
Script list:
+ pentestlib2.py: Set of useful functions for pentests.
+ unmap.py: unmap is a script that helps to manipulate nmap XML output, allowing (among other things) to dump to transform the output into a specific plugin (stdout -> default, file, odt, html).
+ smbwalk.py: smbwalk is script to index all browsable files available through SMB shares. From one (or many IP addresses), it will crawl through the shares available for the specified user (default: guest). On top of enumerating the files available, it will fingerprint the file type using the libmagic.
+ xor-payloads: Vigenere-based self-decoding shellcode wrapper for Windows x86-32 (works fine on x86-64)
+ Ida_Script

smbwalk

smbwalk

Features:
– management inflate by fingerprint (more by header)
– for manages normal HTTP proxy ssl
– raw fuzzing functions
– http keep-alive
+ xor-payload.py: XOR-encoded shellcode wrapper for Windows x86-32 (works fine on x86-64)
+ unmap.py: unmap is a script that helps to manipulate nmap XML output, allowing (among other things) to dump to transform the output into a specific plugin (stdout -> default, file, odt, html).It has filtering features to accurately select your targets, which can be definedeither by black listing or white listing, based on IP address, port number, or nmap ServiceName.
+ remote_exploit_template.py
+ pentestlib3.py: Port ti_utils.py for PYTHOn 3 (ng-inside)

example xor-payload

example xor-payload

Usage:

Source: https://github.com/hugsy | Our Post Before