Skip to main content

Website attack for sql and WordPress by "pure blood"

See Video Click here
Penetration Testing Framework created for Hackers / Pentester / Bug Hunter 


cr4shcod3purebloodpythonscannerpentest-toolkitframework

Python


Branch: master 

Find file

Clone or download 
@cr4shcod3
cr4shcod3 Merge pull request #12 from AlekKras/master 
Latest commit2c5ce07on Dec 8, 2018
TypeNameLatest commit messageCommit time
imgsPureBlood Material Logo2 years ago
l33tUpdate wot.txt14 months ago
.gitignoreInitial commit2 years ago
LICENSEInitial commit2 years ago
README.mdUpdate README.md2 years ago
pureblood.pyPossible fix?16 months ago
requirements.txtPureBlood v22 years ago

 README.md


Pure Blood

PureBlood Material Logo

License Compatible Python2x Python3x

Pure Blood v2

A Penetration Testing Framework created for Hackers / Pentester / Bug Hunter

Menu

Web Pentest / Information Gathering:

  • Banner Grab
  • Whois
  • Traceroute
  • DNS Record
  • Reverse DNS Lookup
  • Zone Transfer Lookup
  • Port Scan
  • Admin Panel Scan
  • Subdomain Scan
  • CMS Identify
  • Reverse IP Lookup
  • Subnet Lookup
  • Extract Page Links
  • Directory Fuzz (NEW)
  • File Fuzz (NEW)
  • Shodan Search (NEW)
  • Shodan Host Lookup (NEW)

Web Application Attack: (NEW)

  • Wordpress
        | WPScan
        | WPScan Bruteforce
        | Wordpress Plugin Vulnerability Checker
            Features: // I will add more soon.
            | WordPress Woocommerce - Directory Craversal
            | Wordpress Plugin Booking Calendar 3.0.0 - SQL Injection / Cross-Site Scripting
            | WordPress Plugin WP with Spritz 1.0 - Remote File Inclusion
            | WordPress Plugin Events Calendar - 'event_id' SQL Injection
  • Auto SQL Injection
        Features:
        | Union Based
        | (Error Output = False) Detection
        | Tested on 100+ Websites

Generator:

  • Deface Page
  • Password Generator // NEW
  • Text To Hash //NEW

Author's Words:

This project is managed / enhanced everyday and sorry if it takes a while before another version is published. Well, I'm the only one who is managing this and also I have personal daily activities. This tool is for everyone. So please open an issue if you run into a bug. Well I can only test it in Windows and Kali Linux since that's the only device I have. Also please try the new AUTO SQL Injection that I'm proud of currently. I created a video already on how I created it. Check it out on my Youtube Channel. The WPScan is also checked for Windows and Kali Linux. If you are using other Linux Distro please add wpscan in your ~/.bashrc.

Installation

Any Python Version.
$ git clone https://github.com/cr4shcod3/pureblood
$ cd pureblood
$ pip install -r requirements.txt

DEMO

Web Pentest

asciicast

Web Application Attack

asciicast

Build With

Contributing

Pull requests are welcome. For major changes, please open an issue first to discuss what you would like to change. You can also suggest a feature, just open an issue.
You can also:
Buy me a coffee

Authors

License

This project is licensed under the MIT License - see the LICENSE file for details

Comments

Post a Comment

Popular posts from this blog

RouterSploit ..(Exploitation Framework for Embedded Devices)

RouterSploit - Exploitation Framework for Embedded Devices   The RouterSploit Framework is an open-source exploitation framework dedicated to embedded devices. click here to video It consists of various modules   that aids penetration testing operations: exploits - modules that take advantage of identified vulnerabilities creds - modules designed to test credentials against network services scanners - modules that check if a target is vulnerable to any exploit payloads - modules that are responsible for generating payloads for various architectures and injection points generic - modules that perform generic attacks Installation Requirements Required: future requests paramiko pysnmp pycrypto Optional: bluepy - bluetooth low energy Installation on Kali Linux apt-get install python3-pip git clone https://www.github.com/threat9/routersploit cd routersploit python3 -m pip install -r requirements.txt python3 rsf.py Bluetooth Low Energy suppo...
Post a Comment
Read more

Embed Payload (Exe) into a PDF Documents – EvilPDF

 Hey folks, today we are going to talk about the tool that can easily add malicious payloads within the .PDF extension files and after which you can easily access any system. As we know it is prohibited to execute malicious payloads inside the window defender system, hence we will send our payload through the PDF files.   Environment Kali Linux = Attacker Window 10 = Victim ( Tested On ) Lets take a look 🙂 !! EvilPDF The EvilPDF tool is specifically designed to embed payloads inside PDF files. It is an open source tool hosted on the github page that we will download using the wget command. git clone https://github.com/thelinuxchoice/evilpdf cd evilpdf 1 2 git clone https://github.com/thelinuxchoice/evilpdf cd evilpdf It require some additional features that we can download using the following command. python -m pip install pypdf2 1 python -m pip install pypdf2 Now we can use this tool using the given command. python evilpdf.py 1 python evilpdf.py In the image below you have t...
Post a Comment
Read more

TheFatRat ( make a bypass antivirus create payload )

TheFatRat             A Massive Exploiting Tool TheFatRat  is an exploiting tool which compiles a malware with famous payload, and then the compiled maware can be executed on Linux , Windows , Mac and Android.  TheFatRat  Provides An Easy way to create Backdoors and Payload which can bypass most anti-virus. Features ! Fully Automating MSFvenom & Metasploit. Local or remote listener Generation. Easily Make Backdoor by category Operating System. Generate payloads in Various formats. Bypass anti-virus backdoors. File pumper that you can use for increasing the size of your files. The ability to detect external IP & Interface address . Automatically creates AutoRun files for USB / CDROM exploitation Installation Instructions on how to install  TheFatRat git clone https://github.com/Screetsec/TheFatRat.git cd TheFatRat chmod +x setup.sh && ./setup.sh Update cd TheFatRat ./update && c...
Post a Comment
Read more