Nettacker - Auto Pentest Framework

[MR.Wolf]

Привет! Хочу сделать небольшой обзор на инструмент, целью которого является автоматизация процесса получения доступа к выбранному вами ресурсу, посредством проведения брутфорс-атаки, сканирования доменов и подсетей.



Собственно, Nettacker:

Установка: (Kali Linux 2017.1)

git clone https://github.com/Nettacker/Nettacker

cd Nettacker

 pip install –r requirements.txt

chmod +x nettacker.py

>

./nettacker.py

Справка:

./nettacker.py –h

Пример запуска (с опцией брутфорс-атаки):

./nettacker.py –targets=example.com –method=ssh_brute –ports=22 –usernames=admin –passwords=admin

Возможно, кому-то пригодится. Спасибо.

 

[mrclient]

Извиняюсь, но в Nmap'е команды длиннее, чем этот обзор позор

 

[илья66]

"Hey guys, just wanted to chip in that I've used Nettacker in the past for some of my bug hunting gigs and it's definitely a solid tool. The Auto Pentest Framework part is what makes it stand out, saves a ton of time when you're scanning multiple targets. Has anyone else had experience with it?"

 

[shirif_76ua]

"Hey guys, just wanted to throw in my two cents, but I've been playing with Nettacker and it's seriously powerful. I've managed to automate some pretty complex pentesting scenarios using their API and it's saved me a ton of time. Has anyone else had any success with it?"