Projects
FI Cyberspace Scan
https://github.com/rtcrowley/fi-cyberspace-scan
Local File Inclusion CLI tool written in Python. Set different Cyber-Attack Modes, unique Encoded Path Types or turn on Deep Directory Traversal or NULL Bytes.
Linux Private-i
https://github.com/rtcrowley/linux-private-i
Linux enumeration tool to automate basic Privilege Escalation tasks. CLI menu, portable and output is in an easily readable format.
SNMP rock
https://github.com/rtcrowley/snmprock
A SNMP enumeration tool designed for use in Kali. Find running unique host resources, automate kernel exploit search,etc. Uses snmpwalk, searchsploit and nmap.
XMLRPC-Armor
https://github.com/rtcrowley/xmlrpc-armor
Shell script to block IP's of XMLRPC Amplification attackers at the firewall level (iptables). Best to setup on a cron to run fairly often. Designed for smaller sites with XMLRPC enabled.
TopSploit
https://github.com/rtcrowley/topsploit
A quick way to search well-known exploits for a known target during crunch time. Search manually or run the Detector to search against an OS fingerprint.
GoldenEye - Vulnerable VM
https://drive.google.com/open?id=1M7mMdSMHHpiFKW3JLqq8boNrI95Nv4tq
or
https://www.vulnhub.com/entry/goldeneye-1,240/
An OSCP type vulnerable machine themed after GoldenEye (N64 & Movie:). There's a hint of CTF, but a great machine for OSCP prep - or just to sharpen your skills.
- No extra tools other than what's on Kali by default
- Any brute forcing will only need fasttrack.txt or less
- Tested on VMware and VirtualBox
- Difficulty Rating: Intermediate
Wintermute - Vulnerable VM's
https://drive.google.com/open?id=1bHgdx0iI24jv7MDzKcrIPtd9rVFaVokR
or
https://www.vulnhub.com/entry/wintermute-1,239/
Another OSCP type lab involving two VM's. Great to practice pivoting and post-exploitation on, which I've found many OSCP prep labs lack.
- No extra tools other than what's on Kali by default
- Any brute forcing will need small wordlists & no exploit dev/BO's
- Tested on VirtualBox
- Difficulty Rating: Challenging
Moonraker - Vulnerable VM
http://drive.google.com/open?id=13b2ewq5yqre2UbkLxZ58uHtLfk-SHvmA
or
https://www.vulnhub.com/entry/moonraker-1,264/
A web-based Boot2Root machine themed on the movie Moonraker.
- Difficulty: Challenging
- No extra tools besides what's on Kali by default
- Tested on VMware
- Learning Objectives: Client-side Attacks, NoSQL, RESTful, NodeJS, Linux Enumeration and Google-fu.