View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0008558 | Kali Linux | New Tool Requests | public | 2023-12-12 15:35 | 2024-08-02 15:16 |
Reporter | ala_bouali | Assigned To | g0tmi1k | ||
Priority | normal | Severity | minor | Reproducibility | have not tried |
Status | closed | Resolution | reopened | ||
Summary | 0008558: bane - Python library stands out as a robust toolkit catering to a wide spectrum of cybersecurity and networking tasks | ||||
Description | Github ( 231 stars / 0 issues / a0 watchers ) : https://github.com/AlaBouali/bane PypiStats ( hundreds of downloads weekly up to 1516 downloads per day ) : https://pypistats.org/packages/bane Introduction: The "bane" Python library stands out as a robust toolkit catering to a wide spectrum of cybersecurity and networking tasks. Its versatile range of functionalities covers various aspects, including bruteforce attacks, cryptographic methods, DDoS attacks, information gathering, botnet creation and management, and CMS vulnerability scanning, among others. The library's capabilities extend from performing bruteforce login attempts to analyzing web pages for vulnerabilities, managing botnets, and conducting thorough network discovery. Noteworthy is its rich selection of modules, which encompass encryption tools, security testing utilities, network scanning features, and other essential functions. This comprehensive library, written in pure Python, operates seamlessly on both Python 2 and 3, as well as Jython and IronPython. Maintained diligently since April 2018 by its sole developer Ala Bouali, "bane" continues to evolve, offering cybersecurity professionals and network administrators a powerful and self-contained toolkit for their operations. This library is intended exclusively for educational purposes and ethical use with the explicit permission from the people who this tool is used against. The author of this code expressly disclaims any responsibility for any misuse or improper application of this library. It is imperative to emphasize that the user, and the user alone, bears full accountability for their actions when utilizing this library. Any legal ramifications stemming from the misuse of this library are solely the responsibility of the user, and the author shall not be held liable for any such consequences. By utilizing this library, users are acknowledging their understanding and acceptance of these terms and conditions. Documentation: Home Bruteforce: Admin_Panel_Finder : used to search for potential admin panel URLs on a website using a predefined list of extensions. Decryptor : used for performing various cryptographic hash decryption attempts. Files_Manager_Finder : used to search for a filemanager on a website. Force_Browsing : used to perform force browsing on a website by attempting to access various URLs with different extensions. HTTP_Auth_Bruteforce : used to perform HTTP authentication bruteforce attacks on a website. JWT_Manager : provides functionality for analyzing, encoding, decoding, and guessing secret keys for JSON Web Tokens (JWT). JWTs are widely used in web applications for secure data exchange and authentication. Hydra : used for performing brute-force login attempts on various services, including SSH, Telnet, FTP, SMTP, MySQL, and WordPress. It takes a list of username-password combinations and tries to log in using different protocols. It reports success or failure for each combination. Services_Login : class provides a set of methods for performing various login/authentication attempts for different services, such as SMTP, Telnet, SSH, FTP, and MySQL. These methods check for successful login using the provided credentials and options. Web_Login_Bruteforce : used for performing brute-force login attempts on web-based login forms. It takes a list of username-password combinations and tries to log in by filling out the login form. It reports success or failure for each combination. Common_Variables : used to store internal and necessary variables for bane to run including: more than 20k unique user-agents created on importation, valid lists legit values for many HTTP headers to choose from, various file types ( png , jpg , docx , pptx , html , php ... ) used to fill the forms and test of file upload vulnerabilities , ... Cryptographers: BASE64 : provides methods for encoding and decoding data using Base64 encoding. CAESAR : provides methods for encoding and decoding text using the Caesar cipher ( just for fun ) MD5 : provides methods for generating and comparing MD-5 hash values for text and files. SHA1 : provides methods for generating and comparing SHA-1 hash values for text and files. SHA224 : provides methods for generating and comparing SHA-224 hash values for text and files. SHA256 : provides methods for generating and comparing SHA-256 hash values for text and files. SHA384 : provides methods for generating and comparing SHA-384 hash values for text and files. SHA512 : provides methods for generating and comparing SHA-512 hash values for text and files. XOR : provides methods for generating and comparing XOR hash values for text and files. DDoS ( Distributed Denial-of-Service ) : HTTP_Puncher : used for launching HTTP-based DDoS attacks on a target URL. HTTP_Spam : used for launching HTTP-based DDoS attacks on a target URL by spamming each connection with a stream of requests unlike the previous one. Proxies_Hammer : used for launching low-rate HTTP POST requests through a list of proxy servers to a target URL. Proxies_HTTP_Spam : used for launching HTTP-based DDoS attacks on a target URL by spamming each connection with a stream of requests through proxies. Proxies_Xerxes : used for performing a simple DDoS attack by sending NULL characters through a list of proxy servers. Slow_Read : used to perform a slow reading attack on a target server. This attack sends normal HTTP requests but reads them slowly to keep the connection open for an extended period of time. TCP_Flood : used to perform a TCP flooding attack on a target server. This attack floods the target with a large number of TCP packets to overwhelm the server and disrupt its normal operations. Tor_Hammer : used for launching low-rate HTTP POST requests through TOR to a target URL. UDP_Flood : used to perform a DDoS attack by flooding a target server with UDP (User Datagram Protocol) packets. UDP is a connectionless protocol, and this attack generates a large volume of UDP packets to overwhelm the target. VSE_Flood : used to perform a DDoS attack known as the Valve Source Engine Query (VSE) flood attack. The attack sends spoofed queries to Source Engine servers in an attempt to overwhelm them with traffic. This attack is often used in the gaming community to disrupt online game servers. Xerxes : used to perform a DDoS attack using the Xerxes tool. This attack sends NULL characters to a target server to flood it with traffic. The tool is named after the ancient Persian king Xerxes I, known for his invasion of Greece. Information Gathering: Domain_Info : provides methods for gathering information about a domain, including WHOIS data, domain information, and DNS resolution. Dorking_Info : provides a method for performing Google dork searches to find URLs related to a specific query. IP_Info : provides methods for gathering information related to IP addresses, including obtaining your own IP, geolocation information, reverse IP lookup, and Shodan reports. Network_Info : provides methods for network-related tasks, including retrieving local IP addresses, checking if a host is alive, performing TCP port scanning, and obtaining banners from network services. Subdomain_Info : provides methods for extracting and analyzing subdomains associated with a given domain. It can fetch subdomains from sources like crt.sh and the Wayback Machine, allowing you to discover subdomains for a target domain. URL_Info : provides methods for performing security checks, deep inspection, and HTTP OPTIONS requests on a given URL. You can use these methods to analyze and gather information about a specific URL, such as its security status, response headers, and more. Botnet: creation , control and management with a scalable infrastructure : Botnet_Master : used for managing botnet operations. Botnet_Scanner : used for scanning safe IPs all over the internet with a word list to bruteforce various login protocols, including FTP, SSH, Telnet, SMTP, and MySQL. The scan results are saved to text files in the same directory. Botnet_C_C_Server : used for managing a Command and Control (C&C) server for a botnet. Botnet_Malware_Download_Server : used for creating a server to download malware files from a specified folder while preventing path traversal vulnerabilities. Botnet_Reporting_Server : used for creating a server to receive reports from the bots and store them in the database. Botnet_Web_Interface_Server : used for creating a web interface server for managing the botnet. CMS's Vulnerability Scanner : Drupal_Scanner : used to scan a website for Drupal-related information and vulnerabilities. It checks the target URL for Drupal version, server information, subdomains, and possible vulnerabilities. Joomla_Scanner : used to scan a website for Joomla-related information and vulnerabilities. It checks the target URL for Joomla version, server information, subdomains, and possible vulnerabilities. Magento_Scanner : used to scan a website for Magento-related information and vulnerabilities. It checks the target URL for Magento version, server information, subdomains, and possible vulnerabilities. WordPress_Scanner : used to scan a website for WordPress-related information and vulnerabilities. It checks the target URL for WordPress version, server information, subdomains, themes, plugins, and possible vulnerabilities. Data Visualization Stack : ElasticSearch_Scanner : designed to scan an Elasticsearch server for information and vulnerabilities. It checks the target server for Elasticsearch version, performs a basic HTTP request, and retrieves relevant vulnerability information using the Vulners database. Grafana_Scanner : designed to scan a Grafana server for information and vulnerabilities. It checks the target server for Grafana version, server information, subdomains, and possible vulnerabilities. Databases : MariaDB_Scanner : provides a static method for scanning MariaDB installations using the Vulners database. MongoDB_Scanner : provides a static method for scanning MongoDB installations using the Vulners database. Microsoft_SQL_Server_Scanner : provides a static method for scanning Microsoft SQL Server installations using the Vulners database. MySQL_MySQL_Scanner : provides a static method for scanning MySQL Server installations using the Vulners database. MySQL_Oracle_Scanner : provides a static method for scanning MySQL Server installations (Oracle variant) using the Vulners database. PostgreSQL_Scanner : provides a static method for scanning PostgreSQL installations using the Vulners database. Redis_Scanner : provides a static method for scanning Redis installations using the Vulners database. DevOps ( project management ) : Ansible_Scanner : provides a static method for scanning Ansible installations using the Vulners database. Docker_Scanner : provides a static method for scanning Docker installations using the Vulners database. Git_Scanner : provides a static method for scanning Git installations using the Vulners database. Jenkins_Scanner : designed to perform application security testing on Jenkins sites. It scans for known vulnerabilities using the Vulners database and provides detailed information about the Jenkins site's configuration, versions, and potential exploits. Jira_Scanner : designed for application security testing on Jira sites. It scans for vulnerabilities using the Vulners database and provides detailed information about the Jira site's configuration, versions, and potential exploits. Kubernetes_Scanner : provides a static method for scanning Kubernetes installations using the Vulners database. Maven_Scanner : provides a static method for scanning Maven installations using the Vulners database. Puppet_Scanner : provides a static method for scanning Puppet installations using the Vulners database. ERP Solutions : Dolibarr_Scanner : designed to scan a Dolibarr server for information and vulnerabilities. It checks the target server for Dolibarr version, server information, subdomains, and possible vulnerabilities. Odoo_scanner : designed to scan a Odoo server for information and vulnerabilities. It checks the target server for Odoo version, server information, subdomains, and possible vulnerabilities. Javasript Development Eco-System : Angular_Scanner : provides a static method for scanning Angular installations using the Vulners database. AngularJS_Scanner : provides a static method for scanning AngularJS installations using the Vulners database. NodeJS_Scanner : designed to scan Node.js installations for known vulnerabilities using the Vulners database. It provides a static method to perform the scanning process based on the specified Node.js version. NPMJS_Scanner : provides a static method for scanning npm packages using the Vulners database. ReactJS_Scanner : designed to scan React.js installations for known vulnerabilities using the Vulners database. It provides a static method to perform the scanning process based on the specified React.js version. LMS's Vulnerability Scanner : Moodle_Scanner : used to scan a website for Moodle-related information and vulnerabilities. It checks the target URL for Moodle version, server information, subdomains, and possible vulnerabilities. Mobile Applications development Stack : Flutter_Scanner : provides a static method for scanning Flutter installations using the Vulners database. React_Native_Scanner : provides a static method for scanning React Native installations using the Vulners database. Network Discovery and Scanning: Chargen_Amplification_Scanner : used to calculate the amplification factor for a given Chargen server. DNS_Amplification_Scanner : used to calculate the amplification factor for a given DNS server. Echo_Amplification_Scanner : used to calculate the amplification factor for a given Echo server. Memcache_Amplification_Scanner : used to calculate the amplification factor for a given Memcache server. NTP_Amplification_Scanner : used to calculate the amplification factor for a given NTP (Network Time Protocol) server. Ports_Scanner : used to scan a range of ports on a target IP address to check if they are open or closed. SNMP_Amplification_Scanner : used to calculate the amplification factor for a given SNMP (Simple Network Management Protocol) server. SSDP_Amplification_Scanner : used to calculate the amplification factor for a given SSDP (Simple Service Discovery Protocol) server. Operating Systems : Android_OS_Scanner : provides a static method for scanning Android OS installations using the Vulners database. Busybox_OS_Scanner : provides a static method for scanning Busybox OS installations using the Vulners database. CentOS_Scanner : provides a static method for scanning CentOS installations using the Vulners database. Debian_OS_Scanner : provides a static method for scanning Debian OS installations using the Vulners database. FreeBSD_OS_Scanner : provides a static method for scanning FreeBSD OS installations using the Vulners database. IOS_Scanner : provides a static method for scanning iOS installations using the Vulners database. Mac_OS_Scanner : provides a static method for scanning macOS installations using the Vulners database. Ubuntu_OS_Scanner : provides a static method for scanning Ubuntu OS installations using the Vulners database. Windows_OS_Scanner : provides a static method for scanning Windows OS installations using the Vulners database. Vulnerability Scanners: ADB_Exploit_Scanner : used to scan for Android Debug Bridge (ADB) vulnerabilities on a target device. Backend_Technologies_Scanner : used to scan web applications for information about the backend technologies and potential vulnerabilities associated with them. ClickJacking_Scanner : used to scan a web page for Clickjacking protection headers and determine if Clickjacking is possible. CORS_Misconfiguration_Scanner : used to detect Cross-Origin Resource Sharing (CORS) misconfigurations in web applications. CRLF_Injection_Scanner : used to detect potential CRLF (Carriage Return Line Feed) injection vulnerabilities in web applications. CSRF_Scanner : used for scanning and detecting Cross-Site Request Forgery (CSRF) vulnerabilities on web pages. It provides methods to identify vulnerable forms and perform tests to check for CSRF vulnerabilities. Exposed_ENV_Scanner : used for scanning and detecting exposed environment (".env") files on web servers. It provides methods to check if a specific path or multiple common paths lead to an exposed environment file. Exposed_Git_Scanner : used to scan for exposed Git repositories on web servers. It checks if a specific URL is an exposed Git repository and returns a boolean result. Exposed_Telnet_Scanner : used to scan for exposed an unauthenticated Telnet services on a remote host. It attempts to establish a Telnet connection to a specified host and port and returns a boolean result indicating whether the connection was successful or not. File_Upload_Scanner : used to scan web forms for potential file upload vulnerabilities. It searches for forms that allow file uploads, tests the file upload functionality, and reports potential issues such as unacceptable file extensions. Open_Redirect_Scanner : used to scan web forms for potential open redirect vulnerabilities. It detects and reports open redirect issues in web applications, helping security professionals identify and mitigate these risks. Path_Traversal_Scanner : used to scan web applications for Path Traversal vulnerabilities. It provides methods to check for directory traversal and file inclusion vulnerabilities in web pages. PHP_Unit_Exploit_Scanner : used to detect vulnerabilities related to the PHP Unit exploit on a specified website URL. RCE_Scanner : used for scanning web forms for Remote Code / Command Execution (RCE) vulnerabilities using various payload injections. Shodan_Scanner : designed to interact with the Shodan API and retrieve information about a specific IP address. Mixed_Content_Scanner : used to scan web pages for mixed content vulnerabilities, where HTTP content is loaded on an HTTPS page. SpringBoot_Actuator_Exploit_Scanner : used to scan a Spring Boot application for vulnerabilities in the Actuator endpoints. SSRF_Scanner : used for scanning web pages for Server-Side Request Forgery (SSRF) vulnerabilities. SSTI_Scanner : used for scanning websites for Server-Side Template Injection (SSTI) vulnerabilities. Vulners_Search_Scanner : used to search for vulnerabilities in software using the Vulners API. XSS_Scanner : designed for systematically identifying and testing Cross-Site Scripting (XSS) vulnerabilities in web applications. This method allows users to spider through web pages, identify forms, and test them for XSS vulnerabilities. It provides flexibility to test multiple pages and payloads. Web Development : ASPNET_DAST_Scanner : designed to perform dynamic application security testing (DAST) on ASP.NET sites. It scans for known vulnerabilities using the Vulners database and provides detailed information about the ASP.NET site's configuration, version, and potential exploits. PHP_DAST_Scanner : designed to perform dynamic application security testing (DAST) on PHP sites. It scans for known vulnerabilities using the Vulners database and provides detailed information about the PHP site's configuration, version, and potential exploits. Ruby_DAST_Scanner : designed to perform dynamic application security testing (DAST) on Ruby on Rails sites. It scans for known vulnerabilities using the Vulners database and provides detailed information about the Ruby on Rails site's configuration, versions, and potential exploits. Web Development Frameworks : Django_Scanner : provides a static method for scanning Django installations using the Vulners database. FastAPI_Scanner : provides a static method for scanning FastAPI installations using the Vulners database. Flask_Scanner : provides a static method for scanning Flask installations using the Vulners database. Laravel_Scanner : provides a static method for scanning Laravel installations using the Vulners database. Spring_Boot_Scanner : provides a static method for scanning Spring Boot installations using the Vulners database. Spring_Security_Scanner : provides a static method for scanning Spring Security installations using the Vulners database. Symfony_Scanner : provides a static method for scanning Symfony installations using the Vulners database. Web Servers : Apache_Coyote_Server_Scanner : provides a static method for scanning Apache Coyote Server installations using the Vulners database. Apache_HTTP_Server_Scanner : provides a static method for scanning Apache HTTP Server installations using the Vulners database. Apache_Tomcat_Server_Scanner : provides a static method for scanning Apache Tomcat Server installations using the Vulners database. GlassFish_Server_Scanner : provides a static method for scanning GlassFish Server installations using the Vulners database. Jetty_Server_Scanner : provides a static method for scanning Jetty Server installations using the Vulners database. Microsoft_IIS_Server_Scanner : provides a static method for scanning Microsoft IIS Server installations using the Vulners database. Nginx_Server_Scanner : provides a static method for scanning Nginx Server installations using the Vulners database. Payara_Server_Scanner : provides a static method for scanning Payara Server installations using the Vulners database. Windows_Server_Scanner : provides a static method for scanning Windows Server installations using the Vulners database. Web Pages Analyzers: Cookies_Manager : provides methods for managing HTTP cookies. FORMS_FILLER : provides methods for filling HTML forms with data, including injecting payloads into form parameters. FORMS_FINDER : provides methods for extracting and parsing HTML forms from web pages. It offers methods for sorting inputs in forms and parsing forms from web pages. FORM_FILE_UPLOAD : used for extracting and identifying file upload forms from HTML documents. It provides methods to retrieve these forms both from a list of dictionaries and from a URL with HTML content. Pager_Interface : provides various methods for web scraping and JavaScript code analysis. RANDOM_GENERATOR : provides various static methods for generating random data, such as IP addresses, URLs, phone numbers, HTML input colors, and random dates. LOGIN_FORM_FILLER : provides methods for working with login forms in web pages. It includes methods for getting a login form and setting its values for username and password. URLS_Parser : provides methods for parsing and extracting information from URLs and web page sources. It includes methods for converting URLs to form data and extracting links from the page source. Useful Proxing Utilities: BurpSuite_Getter : provides a method for obtaining a Burp Suite proxy configuration. It includes a method for getting the Burp Suite proxy settings with optional host and port parameters. Proxies_Collector : used to collect and verify proxy information from various sources. Proxies_Interface : provides methods for loading, parsing, and converting proxy data for use in various applications. ProxyChecker : responsible for checking the validity and functionality of proxy servers in a list. It can perform proxy checks using either socket-level connections or HTTP requests, depending on the configuration. Proxies_Getter : used to retrieve proxy sockets and proxy settings for various protocols. Proxies_Parser : used to parse and handle proxy configurations and settings. Additional Useful Modules : Userful_Utilities : provides various utility methods for common tasks and operations. Files_Interface : provides utility methods for working with files, including clearing, deleting, writing, and reading files. It also includes methods for creating and reading JSON files. Bane_Instances_Interface : provides utility methods for working with instances of other classes, especially those created for parallel processing. Socket_Connection : provides methods for creating and configuring socket connections. Update_Module_Interface : provides methods for updating the "bane" module to a specified version or the latest version available. Why you should use "bane" Bruteforce Tools: JWT Manager: DDoS Tools: Information Gathering: Botnet Creation and Management: CMS Vulnerability Scanners: Network Discovery and Scanning: Vulnerability Scanners: Additional Useful Modules: Web Page Analyzers: Proxying Utilities: Proxies and TOR Support in Almost All Components ( including the Botnet's master and scanner ) : No DNS Leakage with TOR: Request Routing via Random IPs in TOR: Dynamic Manipulation of HTTP Headers in DDoS Attacks: Enhanced Security Measures: Efficiency: Installation: Download and install Npcap. sudo pip install bane git clone https://github.com/AlaBouali/bane python python3 import bane socket.SOCK_DGRAM: [socket.SOL_UDP], WARNING: can't import layer ipsec: cannot import name 'gcd' from 'fractions' (C:... | ||||
[Homepage] [Download] Source code's release: [Author] Ala Bouali [Licence] MIT [Dependencies] the minimum is python 2 or 3 + pip and it will install itself efficiently. [Similar tools] it is one of its kind, more advanced than any other tools like XSStrike or hulk.py or torshammer... [Activity] started on github since Mars 2019 [How to install] sudo pip3 install bane [How to use] run the python interpreter: python3 then import the library and use it as shown in the following examples: https://github.com/AlaBouali/bane/tree/master/bane/scanners/vulnerabilities#example [Packaged] it's not packaged |
|
Thanks for the suggestion . With features like "bot net" - this is something you would see more with "hacking" rather than being on a professional pentest |
|
re: "With features like "bot net" - this is something you would see more with "hacking" rather than being on a professional pentest" I don't say that you are wrong because it can be used that way, but this project is not for "hacking" but deep pentesting and real world attacks simulations! And about the botnet's stuff, I only provided basic scanners for default logins and just extandable web basic interfaces without any endpoints or malwares or databases schemas... it's just a very minimal starting point to build stuff when it comes to what could potentially considered actual "hacking". You don't build botnet or actually hack things with bane. you just find vulnerabilities / default logins and have some initial starting points to build further projects on your own. that is pretty much similar to many tools that you have on kali linux! I hope you take a second look at the github URL and stats, and see how much people like it. feel free also to review the code and point out your consurns afterward, i would be more than happy to make changes since some stuff can be labeled under "hacking" on my project. |
|
Thanks for the suggesiton, but this tool doesn't feel like its a good fit for Kali at this point in time. |
|
Best of luck with the tool - happy to review again at some stage. |
|
Date Modified | Username | Field | Change |
---|---|---|---|
2023-12-12 15:35 | ala_bouali | New Issue | |
2023-12-12 15:57 | ala_bouali | Note Added: 0018709 | |
2023-12-12 16:00 | ala_bouali | Note Edited: 0018709 | |
2024-03-13 14:03 | daniruiz | Summary | The "bane" Python library stands out as a robust toolkit catering to a wide spectrum of cybersecurity and networking tasks. => bane - Python library stands out as a robust toolkit catering to a wide spectrum of cybersecurity and networking tasks |
2024-05-14 16:36 | g0tmi1k | Note Added: 0019278 | |
2024-05-14 16:37 | g0tmi1k | Assigned To | => g0tmi1k |
2024-05-14 16:37 | g0tmi1k | Status | new => closed |
2024-05-14 16:37 | g0tmi1k | Resolution | open => won't fix |
2024-05-14 17:32 | ala_bouali | Status | closed => feedback |
2024-05-14 17:32 | ala_bouali | Resolution | won't fix => reopened |
2024-05-14 17:32 | ala_bouali | Note Added: 0019293 | |
2024-08-02 15:02 | g0tmi1k | Note Added: 0019598 | |
2024-08-02 15:03 | g0tmi1k | Status | feedback => closed |
2024-08-02 15:16 | g0tmi1k | Note Added: 0019600 |