killshot: Penetration Testing Framework

Penetration Testing Framework, an information collection tool & site vulnerability scanner.

You can use this tool to check your site and get important information as well as collect information automatically using whatweb or wafw00f or to identify cms and find vulnerabilities in your site using Cms Exploit Scanner & & WebApp Vul Scanner as well.

You can use the killshot for automatic multi-type scan with nmap and unicorn. With this tool, you can create PHP Simple Backdoors, upload shells manually and connect to the target using it killshot

This tool has a simple Ruby Fuzzer Tested on VULSERV.exe and Linux Log clear script To change the contents of the login paths, Spider can help you find site parameters and scan for xss and sql vulnerabilities.

Installation

Installation on Linux

git clone https://github.com/bahaabdelwahed/killshot
cd killshot
ruby setup.rb (if setup show any error just try to install the gems/tool manual )
ruby killshot.rb

Installation on Windows

Download ruby for windows https://rubyinstaller.org/downloads/
Download Cmder here        http://cmder.net/
Download Curl For 64/32   https://curl.haxx.se/windows/
Download nmap              https://nmap.org/download.html

Use

Menu

{0} Spider 
{1} Web technologie 
{2} WebApp Vul Scanner
{3} Port Scanner
{4} CMS Scanner
{5} Fuzzers 
{6} Cms Exploit Scanner
{7} Backdoor Generation
{8} Linux Log Clear

WebApp Vul Scanner

{1} Xss scanner
{2} Sql Scanner
{3} Tomcat RCE

Port Scanner

 [0] Nmap Scan
 [1] Unicorn Scan
Nmap Scan 
 [2] Nmap Os Scan 
 [3] Nmap TCP Scan
 [4] Nmap UDB Scan 
 [5] Nmap All scan
 [6] Nmap Http Option Scan 
 [7] Nmap Live target In Network
Unicorn Scan
[8] Services OS 
[9] TCP SYN Scan on a whole network 
[01] UDP scan on the whole network

Backdoor Generation

{1} Generate Shell
{2} Connect Shell

Video demo

Application snapshots