automate security audit with – scanning – sniffing – social engeneering

operative systems suported are:
linux-ubuntu, kali-linux, backtack-linux (un-continued), freebsd, mac osx (un-continued)

- netool: its a toolkit written using ‘bash, python, ruby’ that allows you to automate frameworks like nmap, driftnet, sslstrip, metasploit and ettercap mitm attacks. this toolkit makes it easy tasks such as sniffing tcp/udp traffic, man-in-the-middle attacks, ssl-sniff, dns-spoofing, d0s attacks in wan/lan networks, tcp/udp packet manipulation using etter-filters, and gives you the ability to capture pictures of target webbrowser surfing (driftnet) also uses macchanger to decoy scans changing the mac address.

- rootsector: module allows you to automate some attacks over dns_spoof + mitm (phishing – social engineering) using metasploit, apache2 and ettercap frameworks. like the generation of payloads,shellcode,backdoors delivered using dns_spoof and mitm method to redirect a target to your phishing webpage.

recently was introduced “inurlbr” webscanner (by cleiton) that allow us to search sql related bugs, using severeal search engines, also this framework can be used in conjunction with other frameworks like nmap, (using the flag –comand-vul)

- dependencies :

“toolkit dependencies”
zenity | nmap | ettercap | macchanger | metasploit | driftnet | apache2 | sslstrip

“scanner inurlbr.php”
curl | libcurl3 | libcurl3-dev | php5 | php5-cli | php5-curl