Pentesting Tools

Nullinux – The Comprehensive SMB Enumeration Tool For Penetration Testing

Nullinux is an internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

If no username and password are provided in the command line arguments, an anonymous login, or null session, is attempted.

Nullinux acts as a wrapper around the Samba tools smbclient & rpcclient to enumerate hosts using a variety of techniques.

Key Features:

  • Single or multi-host enumeration
  • Enumerate shares and list files in root directory
  • Enumerate users & groups
  • Multi-threaded RID Cycling
  • Creates a formatted nullinux_users.txt output file free of duplicates for further exploitation
  • Python 2.7 & 3 compatible

For more information, and example output, visit the wiki page.

Getting Started

In the Linux terminal run:

git clone https://github.com/m8sec/nullinux
cd nullinux
sudo bash setup.sh

Usage

positional arguments:
  target                    Target server
optional arguments:
  -h, --help                show this help message and exit
  -v                        Verbose output
  -o OUTPUT_FILE            Output users to the specified file
  
Authentication:
  -u USERNAME, -U USERNAME  Username
  -p PASSWORD, -P PASSWORD  Password
  
Enumeration:
  -shares                 Enumerate shares only
  -users                  Enumerate users only
  -q, -quick              Fast user enumeration
  -r, -rid                Perform RID cycling only
  -range RID_RANGE        Set Custom RID cycling range (Default: '500-550')
  -T MAX_THREADS          Max threads for RID cycling (Default: 15)
Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Recent Posts

Pystinger : Bypass Firewall For Traffic Forwarding Using Webshell

Pystinger is a Python-based tool that enables SOCKS4 proxying and port mapping through webshells. It…

6 days ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

6 days ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

6 days ago

How to Bash Append to File: A Simple Guide for Beginners

If you are working with Linux or writing bash scripts, one of the most common…

6 days ago

Mastering the Bash Case Statement with Simple Examples

What is a bash case statement? A bash case statement is a way to control…

6 days ago

How to Check if a File Exists in Bash – Simply Explained

Why Do We Check Files in Bash? When writing a Bash script, you often work…

1 week ago