ZeebSploit: Web Scanner Exploitation Information Gathering

ZeebSploit is a tool for hacking, searching for web information and scanning vulnerabilities of a web.

Installation & Usage

apt-get install git
git clone https://github.com/jaxBCD/Zeebsploit.git
cd Zeebsploit
chmod +x install
./install
python3 zeebsploit.py
type ‘help’ for show modules
and follow instruction

Also Read – Pocsuite3 : Open-Sourced Remote Vulnerability Testing Framework

Modules

[Main modules]
+----------+-------------------------------+
| Modules  |          Description          |
+----------+-------------------------------+
| Exploit  |      Exploitation Modules     |
| Scanners |        Scanners Modules       |
|  infoga  | information Gathering Modules |
+----------+-------------------------------+

[Exploit Modules]
+---------------------------+--------------------------------------------------+
|          Modules          |                   Description                    |
+---------------------------+--------------------------------------------------+
|    wp content injection   | wordpress content injection version 4.7 or 4.7.1 |
|        wp revslider       |  wordpress plugin revslider remote file upload   |
|        wp learndash       |      wordpress leardash remote file upload       |
|         wp swhobiz        |   wordpress plugin showbiz remote file upload    |
|     joomla com fabrik     |       joomla component fabrik file upload        |
| joomla manager get config |     joomla component manager auto get config     |
|      joomla jdownload     |  joomla component jdownloads remote file upload  |
|          joomla           |  Joomla ads manager component auto shell upload  |
|     apache struts rce     |      CVE: 2017-5638 - Apache Struts2 S2-045      |
|                           |             remote command execution             |
|        drupal8 rce        |    drupal version 8 remote command execution     |
|  dvr cam leak credential  |              TBK DVR4104 / DVR4216               |
|                           |    - Credentials Leak (Get User and password     |
|     webdav file upload    |                     Nothing                      |
|         ---More---        |        Coming Soon the following version         |
+---------------------------+--------------------------------------------------+

[Scanner Module]
+--------------------+----------------------------------------+
|      Modules       |              Description               |
+--------------------+----------------------------------------+
| subdomain scanner  |         Scan Subdomain for Web         |
|    sqli scanner    |    Scan Sql Injection Vulnerability    |
|    xss scanner     |    Scan XSS Injection Vulnerability    |
|    lfi scanner     | Local File Includes Scanner etc/passwd |
| admin login finder |         Scan Admin Login page          |
| directory scanner  |   scan directory on web use dirhunt    |
| subdomain takeover |      scan type subdomain takeover      |
|     ---More---     |   Coming Soon the following version    |
+--------------------+----------------------------------------+

[Information Gathering]

+--------------------+------------------------------------------+
|      Modules       |               Description                |
+--------------------+------------------------------------------+
|    cms detector    |    a tool for detecting cms on a web     |
|    port scanner    |         Scan Open Port use Nmap          |
| information header |       response header information        |
|   ip geolocation   |   detect the location of an ip or host   |
|   email searcher   |         searching email from web         |
|     traceroute     | to show the route the package has passed |
| robot.txt detector |         Scan Robot.txt from Web          |
| header information |         Response Header Checker          |
|    whois lookup    |     looking for registered users or      |
|                    |  recipients of Internet resource rights  |
|     ---More---     |    Coming Soon the following version     |
+--------------------+------------------------------------------+
R K

Recent Posts

Kali Linux 2024.4 Released, What’s New?

Kali Linux 2024.4, the final release of 2024, brings a wide range of updates and…

3 hours ago

Lifetime-Amsi-EtwPatch : Disabling PowerShell’s AMSI And ETW Protections

This Go program applies a lifetime patch to PowerShell to disable ETW (Event Tracing for…

3 hours ago

GPOHunter – Active Directory Group Policy Security Analyzer

GPOHunter is a comprehensive tool designed to analyze and identify security misconfigurations in Active Directory…

2 days ago

2024 MITRE ATT&CK Evaluation Results – Cynet Became a Leader With 100% Detection & Protection

Across small-to-medium enterprises (SMEs) and managed service providers (MSPs), the top priority for cybersecurity leaders…

5 days ago

SecHub : Streamlining Security Across Software Development Lifecycles

The free and open-source security platform SecHub, provides a central API to test software with…

1 week ago

Hawker : The Comprehensive OSINT Toolkit For Cybersecurity Professionals

Don't worry if there are any bugs in the tool, we will try to fix…

1 week ago