A few little handy scripts I have created.

 


WinOCPHC -  Windows Offline Common Password Hash Checker

  • Auto reads file output from hashdump, fgdump, gsecdump, pwdump etc
  • Finds common passwords hashes and lists all users that share passwords
  • Lists disabled accounts (if fgdump/gsecdump tool used and if exist)
  • Lists and checks history passwords ((if fgdump/gsecdump tool used and if exist) and alerts if user has the same password as previously set
  • Masks the hash output for reporting. Not good practice to put a password of the hash in a pen test report..

Download from the CommonExploits GitHub Repository below:

https://github.com/commonexploits/winocphc.git


wEAPe - Weape-Wireless-EAP-Extractor Script

Auto extracts EAP 802.1x user names from wireless access points.

Download from the CommonExploits GitHub Repository below:

https://github.com/commonexploits/weape.git

 


IpGen - Simple IP Address List Creator

This script is a simple front end for Nmap that will list out lists of IP addresses. It will also allow IPs to be excluded, also removes any addresses ending in x.x.x.0 or x.x.x.255.

Download from the CommonExploits GitHub Repository below:

https://github.com/commonexploits/ipgen.git

 


EasyDA – Easy Windows Domain Access Script

redbutton

 

 

 

 

 

 

 

 

Automation script for exploiting Windows domains. Pass the hash/clear text credentials, find common matches and display where the domain administrator is logged in.

Download from the NCC Open Source GitHub Repository below:

https://github.com/nccgroup/easyda

 


ICMP Auto Shell – Automation script to run the ICMPSH tool.

896

 

 

 

 

 

Automation script for the existing ICMPSH tool created/forked by Bernardo Damele. My script has been added to the existing tool repository.

See here for info and usage: http://www.commonexploits.com/?p=896

Download from Inquisb Github :

https://github.com/inquisb/icmpsh

 


Av0id – Metasploit Anti-Virus bypass payload generator

avoid

 

 

 

 

 

Creates Metasploit payloads that help get around most Anti-Virus products. Also creates AutoRun files and changes the exe to look like a PDF file.

See here for info and usage: http://www.commonexploits.com/?p=789

Download from the NCC Open Source GitHub Repository below:

https://github.com/nccgroup/metasploitavevasion

 


Lazymap – Auto NMAP scans and Nessus policy creation. 

 

lazymapbig

 

 

 

 

 

 

 

 

 

 

Automates network scanning with NMAP.

See here for info and usage: http://www.commonexploits.com/?p=713

Download from the CommonExploits GitHub Repository below:

https://github.com/commonexploits/port-scan-automation.git

 


Frogger – The  VLAN Hopper

Does what says in the tin. Hops VLANs.

See here for info and usage: http://www.commonexploits.com/?p=444

Download from the NCC Open Source GitHub Repository below:

https://github.com/nccgroup/vlan-hopping

Change Log

(19/12/12) 1.4 uploaded. 4x faster at CDP scanning, thanks to Bernardo Damele for code improvements. Other improvements made to improve the easy of use.

(18/5/12) 1.2 uploaded, 1.1 was the wrong version I uploaded :/). 1.2 lists VLAN ID’s in a better way.

 


Cisc0wn – Cisco SNMP Tool

 

 

 

Handy tool to brute force SNMP communities, enumerate information such as routing tables, interfaces and download the config file.

See here for info and usage: http://www.commonexploits.com/?p=503

Download from the NCC Open Source GitHub Repository below:

https://github.com/nccgroup/cisco-SNMP-enumeration