/Pentest-Environment

Auto provisioning pentesting VM

Primary LanguageShellMIT LicenseMIT

PentestEnv

This is my pentest VM. There are many like it but this one is mine.

Overview

  • Ubuntu 18.04 LTS based
  • Kali repos added
  • Vagrant and Ansible Local for provisioning
  • Lighter on tooling than the default Kali install
  • ZSH shell, Budgie DE
  • Some OS hardening applied.

Quickstart

Requires Vagrant and Virtualbox

vagrant plugin install vagrant-disksize
vagrant plugin install vagrant-vbguest
vagrant up

Default creds: vagrant/vagrant

Tools

Development

  • VSCode Insiders
    • Preinstalled extensions:
      • Microsoft
        • Python/C++/C#,Powershell,Go
        • Remote Extensions
        • Live Share
        • Container: Docker, Kubernetes
      • Redhat
        • YAML, XML
        • Java
      • Other Languages etc (Unofficial)
        • Crystal
        • Ruby
        • Jinja
      • UI
        • VSCode Icons
  • Docker + Docker-Compose

Languages/Compilers

  • Python 2 (rip) + 3 (with Pip and Virtual Envs installed)
  • Ruby
  • Crystal
  • Java
  • Go

Security Tooling

  • Network:

    • Port scanning:
      • Nmap
      • Masscan
    • Packet capture:
      • TCPDump
      • Wireshark
    • DNS:
      • ZDNS
      • Sublister
      • DNSWalk
    • TLS scanning:
      • SSLyze
      • SSLScan
    • Metasploit
    • Routersploit

  • Web:

    • Burpsuite (Community. Need to add pro option)
      • Jython Standalone for burpsuite
    • SQLi:
      • SQLMap
      • NoSQLMap
    • CMS scanning:
      • WPScan
      • Joomscan
      • Droopescan
    • Directory busting:
      • Gobuster
      • Dirb (for wordlist)
      • Dirbuster (for wordlist)
    • Domain flyover:
      • Aquatone
      • Eyewtiness
    • Other:
      • Webshells
      • Nikto
      • YoSerial

  • Active Directory:

    • Impacket
    • MITM6
    • Responder
    • Bloodhound
    • CrackMapExec
    • DomainPasswordSpray
    • NTDSAudit

  • Reversing/debugging/disassembly

    • Native:
      • EDB Debugger
      • Ollydbg
      • Ghidra
      • IDA Free
    • Java:
      • JavaSnoop
      • JD-GUI
    • Binwalk

  • Mobile

    • MobSF
    • Frida
    • Android
      • Android SDK
      • APKtool
      • Drozer
      • Dex2JAR
      • Smali
      • Qark

  • Sploits and PrivEsc tooling

    • Offsec ExploitDB
    • Offsec ExploitDB binary sploits
    • Linux kernel exploits
    • PayloadAllTheThings
    • Xiphos
    • LinEnum

  • Reporting

    • Keepnote
    • CherryTree

  • Other:

    • Cheatsheets:
      • OWASP Cheatsheets
      • Awesome security repos
    • Papers:
      • ExploitDB papers
    • Wordlists:
      • SecLists
      • Probable Wordlists
      • SSH badkeys