a Python-based tool to streamline and centralize some pentesting tasks
Lucille is a comprehensive web application security testing tool designed for cybersecurity professionals. built with Python, Lucille offers a suite of user-friendly tools, it aims to provide an efficient and practical tools streamlining pentesting tasks and centralizing various audit and exploitation techniques.
The previous version of Lucille has been fully removed. This is version 2, which includes more tools and fewer bugs. We recommend using this updated version for all your web application security testing needs. This new version offers enhanced functionality, improved stability, and a more efficient workflow 🚀 .
git clone https://github.com/jasonxtn/lucille.git
cd Lucille
pip install -r requirements.txt
To launch use :
python lucille.py
or
python2 lucille.py
Lucille provides a comprehensive set of tools for web application security testing:
- Information Gathering:
- DNS Lookup + Cloudflare Detector
- Whois Lookup
- Zone Transfer
- Reverse IP Lookup
- Linkgrabber
- Password Attacks:
- WordPress Brute Force
- Joomla Brute Force
- CPanel Brute Force
- Mass Brute Force + CMS Filter
- Exploitation Tools:
- Admin Panel Finder
- MD5 Decryptor
- Post-Exploitation Tools:
- Shell Checker
- SMTP Tester
- Mail List From Config
To use a specific tool:
- Launch Lucille from the command line.
- Select the desired tool from the main menu.
- Follow the on-screen prompts to input the required information.
- Review the results provided by the tool.
If you find Lucille helpful or interesting, please consider giving us a star on GitHub. Your support helps promote the project and lets others know that it's worth checking out.
Thank you for your support! 🌟