Skip to content

MWHSCSC-ORG/CSCTK

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

54 Commits

FindBSSID.py

FindBSSID.py

 
 

FindDeauth.py

FindDeauth.py

 
 

FindPID.py

FindPID.py

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

alwaysOpen.sh

alwaysOpen.sh

 
 

android.rb

android.rb

 
 

backdoor.rb

backdoor.rb

 
 

data.py

data.py

 
 

loading10

loading10

 
 

loading15

loading15

 
 

main

main

 
 

setup

setup

 
 

slowloris.pl

slowloris.pl

 
 

uninstall

uninstall

 
 

zengineer.py

zengineer.py

 
 

Repository files navigation

CSCTK (Computer Science Club Toolkit)

A Kali-Linux Toolkit made by the Millard West Computer Science Club that includes the following projects:

  1. Metasploit
  2. DNS Spoofing (Functional but in beta)
  3. Slowloris
  4. Cracking WiFi networks
  5. Zengineer (Formerly known "DATA")
  6. CSCipher (In-Development)

This framework should run under most versions of Linux but is optimized for working on Kali. The setup is very straight-forward just copy and paste the following code into a terminal:

wget https://raw.githubusercontent.com/MWHSCSC-ORG/CSCTK/master/setup
sudo chmod +x setup
sudo ./setup

The setup file checks/installs the following dependencies:

  1. Metasploit Framework
  2. aircrack-ng
  3. Python 3.5
  4. Python 2.7
  5. pip3
  6. ruby
  7. perl
  8. at
  9. libnotify-bin
  10. tput
  11. selenium
  12. bs4

For a detailed description on how each module works check the sections below.

General Layout:

Each individual menu contains multiple sub menus or options for customizable on each individual module. The structure of this toolkit looks like this:

CSCTK
│   README.MD
│   LICENSE  
│
└───Metasploit
│   │   Create an APK
│   │   Use Existing APK
|   |   Exploit APK
│   └───
│   
└───DNS Spoofing
│   │   Use HTTP
│   │   Use HTTPS
│   └───
|
└───Wireless Attack
│   │   Use rockyou.txt
│   │   Use dnsmap.txt
|   |   Use custom wordlist
│   └───
│   
└───Slowloris
│   │   Use HTTP
│   │   Use HTTPS
│   └───
|
└───Social Engineering
│   │   Verbose Mode
│   │   Add Images To HTML Output
|   |   Check Against Every TLD
│   │   Open Links
│   │   Search Multiple Usernames
|   |   Search Douglas County Assessor
│   └───
│   
└───CSCipher
│   │   Enter ciphertext
│   │   Pull from text file
│   └───
└───

##Metasploit This module uses the Metasploit framework built into Kali-Linux to create and Android APK that will allow a back door into the users phone. The script creates the malicious APK file and embeds it into a normal, unsuspicious APK that when opened, will automatically trigger a Perl script to create a persistent backdoor into the users phone. This can be done in two ways, over your local area network (LAN), or you can open a port for the data to be sent to and listen on the local binding for the data coming in. These options can be specified during the process of the script creating the APK. Here's a list of sample command you could use once you connect to the victims phone:

  1. blah
  2. blah
  3. blah
  4. blah
  5. blah

##DNS Spoofing This was intended with the idea in mind to make it as simple as possible to spoof a url quickly and easily. Give it a domain to change to your local IP Address and it will edit the needed files in your system and fire up a cloned version of the page on your network that connects back to you. It's as easy as that!

##Slowloris This toolkit integrates the Slowloris program created by Robert Hansen and is a low bandwidth DoS attack that eats networks for breakfast. You simply specify to go through HTTPS or HTTPS, feed the module an IP and a number of threads and it will get to work.

##Cracking WiFi A tool created by Aaron Vigal to brute force the password for any WiFi Network. This tool works by finding the MAC Address of the networks router and sending it deauthentication packets, and sniffing the network for the devices to reconnect. Once the program has intercepted the hand shake then it will start hashing passwords from a chosen wordlist and comparing it to the handshakes hash. This uses a combination of tools from the aircrack-ng suite and would not be possible without it.

Zengineering Toolkit

This module was created by Thomas Gerot with the intention to scrape common social media outlets and gather information about a given user. The toolkit relies heavily on webpage scraping for social media accounts and selenium driver implementation to handle the dynamic web application used in the Douglas County Assessor. As the toolkit discovers usernames and domains, it will repeat the process for each one.

##CSCipher This tool was designed to help crack encrypted CTF passwords to obtain a flag. You give the module an encrypted string of text via a .txt file or straight through the interface and it will run a variety of analysis's and test to determine what kind of cipher it was encrypted with, and return the decoded message.

##Warning!!! Millard West, its Affiliates and all of this projects Contributers in no way promote or encourage un-lawful hacking and this toolkit should be rightfully used for it's purpose for penetration testing on your own network or any network that you have explicit consent from the Administrator. Millard West, its Affiliates and any Contributers cannot and will not be held liable for any damage or unlawful action that may occur while using this toolkit.

Happy Hacking!

About

A Kali-Linux Toolkit by the Millard West Computer Science Club

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages