PenTestIT RSS Feed
RouterSploit 3.4.0, the long awaited router exploitation framework update is out guys! This release includes some really cool features and updates such as using pycryptodome
from pycrypto
and newer exploitation modules! Read on for the improvements.
What is RouterSploit?
> The RouterSploit Framework is an open-source exploitation framework dedicated to embedded devices. It consists of the following modules that aids penetration testing operations:
>
> * exploits – modules that take advantage of identified vulnerabilities
> * creds – modules designed to test credentials against network services
> * scanners – modules that check if a target is vulnerable to any exploit
> * payloads – modules that are responsible for generating payloads for various architectures and injection points
> * generic – modules that perform generic attacks
setup.py
resourcesexploits/routers/asus/asuswrt_lan_rce.py
module (CVE-2018-5999/CVE-2018-6000)exploits/routers/asus/infosvr_backdoor_rce.py
moduleexploits/routers/billion/billion_5200w_rce.py
moduleexploits/routers/cisco/catalyst_2960_rocem.py
module (CVE-2017-3881)exploits/routers/cisco/firepower_management60_rce.py
module (CVE-2016-6433)exploits/routers/dlink/dir_815_850l_rce.py
moduleexploits/routers/multi/tcp_32764_rce.py
moduleexploits/routers/ubiquiti/airos_6_x.py
moduleOptEncoder
optionuse
command issuetests/exploits/cameras/cisco/test_video_surv_path_traversal.py
tests/exploits/routers/asus/test_infosvr_backdoor_rce.py
tests/exploits/routers/billion/test_billion_5200w_rce.py
tests/exploits/routers/cisco/test_firepower_management60_rce.py
tests/exploits/routers/cisco/test_secure_acs_bypass.py
tests/exploits/routers/dlink/test_dcs_930l_auth_rce.py
tests/exploits/routers/technicolor/test_tg784_authbypass.py
tests/exploits/routers/dlink/test_dsl_2730b_2780b_526b_dns_change.py
exploits/routers/ipfire/ipfire_proxy_rce.py
moduleexploits/routers/ipfire/ipfire_shellshock.py
moduleexploits/routers/linksys/eseries_themoon_rce.py
moduleIf you have an older version checked out, all you now need to get the latest version is run: git pull
in the installed directory and you should be updated to the latest version. In case you do not have it installed, the current version is RouterSploit 3.4.0. Check out the GIT repository, and run
pip3 install -r requirements.txt
./rsf.py
The post UPDATED VERSION: RouterSploit 3.4.0 appeared first on PenTestIT.