README_long.md

🔧 Tools

The tools installed in Exegol are mostly installed from sources in order to have the latest version when deploying Exegol. Some installs are made with go, pip, apt, gem etc. You will find most of the tools in /opt/tools. Some of the tools:

• Responder (https://github.com/lgandx/Responder)
• CrackMapExec (https://github.com/byt3bl33d3r/CrackMapExec)
• lsassy (https://github.com/Hackndo/lsassy)
• sprayhound (https://github.com/Hackndo/sprayhound)
• Impacket (https://github.com/SecureAuthCorp/impacket)
• BloodHound.py (https://github.com/fox-it/BloodHound.py)
• mitm6 (https://github.com/fox-it/mitm6)
• dementor (https://gist.github.com/3xocyte/cfaf8a34f76569a8251bde65fe69dccc)
• aclwpn (https://github.com/fox-it/aclpwn.py)
• icebreaker (https://github.com/DanMcInerney/icebreaker)
• Powershell Empire (https://github.com/BC-SECURITY/Empire)
• DeathStar (https://github.com/byt3bl33d3r/DeathStar)
• AutoRecon (https://github.com/Tib3rius/AutoRecon)
• Sn1per (https://github.com/1N3/Sn1per)
• Sublist3r (https://github.com/aboul3la/Sublist3r)
• ReconDog (https://github.com/s0md3v/ReconDog)
• CloudFail (https://github.com/m0rtem/CloudFail)
• OneForAll (https://github.com/shmilylty/OneForAll)
• EyeWitness (https://github.com/FortyNorthSecurity/EyeWitness)
• wafw00f (https://github.com/EnableSecurity/wafw00f)
• JSParser (https://github.com/nahamsec/JSParser)
• LinkFinder (https://github.com/GerbenJavado/LinkFinder)
• SSRFmap (https://github.com/swisskyrepo/SSRFmap)
• fuxploider (https://github.com/almandin/fuxploider)
• CORScanner (https://github.com/chenjj/CORScanner)
• Blazy (https://github.com/UltimateHackers/Blazy)
• XSStrike (https://github.com/UltimateHackers/Blazy)
• Bolt (https://github.com/s0md3v/Bolt)
• subjack (https://github.com/haccer/subjack)
• assetfinder (https://github.com/tomnomnom/assetfinder)
• subfinder (https://github.com/projectdiscovery/subfinder/cmd/subfinder)
• gobuster (https://github.com/OJ/gobuster)
• amass (https://github.com/OWASP/Amass)
• ffuf (https://github.com/ffuf/ffuf)
• gitrob (https://github.com/michenriksen/gitrob)
• shhgit (https://github.com/eth0izzle/shhgit)
• waybackurls (https://github.com/tomnomnom/waybackurls)
• subzy (https://github.com/lukasikic/subzy)
• findomain (https://github.com/Edu4rdSHL/findomain)
• timing attack (https://github.com/ffleming/timing_attack)
• updog (https://github.com/sc0tfree/updog)
• grc (https://github.com/garabik/grc)
• gron (https://github.com/tomnomnom/gron)
• pwndbg (https://github.com/pwndbg/pwndbg)
• darkarmour (https://github.com/bats3c/darkarmour)
• bat (https://github.com/sharkdp/bat)
• shellerator (https://github.com/ShutdownRepo/shellerator)
• mdcat (https://github.com/lunaryorn/mdcat)
• kadimus (https://github.com/P0cL4bs/Kadimus)
• XSRFProbe (https://github.com/0xInfection/XSRFProbe)
• NoSQLMap (https://github.com/codingo/NoSQLMap)
• krbrelayx (https://github.com/dirkjanm/krbrelayx)
• hakrawler (https://github.com/hakluke/hakrawler)
• JWT tool (https://github.com/ticarpi/jwt_tool)
• JWT cracker (https://github.com/lmammino/jwt-cracker)
• gf (https://github.com/tomnomnom/gf)
• wuzz (https://github.com/asciimoo/wuzz)
• rbcd-attack (https://github.com/tothi/rbcd-attack)
• evil-winrm (https://github.com/Hackplayers/evil-winrm)
• pypykatz (https://github.com/skelsec/pypykatz)
• enyx (https://github.com/trickster0/Enyx)
• enum4linux-ng (https://github.com/cddmp/enum4linux-ng)
• git-dumper (https://github.com/arthaud/git-dumper)
• gopherus (https://github.com/tarunkant/Gopherus)
• arsenal (https://github.com/Orange-Cyberdefense/arsenal)
• proxmark3 (https://github.com/RfidResearchGroup/proxmark3.git)

💡 Resources

In addition to the many tools pre-installed and configured for some, you will find many useful pre-fetched resources like scripts and binaries in /opt/resources. There some pre-EoP enumeration scripts (EoP: Escalation of Privileges) and other useful binaries like Rubeus or mimikatz.

• LinEnum (https://github.com/rebootuser/LinEnum)
• WinEnum (https://github.com/mattiareggiani/WinEnum)
• Linux Smart Enumeration (lse.sh) (https://github.com/diego-treitos/linux-smart-enumeration)
• Linux Exploit Suggester (les.sh) (https://github.com/mzet-/linux-exploit-suggester)
• mimikatz (https://github.com/gentilkiwi/mimikatz)
• linPEAS & winPEAS (https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite)
• pspy (https://github.com/DominicBreuker/pspy)
• sysinternals (https://docs.microsoft.com/en-us/sysinternals/downloads/)
• PowerSploit (https://github.com/PowerShellMafia/PowerSploit)
• PrivescCheck (https://github.com/itm4n/PrivescCheck)
• Inveigh (https://github.com/Kevin-Robertson/Inveigh)
• Rubeus (https://github.com/GhostPack/Rubeus) (pre-compiled binary)
• LaZagne (https://github.com/AlessandroZ/LaZagne)
• SpoolSample (https://github.com/leechristensen/SpoolSample/)
• mimipenguin (https://github.com/huntergregal/mimipenguin)
• mimipy (https://github.com/n1nj4sec/mimipy)
• plink (https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html)
• deepce (https://github.com/stealthcopter/deepce)