Fsociety is a collection of tools which help the user perform a penetration test. The framework is very useful for the reconnaissance phase of a penetration test. It contains various popular tools which perform a wide range of functions from network scanning to password cracking. fsociety can be considered to be one of the best modular penetration testing framework’s available today.
fsociety: Modular Penetration Testing Framework
This framework currently contains 15 different tools which all perform different tasks. These tasks can range from hiding the IP address of the user, cracking the password on a web form and vulnerabilities on web servers. When used together, these tools can help user perform a complete penetration test ranging from network reconnaissance to exploitation. Impressively, this framework also includes an automatic SQL injection and database takeover tool. Lastly, users can find social media accounts from a simple username.
- This framework currently contains 16 different tools, which perform a wide variety of tasks ranging from network reconnaissance to SQL injection.
- Contains multiple password crackers which can be used in different situations.
- The user can hide their identity with an IP obfuscator which will effectively make their IP address untraceable.
- Hunt down social media accounts by username across social networks
- Fast subdomains enumeration tool for penetration testers
- A tool to find open S3 buckets and dump their contents
Information Gathering:– sqlmap
Password Attacks:– cupp
- All from
Clone the repo:
$ git clone https://github.com/fsociety-team/fsociety.git
Run the following command:
$ pip install fsociety
$ docker pull fsocietyteam/fsociety $ docker run -it fsocietyteam/fsociety fsociety
$ git clone https://github.com/fsociety-team/fsociety.git $ pip install -e ".[dev]"
Enter the following command:
$ fsociety -h
usage: fsociety [-h] [-i] [-s] A Penetration Testing Framework optional arguments: -h, --help show this help message and exit -i, --info gets fsociety info -s, --suggest suggest a tool