fsociety: Modular Penetration Testing Framework


fsociety: Modular Penetration Testing Framework

Fsociety is a collection of tools which help the user perform a penetration test. The framework is very useful for the reconnaissance phase of a penetration test. It contains various popular tools which perform a wide range of functions from network scanning to password cracking. fsociety can be considered to be one of the best modular penetration testing framework’s available today.

fsociety logo

fsociety: Modular Penetration Testing Framework 

This framework currently contains 15 different tools which all perform different tasks. These tasks can range from hiding the IP address of the user, cracking the password on a web form and vulnerabilities on web servers. When used together, these tools can help user perform a complete penetration test ranging from network reconnaissance to exploitation. Impressively, this framework also includes an automatic SQL injection and database takeover tool. Lastly, users can find social media accounts from a simple username. 

Features: 

  • This framework currently contains 16 different tools, which perform a wide variety of tasks ranging from network reconnaissance to SQL injection. 
  • Contains multiple password crackers which can be used in different situations. 
  • The user can hide their identity with an IP obfuscator which will effectively make their IP address untraceable. 
  • Hunt down social media accounts by username across social networks 
  • Fast subdomains enumeration tool for penetration testers 
  • A tool to find open S3 buckets and dump their contents 

fsociety Tools:

Information Gathering:

sqlmap
– Striker
– Sublist3r
– sherlock
– S3Scanner
– gitGraber
– HydraRecon

Networking Tools:

– nmap
bettercap

Web Hacking:

XSStrike
Photon

Password Attacks:

– cupp
Cr3d0v3r
– Hash-Buster
– changeme

Obfuscation:

– Cuteit

Supported Platforms: 

  • Linux 

Requirements:

  • All from requirements.txt

Install 

Clone the repo:

$ git clone https://github.com/fsociety-team/fsociety.git

Run the following command: 

$ pip install fsociety 

Docker

$ docker pull fsocietyteam/fsociety
$ docker run -it fsocietyteam/fsociety fsociety

Develop

$ git clone https://github.com/fsociety-team/fsociety.git
$ pip install -e ".[dev]"

Usage 

Enter the following command: 

$ fsociety -h 
usage: fsociety [-h] [-i] [-s]

A Penetration Testing Framework

optional arguments:
  -h, --help     show this help message and exit
  -i, --info     gets fsociety info
  -s, --suggest  suggest a tool
Documentation Box
Download Box