Killshot is a penetration testing framework which allows the user to find vulnerabilities in their website. This tool can perform port scanning, CMS detection while also allowing the user to scan for XSS and SQL vulnerabilities.
Killshot: Penetration Testing Framework
After launching Killshot, the user is provided with 9 different modules which vary in function from information gathering to port scanning and backdoor generation. IP address and subdomain detection are available in Killshot which is essential for every penetration tester.
It also allows the user to scan for vulnerable targets through ‘Shodan’ which is a search engine for Internet Connected Devices. In addition, this pentesting framework includes a CMS detector and exploiter. This allows the user to penetrate common content management systems like ‘WordPress’ and ‘Joomla’ which are renowned for their various vulnerabilities.
Features:
- 9 different tools are available in this framework.
- Can perform a diverse range of operations.
- 11 different port scanners are available such as NMAP and Unicorn Scan.
- Backdoor Generator available for offensive attacks.
- Ability to search for IOT devices on ‘Shodan’ with a single API key.
Killshot Modules:
- Spider
- Web technologie
- WebApp Vul Scanner
- Port Scanner
- CMS Scanner
- Fuzzers
- Cms Exploit Scanner
- Backdoor Generation
- Linux Log Clear
Supported Platforms:
- Linux
- Windows
Requirements:
- Ruby
- Curl
- nmap
Killshot Install
Linux
Clone the GitHub repo:
$ git clone https://github.com/bahaabdelwahed/killshot
Navigate to the working directory and install the requirements:
$ cd killshot
$ ruby setup.rb
* If setup show any error just try to install the gems/tool manual
Windows
2. Ruby for Windows rubyinstaller.org/downloads
3. Cmder here cmder.net
4. Curl for 64/32 curl.haxx.se/windows
4. Nmap nmap.org/download.html
Usage
Linux
Enter the following command:
$ ruby killshot.rb
Windows
Run Killshot.rb from the installation directory.
