• We just launched and are currently in beta. Join us as we build and grow the community.

hackerEnv – A Vulnerability Finder and Exploiter

fingerz003

Clown Prince
F
F Rep
0
0
0
Rep
0
F Vouches
0
0
0
Vouches
0
Posts
125
Likes
145
Bits
0
2 MONTHS
2 2 MONTHS OF SERVICE
LEVEL 1 300 XP
Purple-and-Pink-Modern-Work-From-Home-Simple-Presentation.png


Hey Folks, In this tutorial we are going to talk about “hackerenv” github tool that will helps to find and exploit the vulnerability automatically.

About the hackerEnv ?

hackerEnv is an automation tool that quickly and easily scan ports, vulnerabilities and exploit them. After exploit it hands you an interactive shell for further testing. It generates HTML and docx reports. It uses other tools such as hydra, nmap, nikto, metasploit and works in kali linux and Parrot OS.

Lets take a look 🙂 !!

Installation

First we have to download this tool from gitub page with git command. After installation we have to give some permission by going to the directory after which we can run this tool.

git clone https://github.com/abdulr7mann/hackerEnv.git
cd hackerEnv
chmod +x hackerEnv
bash hackerEnv1234git clone
https://github.com/abdulr7mann/hackerEnv.gitcd hackerEnvchmod+xhackerEnvbash hackerEnv

1-18.png

Help

Here is the help command with which we can see the features of the tool.

bash hackerEnv -h1bash hackerEnv-h

2-22.png

Active IP Address

These features can be useful for beginners. After executing the given command it will provide the result of how many IP addresses are activated or assigned.

bash hackerEnv1bash hackerEnv

3-17.png

Example

For an example or testing we will use our vulnerable machine. Now we will give this tool the IP address of the vulnerable machine. After providing the IP address, it will automatically find the open ports.

bash hackerEnv -t < ip address >1bash hackerEnv-t<ip address>

4-17.png


As you can see it has given us the details of open ports and their vulnerability, after which we can exploit vulnerabilities with the help of any search engine or SearchSploit tool. Also you can see that the command execution vulnerability is on the webserver which we can take advantage of and remotely control.

5-17.png


As we mentioned above, it saves the result in HTML format, which we can see from here.

6-16.png


Now we can see the results in depth and it also provides reference to the exploits from which we can go directly to the website.

7-12-1024x465.png
About the AuthorShubham Goyal is a Certified Ethical Hacker, information security analyst, penetration tester and researcher. Can be Contact on Linkedin.
 
You must log in or register to reply here.

428,313

310,989

310,998

I ijupadu
Top