fsociety:Penetration Testing Framework

Fsociety is a collection of tools which help the user perform a penetration test. The framework is very useful for the reconnaissance phase of a penetration test. It contains various popular tools which perform a wide range of functions from network scanning to password cracking. fsociety can be considered to be one of the best modular penetration testing framework’s available today.

fsociety: Modular Penetration Testing Framework 

This framework currently contains 15 different tools which all perform different tasks. These tasks can range from hiding the IP address of the user, cracking the password on a web form and vulnerabilities on web servers. When used together, these tools can help user perform a complete penetration test ranging from network reconnaissance to exploitation. Impressively, this framework also includes an automatic SQL injection and database takeover tool. Lastly, users can find social media accounts from a simple username. 

Features: 

fsociety Tools:

Information Gathering:

– sqlmap – Striker – Sublist3r – sherlock – S3Scanner – gitGraber – HydraRecon

Networking Tools:

– nmap – bettercap

Web Hacking:

– XSStrike – Photon

Password Attacks:

– cupp – Cr3d0v3r – Hash-Buster – changeme

Obfuscation:

– Cuteit

Supported Platforms: 

Requirements:

Install 

Clone the repo:

$ git clone https://github.com/fsociety-team/fsociety.git

Run the following command: 

$ pip install fsociety 

Docker

$ docker pull fsocietyteam/fsociety $ docker run -it fsocietyteam/fsociety fsociety

Develop

$ git clone https://github.com/fsociety-team/fsociety.git $ pip install -e ".[dev]"

Usage 

Enter the following command: 

$ fsociety -h 

 

usage: fsociety [-h] [-i] [-s] A Penetration Testing Framework optional arguments: -h, --help show this help message and exit -i, --info gets fsociety info -s, --suggest suggest a tool