PenBox: An Automated Pentesting Framework

August 24, 2016 | Views: 12470

Begin Learning Cyber Security for FREE Now!

FREE REGISTRATIONAlready a Member Login Here

PenBox – A Penetesting Framework

The Penetration Testing Framework, PenBox, is in the last version. It will have every script that a hacker needs, including:

Information Gathering

  • Nmap
  • Setoolkit
  • Port Scanning
  • Host To IP
  • WordPress user enumeration
  • CMS scanner
  • XSStracer – checks remote web servers for Clickjacking, Cross-Frame Scripting, Cross-Site Tracing and Host Header Injection
  • Doork – Google Dorks Passive Vulnerability Auditor

Password Attacks

  • Cupp
  • Ncrack

Wireless Testing

  • reaver
  • pixiewps

Exploitation Tools

  • Venom
  • SQLmap
  • Shellnoob
  • commix
  • FTP Auto Bypass
  • jboss-autopwn

Sniffing & Spoofing

  • Setoolkit
  • SSLtrip
  • pyPISHER
  • SMTP Mailer

Web Hacking

  • Drupal Hacking
  • Inurlbr
  • WordPress & Joomla Scanner
  • Gravity Form Scanner
  • File Upload Checker
  • WordPress Exploit Scanner
  • WordPress Plugins Scanner
  • Shell and Directory Finder
  • Joomla! 1.5 – 3.4.5 remote code execution
  • Vbulletin 5.X remote code execution
  • BruteX – Automatically brute force all services running on a target

Private Tools

  • Get all websites
  • Get Joomla websites
  • Get WordPress websites
  • Find control panel
  • Find zip files
  • Find upload files
  • Get server users
  • Scan from SQL injection
  • Scan ports (range of ports)
  • Scan ports (common ports)
  • Get server banner
  • Bypass Cloudflare

Post Exploitation

  • Shell Checker
  • POET


  • Sniper


Git clone:

Share with Friends
Use Cybytes and
Tip the Author!
Share with Friends
Ready to share your knowledge and expertise?
  1. This is a great tool kit. Thanks for sharing it.

  2. I am having error while running the script!… Help me out!…

  3. Nice looking script man. Also love the movie/show references 😉

  4. sir please i want to learn this can you help me reach the height you are right now.

  5. I am new to penetration testing and am currently implementing security testing in the company I am working for. We are developing a web-based app. I am a junior tester of nearly two years and have just started the Cybrary – Penetration Testing & Ethical Hacking (CYB-2009) and am finding it very interesting.

    My question is: Would there be any benefit to using this PenBox tool instead of the tools mentioned within the CYB-2009 course. It seems like most of the tools I have covered in the course so far are part of this tool.

Page 1 of 3123»
Comment on This

You must be logged in to post a comment.

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Support Cybrary

Donate Here to Get This Month's Donor Badge


We recommend always using caution when following any link

Are you sure you want to continue?