warberry: WarBerryPi – Tactical Exploitation

warberry

WarBerryPi

 

WarBerryPi was built to be used as a hardware implant during red teaming scenarios where we want to obtain as much information as possible in a short period of time with being as stealth as possible. Just find a network port and plug it in. The scripts have been designed in a way that the approach is targeted to avoid noise in the network that could lead to detection and to be as efficient as possible. The WarBerry script is a collection of scanning tools put together to provide that functionality.

Disclaimer

This tool is only for academic purposes and testing under controlled environments. Do not use without obtaining proper authorization from the network owner of the network under testing. The author bears no responsibility for any misuse of the tool.

Install

sudo git clone https://github.com/secgroundzero/warberry.git
cd warberry
sudo bash setup.sh

Usage

To get a list of all options and switches to use:

python warberry.py -h

Options:

–version show program’s version number and exit
-h, –help show this help message and exit
-p PACKETS, –packets=PACKETS Number of Network Packets to capture
-I IFACE, –interface=IFACE Network Interface to use. Default: eth0
-N NAME, –name=NAME Hostname to use. Default: Auto
-i INTENSITY, –intensity=INTENSITY Port scan intensity. Default: T4
-Q, –quick Scan using threats. Default: Off
-P, –poison Turn Poisoning on/off. Default: On
-H, –hostname Do not Change WarBerry hostname Default: Off
-e, –enumeration Disable Enumeration mode. Default: Off
-M, –malicious Enable Malicious only mode. Default: Off
-B, –bluetooth Enable Bluetooth scanning. Default: Off
-r, –recon Enable Recon only mode. Default: Off
-W, –wifi Enable WiFi scanning. Default: Off
-S, –sniffer Enable Sniffer only mode. Default: Off
-C, –clear Clear previous output folders in ../Results
-m, –man Print WarBerry man pages

example usage:

sudo python warberry.py -a -T Attack all TCP Ports
sudo python warberry.py -r Use only the recon modules
sudo python warberry.py -H -I wlan0 Use the wlan0 interface and dont change hostname
sudo python warberry.py -I eth0 -i -T3 Use the eth0 interface and T3 scanning intensity
sudo python warberry.py -I eth0 -N HackerPC Use the eth0 interface and change hostname to HackerPC

Tutorial

Source: https://github.com/secgroundzero/