Interactive Security Reference Tool: BroSec

Posted on Posted in Tools

Overview

  • Brosec is a reference utility to help Security Bros with useful payloads and commands
  • Brosec utilizes saved configuration variables (set at any time by you) to create custom payloads on the fly. These variables persist in a local database for your convenience.
  • Brosec outputs payloads and copies them to your clipboard in order to make your pentesting even more magical

Usage Example(s)

XXE for Bros

687474703a2f2f692e696d6775722e636f6d2f687872716c766b2e676966

  • Configuration variables can be accessed by the config command at any time, or by entering the variable name
  • Config values can be changed at any time by entering
    set <variable> <value>

687474703a2f2f692e696d6775722e636f6d2f46436174655a4a2e676966_2

  • You can navigate to frequently used payloads by entering the menu sequence from the command line: bros <sequence>
    • Ex: bros 413 – This would automate entering 4 for the Web Menu, 1 for the XXE sub menu, and 3 for the XXE local file read payload

Need a quick web server? Forget python SimpleHTTPServer, bros has your back with bros httpwhen entered via the command line.

687474703a2f2f692e696d6775722e636f6d2f34374248696d342e676966_3

Installation

Mac

  • brew install node netcat – Install Nodejs and netcat (or nc, ncat, etc)
  • git clone https://github.com/gabemarshall/Brosec.git – Clone Brosec repo
  • cd Brosec && npm install – cd into the directory and install npm depdendencies

Linux

  • <package manager> install node build-essential g++ xsel netcat Install Nodejs and other dependencies
  • git clone https://github.com/gabemarshall/Brosec.git – Clone Brosec repo
  • cd Brosec && npm install – cd into the directory and install npm depdendencies

Windows (Unsupported)

  • Install nodejs
  • Install ncat
  • git clone https://github.com/gabemarshall/Brosec.git – Clone Brosec repo

Payloads that utilize netcat will not work due to the kexec library not being supported in Windows

Optional

Add bros directory path to your PATH env variable, create a symlink for the bros file, etc

Configuration

Brosec stores configuration values in a local json db file. The default storage location is /var/tmp, but can be changed by editing settings.dbPath variable in the settings.js file. Brosec also uses netcat for several payloads. If needed, the path to netcat can be altered via the settings.netcat variable.

Payload Variables

  • LHOST : Local IP or name
  • LPORT : Local IP or name
  • RHOST : Remote IP or name
  • RPORT : Remote IP or name
  • USER : Username (only used in a few payloads)
  • PROMPT : User Prompt (This isn’t a stored value. Instead, payloads with this variable will prompt for input.)

images

Quelle: GitHub

Facebooktwittergoogle_plus