Jump to content
Nytro

Zarp - Local Network Attack Framework

By Nytro, in Programe hacking

Recommended Posts

Nytro Mentor

Nytro

Posted
Posted

Lydecker Black

on 7:44 PM

Zarp.png

Zarp is a network attack tool centered around the exploitation of local networks. This does not include system exploitation, but rather abusing networking protocols and stacks to take over, infiltrate, and knock out. Sessions can be managed to quickly poison and sniff multiple systems at once, dumping sensitive information automatically or to the attacker directly. Various sniffers are included to automatically parse usernames and passwords from various protocols, as well as view HTTP traffic and more. DoS attacks are included to knock out various systems and applications. These tools open up the possibility for very complex attack scenarios on live networks quickly, cleanly, and quietly.

The long-term goal of zarp is to become the master command center of a network; to provide a modular, well-defined framework that provides a powerful overview and in-depth analysis of an entire network. This will come to light with the future inclusion of a web application front-end, which acts as the television screen, whereas the CLI interface will be the remote. This will provide network topology reports, host relationships, and more. zarp aims to be your window into the potential exploitability of a network and its hosts, not an exploitation platform itself; it is the manipulation of relationships and trust felt within local intranets. Look for zeb, the web-app frontend to zarp, sometime in the future.

Tool Overview

Broad categories are (see wiki for more information on these):

  • Poisoners
  • Denial of Service
  • Sniffers
  • Scanners
  • Services
  • Parameter
  • Attacks

List of modules accessible from the command line:

bryan@debdev:~/tools/zarp$ sudo ./zarp.py --help

[!] Loaded 34 modules.

____ __ ____ ____

(__ ) / _\ ( _ \( _ '

/ _/ / \ ) / ) __/

(____)\_/\_/(__\_)(__) [Version: 0.1.5]

usage: zarp.py [-h] [-q FILTER] [--update] [--wap] [--ftp] [--http] [--smb]

[--ssh] [--telnet] [-w] [-s] [--service-scan]

optional arguments:

-h, --help show this help message and exit

-q FILTER Generic network sniff

--update Update Zarp

Services:

--wap Wireless access point

--ftp FTP server

--http HTTP Server

--smb SMB Service

--ssh SSH Server

--telnet Telnet server

Scanners:

-w Wireless AP Scan

-s Network scanner

--service-scan Service scanner

bryan@debdev:~/tools/zarp$

Sursa: Zarp - Local Network Attack Framework | KitPloit - PenTest Tools for your Security Arsenal!

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...