Net Bomb
This project is intended to be malware to drop into a network to gain initial access during a penetration test. The project will be able to return a shell, return information about the network structure as well as attempt to increase access and spread.
There will be four build modes:
recon - only returns network structure
passive - returns info as well as a reverse shell
quite - spread as quietly as possible with minimal privileges
aggressive - spread to as many devices as possible
The malware is intended to be as safe as possible to avoid actual damage to the company. An additional feature is also in the works to blacklist certain devices that are off limits to the pentest.
I also later want to add more custom build options like turning on and off different evasion protocols etc.
Hopefully there will be support for both Windows and Linux.
EDIT
LWEF:
The LWEF takes the information from the scanner an uses a set of defined rules to look at the data to make decisions on which exploits to launch against systems. It is intended to easily be extendable with new exploits and rules.
PROGRESS:
- local scanner finished ...mostly
- started LWEF (LAN Worm Exploitation Framework)
