Add files via upload

Author: enty8080

_plugins/entysec.rb

@@ -0,0 +1,80 @@
+require 'rouge'
+
+module Rouge
+  module Tokens
+    def self.token(name, shortname, &b)
+      tok = Token.make_token(name, shortname, &b)
+      const_set(name, tok)
+    end
+
+    SHORTNAME = 'z'
+
+    token :EntySec, SHORTNAME do
+      token :Prompt, "#{SHORTNAME}p"
+      token :Error, "#{SHORTNAME}e"
+      token :Good, "#{SHORTNAME}g"
+      token :Status, "#{SHORTNAME}s"
+      token :Warning, "#{SHORTNAME}w"
+      token :Info, "#{SHORTNAME}i"
+    end
+  end
+
+  module Lexers
+    class EntySecConsoleLanguage < Rouge::RegexLexer
+      title 'entysec'
+      tag 'entysec'
+      desc 'EntySec Console Highlighter'
+      filenames []
+      mimetypes []
+
+      def self.keywords
+        @keywords ||= Set.new %w()
+      end
+
+      state :whitespace do
+        rule %r/\s+/, Text
+      end
+
+      state :root do
+        mixin :whitespace
+
+        rule %r{^(pwny:)}, Text, :pwny_prompt
+        rule %r{^\[-\]}, Tokens::EntySec::Error
+        rule %r{^\[\+\]}, Tokens::EntySec::Good
+        rule %r{^\[\*\]}, Tokens::EntySec::Status
+        rule %r{^\[\!\]}, Tokens::EntySec::Warning
+        rule %r{^(\[i\]|\[\?\]|\[>\])}, Tokens::EntySec::Info
+        rule %r{^(\[)}, Text, :hsf_prompt
+        rule %r{^(\()}, Text, :regular_prompt
+        rule %r{.+}, Text
+      end
+
+      state :regular_prompt do
+        mixin :whitespace
+
+        rule %r{ghost|seashell}, Tokens::EntySec::Prompt
+        rule %r{\)}, Punctuation
+        rule %r{>}, Punctuation, :pop!
+      end
+
+      state :hsf_prompt do
+        mixin :whitespace
+
+        rule %r{hsf\d?}, Tokens::EntySec::Warning
+        rule %r{exploit|auxiliary|post}, Text
+        rule %r{:}, Punctuation
+        rule %r{\]}, Punctuation
+        rule %r{[\w/]+}, Tokens::EntySec::Error
+        rule %r{>}, Punctuation, :pop!
+      end
+
+      state :pwny_prompt do
+        mixin :whitespace
+
+        rule %r{(/[\w/]*)(?=\s)}, Tokens::EntySec::Prompt
+        rule %r{(\w+)}, Tokens::EntySec::Status
+        rule %r{\$|\#}, Punctuation, :pop!
+      end
+    end
+  end
+end

assets/css/main.css

@@ -2,26 +2,26 @@
     text-transform: inherit;
 }
 
-.language-hsf .zp {
+.language-entysec .zp {
     text-decoration: underline;
 }
 
-.language-hsf .ze {
+.language-entysec .ze {
     color: #960050;
 }
 
-.language-hsf .zg {
+.language-entysec .zg {
     color: #859900;
 }
 
-.language-hsf .zs {
+.language-entysec .zs {
     color: #268bd2;
 }
 
-.language-hsf .zi {
+.language-entysec .zi {
     font-weight: bold;
 }
 
-.language-hsf .zw {
+.language-entysec .zw {
     color: orange;
 }

docs/getting-started/hatsploit-modules.md

@@ -5,24 +5,34 @@ parent: Getting started
 nav_order: 5
 ---
 
-## About Modules
+Since HatSploit Framework is built aroung a modular system, all the additional functional including exploits, tools or post-exploitation capabilities are implemented within modules.
 
-Since HatSploit Framework has a modular system, all the additional functional including exploits, tools or post-exploitation capabilities are implemented within modules.
+There are the categories that are commonly used:
 
-Modules can be different. They can scan the target for opened ports, exploit security flaws or spoof the traffic.
+* *Auxiliary* - Module provides scanning functionality and only interacts with the target by scanning it.
+* *Exploit* - Module provides an exploit for a specific vulnerability and can be used to exploit it and gain any type of access if used with payload or for DoS, information disclosure and any other impact.
+* *Post* - Module provides a post-exploitation functionality and used when the access to the target system is gained (by exploit module for example).
+
+In short, modules can be different. They can scan the target for opened ports, exploit security flaws or spoof the traffic.
 
 ## Using the module
 
-To use specific module, just type `use` and module name.
+To use specific module, just type `use` and provide module name or index as an argument.
 
-```hsf
+```entysec
 [hsf3]> use exploit/linux/rompager/multi_password_disclosure
 [hsf3: RomPager Multi Password Disclosure]> 
 ```
 
-**NOTE:** You can use the module by its number from `search` or `show` lists.
+{: .note }
+An argument for `use` command can be an index as mentioned above. This index can be obtained for the table produced by `search` or any other command that retrieves module list.
+
+When used, module information can be fetched with `info` command. It provides various descriptions, module authors, references and side effects (if specified).
+
+{: .note }
+`info` command can also be used with a module name or index as an argument. So in order to obtain module information it is not always required to switch to this module.
 
-```hsf
+```entysec
 [hsf3: RomPager Multi Password Disclosure]> info
 
     Name: RomPager Multi Password Disclosure
@@ -46,13 +56,14 @@ References:
   EDB: 33803
 ```
 
-Here we also used `info` command to obtain the general module information.
+The module selected as an example is an *exploit* for `RomPager 4.07` server-side software. It attempts to obtain credentials by sending a malicious requiest to the specified target.
 
-The module we just selected is an exploit for `RomPager 4.07` server. It takes few options and then tries to obtain credentials.
+Any module can be configured by a set of options that are predefined by a module author. Different modules have different options and they vary from module to module. Module options can be listed with `show options` (or shorter form - `options`) and can be set by `set` command. Module can also include advanced options that are hidden by default. They are optional and typically used only when high level of configuration is requied. These options can be displayed by `show advanced` command.
 
-You can list module options using `options` command and list advanced options using `advanced` command.
+{: .note }
+`unset` command can be invoked to empty the option value.
 
-```hsf
+```entysec
 [hsf7: exploit: RomPager Multi Password Disclosure]> options
  
 Module Options (exploit/linux/rompager/multi_password_disclosure):
@@ -64,18 +75,14 @@ Module Options (exploit/linux/rompager/multi_password_disclosure):
     ssl         no       no          Use SSL.
     timeout     10       no          Connection timeout.
     username    admin    yes         Default username.
-```
-
-Options can be set using `set` command and can be set to `None` using `unset`.
 
-```hsf
 [hsf7: exploit: RomPager Multi Password Disclosure]> set host 192.168.1.56
 [i] host => 192.168.1.56
 ```
 
-Finally, to execute the module, you should use command `run`.
+After all the configuration steps are completed, module can be executed by `run` command.
 
-```hsf
+```entysec
 [hsf7: exploit: RomPager Multi Password Disclosure]> run
  
  
@@ -88,7 +95,11 @@ Credentials:
 [+] Exploit module completed!
 ```
 
-**NOTE:** If you want to run module as a background job, use `run -j`.
+{: .note }
+There are different variations of `run` command. For example: `exploit`, `start` and `execute` - they are all just shortcuts.
+
+{: .note }
+If you want to run module as a background job while switching to the next task, use `run -j`. In you want module to execute in loop, use `run -l`.
 
 ## Developing the module
 

docs/getting-started/hatsploit-payloads.md

@@ -5,19 +5,23 @@ parent: Getting started
 nav_order: 6
 ---
 
-## About payloads
+After the successful exploitation, *exploit* module should have something to send in order to get a remote shell or any other kind of impact. This is where payloads come in action. HatSploit provides an extensive interface for payload development and supports all kinds of them:
 
-HatSploit payloads are sent to the target after successful exploitation of vulnerability by module.
+* *Shellcodes* - These payloads are highly architecture dependent due to that they are written in pure assembly. HatSploit enables payload authors to store payloads in assembly code rather then publishing compiled shellcodes.
+* *Scripts* - These payloads can be any script, from BASH, Python or PowerShell code to a single command.
 
-They can differ, from platform and style to architecture and execution.
+All payloads are different and are created for different purposes, however HatSploit has a strict payload system to distinguish them. There are two types of payload:
+
+* *Stager* - Payload that is sent first and the main purpose of which is to read the next (bigger) payload into memory and execute it.
+* *Staged* - Payload that can be sent by itself or after the stager. This payload is flexible and can contain multiple ways it can be executed, while *stager* has only one.
 
 ## Using payloads
 
 To use a specific payload, you should first select the module that supports payload execution.
 
 Let's take `exploit/linux/skybridge/100_110_code_execution` module that exploits the built-in backdoor in several routers and attempts to gain code execution.
 
-```hsf
+```entysec
 [hsf3]> search skybridge
 
 Modules:
@@ -50,7 +54,7 @@ Payload Options (linux/armle/shell_reverse_tcp):
 
 As you can see, we already have a payload preconfigured for us to use on an exploited system. You can invoke `info` command to find more information about the effects of the module.
 
-```hsf
+```entysec
 [hsf3: SkyBridge MB-A100/110 Remote Code Execution]> info
 
     Name: SkyBridge MB-A100/110 Remote Code Execution
@@ -83,4 +87,8 @@ Stability:
 
 Reliability:
   Module spawns weak (unstable) session
-```
+```
+
+## Developing the payload
+
+If you want to contribute and develop your own payload, you might find this guide useful - [Writing Payloads](/docs/development/writing-payloads)

docs/getting-started/hatsploit-plugins.md

@@ -13,16 +13,17 @@ If you are interested in learning how to develop and write your own plugins for
 
 To demonstrate how plugins work, let’s try loading one of the fun plugins included with HatSploit – `cowsay`. The framework provides a dedicated `load` command for this purpose, and its usage is quite simple:
 
-```hsf
+```entysec
 [hsf]> load
 Usage: load <plugin|number>
 ```
 
-**Note:** Plugins can be loaded either by their name or by their number, as listed in the output of `search` or `show` commands.
+{: .note }
+An argument for `load` command can be an index as mentioned above. This index can be obtained for the table produced by `search` or any other command that retrieves plugin list.
 
 When you load the `cowsay` plugin, the following amusing cow message will appear:
 
-```hsf
+```entysec
 [hsf]> load cowsay
 [*] Loading cowsay plugin...
  ________________
@@ -40,17 +41,16 @@ When you load the `cowsay` plugin, the following amusing cow message will appear
 
 Once the plugin is loaded, it adds a new command to the main HatSploit interface.
 
-```hsf
+```entysec
 Cowsay Commands:
  
     Command    Description                
-    -------    -----------                
     cowsay     Ask the cow to say a message.
 ```
 
 Now, executing the newly available `cowsay` command with the argument `HatSploit is Great` will produce the following output:
 
-```hsf
+```entysec
 [hsf]> cowsay 'HatSploit is Great'
  ____________________
 < HatSploit is Great >
@@ -66,13 +66,18 @@ Now, executing the newly available `cowsay` command with the argument `HatSploit
 
 When you no longer need a plugin, you can free up space by unloading it using the `unload` command:
 
-```hsf
+```entysec
 [hsf]> unload
 Usage: unload <plugin|number>
 ```
 
-**Note:** Just like with the `load` command, plugins can be unloaded by their name or their corresponding number from the `search` or `show` lists.
+{: .note }
+An argument for `unload` command can be an index as mentioned above. This index can be obtained for the table produced by `search` or any other command that retrieves plugin list.
 
 ## Discovering more plugins
 
 If you are eager to explore and utilize additional plugins, a more comprehensive collection can be found here - [HatSploit Plugins](/docs/plugins).
+
+## Developing the plugin
+
+If you want to contribute and develop your own plugin, you might find this guide useful - [Writing Plugins](/docs/development/writing-plugins)

docs/getting-started/hatsploit-script.md

@@ -7,11 +7,11 @@ nav_order: 8
 
 HatSploit has the ability to execute interface commands from the given file.
 
-## Writing Script
+## Writing script
 
-I'll create `dirscan.hsf` file, it will be a HatSploit script that scans all directories on `127.0.0.1:8080`.
+The HatSploit script provided below scans all directories at `http://127.0.0.1:8080/`.
 
-```
+```entysec
 use auxiliary/generic/scanner/directory_scanner
     set host 127.0.0.1
     set port 8080
@@ -22,4 +22,5 @@ And after I wrote this simple script, I'll execute it with HatSploit.
 
 > hsf -s script.hsf
 
-**NOTE:** If you do not want to exit after script execution completed, just use `--no-exit` argument.
+{: .note }
+If you do not want to exit after script execution completed, just use `--no-exit` argument.

docs/getting-started/installation.md

@@ -1,13 +1,13 @@
 ---
 layout: default
 title: Installation
-parent: Getting Started
+parent: Getting started
 nav_order: 1
 ---
 
 This guide provides step-by-step instructions on setting up the required components and installing the HatSploit Framework on your system.
 
-## System Requirements
+## System requirements
 
 Before proceeding with the installation, please ensure your system meets the following basic requirements: