Go to file
2023-03-30 23:09:58 +02:00
files Initial commit. 2022-04-16 18:48:42 +02:00
.gitignore Sync releases, use tokens, rearrange config. 2022-04-20 16:47:01 +02:00
config.json Add plink, allow mimikatz 2023-03-30 23:09:58 +02:00
pendora-box.py Add plink, allow mimikatz 2023-03-30 23:09:58 +02:00
README.md Update README 2022-05-20 12:58:03 +02:00

Pendora Box

This too has several functions:

  • Keep your pentesting scripts, binaries hosted on Github up-to-date.
  • Listen on HTTP or SMB to easily share your files to the victims

To-Do

  • Add chisel x64
  • Integrate msfvenom
  • Add Webshells sync
  • Ability to add comments or description
  • Prettier code
  • Adding more services to listen to ?

Pre-requisites

  • requests python module
  • rpmfile python module
  • impacket smbserver.py must be in PATH

Usage

Create a Github personal access token, and create the file credz.json:

{
    "username": "DwightSchrute",
    "token": "ghp_XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
}
user@wow$ python pendora-box.py -h
usage: pendora-box.py [-h] [-u]

Sync your files and starts a listener on HTTP, SMB or SMB2.

options:
  -h, --help    show this help message and exit
  -u, --update  update your files (described in config.json)

Adding a file to track

Simply add the informations to config.json, for a release set "local_version" to a random value and run the script. The file is gonna be automatically downloaded.

Share a file temporarly

You can add a file you wish to share once in files/tmp. Every time you start the script, you will be asked if you want to clear the folder (if not empty).