Penest tool metapackage development

We are working on the metapackage of pentest / forensic tools.

Goal:

  1. Remove old tools, uncommon tools. Make the pre-installed tool list as lightweight as possible but still effective
  2. Better metapackage for management, installation.
  3. Easier to add new tools.

Phases

  1. Phase 1 (doing): rebuild list based on old list. Remove all uncommonly used tools, out of dated tools, no longer working tools.
  2. Phase 2: Regroup everything
  3. Phase 3: Add new tools to pre-installed list (all tools are on the repository).
  4. Further: maintain tools + add more tools
    Current draft for phase 1:
Package: parrot-tools-info
Architecture: all
Depends:
  0trace, - remove
  amap,
  arping,
  braa, - move to parrot-tools-info-extra
  casefile, -remove
  cdpsnarf, - move to other?
  thc-ipv6,
  dmitry,
  dnsenum,
  dnsmap,
  dnsrecon, - remove
  dnstracer, - remove
  dnswalk, -remove
  enum4linux, -move to other
  etherape, - dont know
  fierce, - move to info-extra
  fping, - remove
  fragrouter, - likely removed from repo
  ftester, - likely removed from repo
  gobuster, - move to enum
  hping3,
  ike-scan,
  intrace, - passive recorn
  irpas,
  lbd,
  maltego,
  masscan,
  metagoofil, - replace by googfileN
  nbtscan,
  netdiscover,
  netmask, - remove or move to extra
  nmap,
  onesixtyone, - move to enum
  p0f,
  recon-ng,
  smbmap, - move to enum
  smtp-user-enum, - move to enum
  snmpcheck, - move to enum?
  ssldump,
  sslh,
  sslscan,
  sslyze,
  swaks, - move to enum
  theharvester,
  unicornscan,
  urlcrazy, - move to other?
  wireshark, - remove from this list
  xprobe, - remove
  ismtp, - move to enum
  python3-shodan,
Section: metapackages
Priority: optional
Description: Pentest tool list for information gathering
  more descriptions here

Package: parrot-tools-vuln
Architecture: all
Depends:
  bed,
  cisco-auditing-tool, - remove
  cisco-global-exploiter, - remove
  cisco-ocs, - remove
  cisco-torch, - remove
  copy-router-config, - remove
  thc-ipv6,
  dhcpig,
  enumiax,
  gvm,
  iaxflood,
  inviteflood,
  lynis, - remove or move to post exploit
  dsniff,
  ohrwurm,
  protos-sip,
  rtpbreak,
  rtpflood,
  rtpinsertsound,
  rtpmixsound,
  sctpscan,
  sfuzz,
  siege,
  sipp,
  slowhttptest,
  spike,
  sipvicious,
  t50, # stress testing. remove or move to extra
  thc-ssl-dos,
  unix-privesc-check,
  voiphopper,
  yersinia,
Section: metapackages
Priority: optional
Description: Pentest tool list for x
  more descriptions here


Package: parrot-tools-web
Architecture: all
Depends:
  apache-users, - remove too old
  burpsuite,
  cadaver,
  commix,
  cutycapt, - suggest remove
  davtest,
  dirb,
  dirbuster,
  fimap, - py2, too slow. Remove
  gobuster,
  httrack,
  jboss-autopwn, - remove from preinstall list?
  joomscan,
  jsql-injection,
  nikto,
  padbuster,
  plecost,
  skipfish, - crawl? move to extra?
  uniscan,
  wapiti, - remove. No useful
  webscarab, - REMOVE
  websploit, - remove or move to MITM
  wfuzz,
  whatweb,
  wig,
  wpscan,
  xsser,
  zaproxy,
Section: metapackages
Priority: optional
Description: Pentest tool list for x
  more descriptions here


Package: parrot-tools-pwn
Architecture: all
Depends:
  armitage,
  beef-xss,
  commix, # py2, slow
  thc-ipv6,
  fimap, # py2
  jsql-injection,
  king-phisher,
  mdbtools,
  metasploit-framework,
  msfpc,
  oscanner,
  pompem,
  set,
  shellnoob,
  sidguesser,
  sqlmap,
  termineter, REMOVE
  websploit, remove or move to mitm
  unicorn-magic,
Section: metapackages
Priority: optional
Description: Pentest tool list for x
  more descriptions here


Package: parrot-tools-maintain
Architecture: all
Depends:
  backdoor-factory, - remove for abaddoned
  bdfproxy, - remove for abaddoned
  cryptcat,
  dbd,
  dns2tcp,
  exe2hexbat, - remove
  hyperion, - no longer work?
  iodine,
  laudanum,
  miredo,
  nishang,
  proxychains,
  proxytunnel,
  ptunnel,
  pwnat,
  sbd,
  shellter,
  socat,
  sslh,
  stunnel4,
  udptunnel,
  webacoo,
  weevely,
  windows-binaries,
  webshells,
Section: metapackages
Priority: optional
Description: Pentest tool list for x
  more descriptions here

Package: parrot-tools-postexploit
Architecture: all
Depends:
  cymothoa,
  mimikatz,
  powersploit,
  passing-the-hash,
  wce,
Section: metapackages
Priority: optional
Description: Pentest tool list for x
  more descriptions here


Package: parrot-tools-password
Architecture: all
Depends:
  brutespray, # remove?
  cewl,
  changeme, think about remove.
  chntpw,
  cmospwd,
  crackle,
  crunch,
  fcrackzip,
  findmyhash,
  hash-identifier, # remove. not 100% accurate (wrong regex)
  hashcat,
  hashid,
  hydra,
  john,
  johnny,
  pack,
  medusa,
  ncrack, # move to extra
  onesixtyone,
  ophcrack-cli,
  ophcrack,
  patator, # Move to extra
  pdfcrack,
  pipal,
  pixiewps,
  rainbowcrack,
  rarcrack,
  rcracki-mt,
  rsmangler,
  samdump2,
  sipcrack,
  sucrack,
  thc-pptp-bruter,
  truecrack,
  twofi,
  wordlists,
  device-pharmer,
  xspy,
Section: metapackages
Priority: optional
Description: Pentest tool list for x
  more descriptions here


Package: parrot-tools-wireless
Architecture: all
Depends:
  aircrack-ng,
  airgeddon,
  asleap,
  bluelog,
  blueranger,
  bluesnarfer,
  btscanner,
  bully,
  cisco-auditing-tool, # remove
  cisco-global-exploiter, # remove
  cisco-ocs, # remove
  cisco-torch, # remove
  copy-router-config, # remove
  cowpatty,
  crackle,
  eapmd5pass,
  fern-wifi-cracker,
  hackrf,
  inspectrum,
  king-phisher,
  mdk3,
  mfcuk,
  mfoc,
  mfterm,
  libfreefare-bin,
  libnfc-bin,
  pixiewps,
  reaver,
  redfang,
  rfcat,
  rtlsdr-scanner,
  ubertooth,
  wifi-honey,
  wifite,
  yersinia,
Section: metapackages
Priority: optional
Description: Pentest tool list for x
  more descriptions here


Package: parrot-tools-sniff
Architecture: all
Depends:
  bdfproxy,
  bettercap,
  chaosreader,
  darkstat,
  dnschef,
  dsniff,
  driftnet,
  etherape,
  ettercap-graphical,
  thc-ipv6,
  fiked,
  hamster-sidejack,
  hexinject,
  isr-evilgrade,
  macchanger,
  mitmproxy,
  netsniff-ng,
  rebind,
  responder,
  sslsniff,
  sslsplit,
  tcpreplay,
  wifi-honey,
  wireshark,
  yersinia,
Section: metapackages
Priority: optional
Description: Pentest tool list for x
  more descriptions here

Package: parrot-tools-forensic
Architecture: all
Depends:
  afflib-tools,
  autopsy,
  binwalk,
  sleuthkit,
  bulk-extractor,
  chkrootkit,
  dc3dd,
  dcfldd,
  ddrescue,
  dex2jar,
  ewf-tools,
  extundelete,
  foremost,
  galleta,
  guymager,
  hashdeep,
  magicrescue,
  mc,
  missidentify,
  pasco,
  pdf-parser,
  pdfid,
  python-peepdf,
  pev,
  radare2,
  recoverjpeg,
  reglookup,
  regripper,
  rifiuti,
  rifiuti2,
  rkhunter, - remove
  safecopy,
  scalpel,
  scrounge-ntfs,
  vinetto,
  volafox,
  volatility,
  xplico,
  yara, move to extra
Section: metapackages
Priority: optional
Description: Pentest tool list for x
  more descriptions here

Package: parrot-tools-car
Architecture: all
Depends:
  can-utils,
  beef-xss, move to other cate
  kayak,
Section: metapackages
Priority: optional
Description: Pentest tool list for x
  more descriptions here

Package: parrot-tools-reversing
Architecture: all
Depends:
  clang, - remove the launchers or move to programs
  dex2jar,
  edb-debugger,
  flasm,
  gdb,
  javasnoop,
  metasploit-framework, - remove launchers
  radare2,
  smali,
Section: metapackages
Priority: optional
Description: Pentest tool list for x
  more descriptions here

Package: parrot-tools-report
Architecture: all
Depends:
  casefile, - remove
  cutycapt, -remove?
  eyewitness,
  faraday-client, - should be server instead
  metagoofil, - remove
Section: metapackages
Priority: optional
Description: Pentest tool list for x
  more descriptions here
4 Likes

Wonderful
Parrot Developers are doing great.
Hope to see more great tings in the future