eXpliot - Internet Of Things Exploitation Framework

Read Vietnamese version

Internet Of Things Exploitation Framework
   eXpliot is a Framework for Security Testing IoT and IoT infrastructure. It provides a set of plugins (test cases)  and can be extended easily to create new plugins. The name eXpliot is a pun on Exploit and explains the purpose of the Framework i.e. IoT exploitation. It's developed in Python 3.

Note: eXpliot is developed in Python 3. It will not work on Python 2

Objective:
 * Easy to use
 * Easy to extend
 * Support for most IoT protocols
 * Support for Radio IoT protocols
 * Support for hardware protocols
 * One-stop-shop for IoT and IoT infrastructure security testing.

Install and Run:
Run eXploit:
   Enter this command to start and run eXpliot: efconsole

Update: cd expliot && git pull -f

Contribution:
 * Suggest new plugins/test cases
 * Share any vulnerability information that can be translated to a plugin
 * Please do not submit a patch, instead send me an email about what you have in mind
 * Report bugs

Author:
   Name: Aseem Jakhar
   Twitter: @aseemjakhar
   Linkedin: Aseem Jakhar

Huge shout out to:
 * The one and only computer pirate ;)
 * null - The open security community
 * Abhisek Datta
 * Javier Vazquez Vidal
 * Milosch Meriac
 * Payatu Bandits
 * Hardwear.io Conference
 * nullcon Conference

Screenshot:

Download eXpliot

The PenTesters Framework (PTF) - A Python script to create a Similar and Familiar distros for PenTesters

Instructions:
   First check out the config/ptf.config file which contains the base location of where to install everything. By default this will install in the /pentest directory. Once you have that configured, move to running PTF by typing python ptf.

   This will put you in a Metasploitesque type shell which has a similar look and feel for consistency. Show modules, use <modules>, etc. are all accepted commands. First things first, always type help or ? to see a full list of commands.

   For a video tutorial on how to use PTF, Check out the HackerSploit video:

Install framework:
Install and use modules (or hacking tools):
   Use this command to show all modules (or hackinng tools): show modules
   To search a module (or hacking tool) let use this command: search [keyword]

   Install module (hacking tool):
Update all modules:
The PenTesters Framework (PTF) - Install Hacking tools easier for PenTesters
   A TrustedSec Project - Copyright 2018
   Written by: David Kennedy (@HackingDave)
   Website: https://www.trustedsec.com
   Twitter: @TrustedSec, @HackingDave

   The PenTesters Framework (PTF) is a Python script designed for Debian/Ubuntu/ArchLinux based distros to create a similar and familiar distribution for Penetration Testing. As pentesters, we've been accustom to the /pentest/ directories or our own toolsets that we want to keep up-to-date all of the time. We have those "go to" tools that we use on a regular basis, and using the latest and greatest is important.

   PTF attempts to install all of your penetration testing tools (latest and greatest), compile them, build them, and make it so that you can install/update your distribution on any machine. Everything is organized in a fashion that is cohesive to the Penetration Testing Execution Standard (PTES) and eliminates a lot of things that are hardly used. PTF simplifies installation and packaging and creates an entire pentest framework for you. Since this is a framework, you can configure and add as you see fit. We commonly see internally developed repos that you can use as well as part of this framework. It's all up to you.

   The ultimate goal is for community support on this project. We want new tools added to the GitHub repository. Submit your modules. It's super simple to configure and add them and only takes a few minute.

Download PTF

IMPROVING YOUR ADSENSE CTR FOR HIGHER ONLINE INCOME

IMPROVING YOUR ADSENSE CTR FOR HIGHER ONLINE INCOME

WE HAVE EXPLAINED THAT YOUR ADSENSE CLICK THROUGH RATE (CTR) IS THE PERCENTAGE OF VISITORS TO YOUR PAGE THAT CLICK ON AN ADSENSE ADVERT. SO, IF YOU HAVE 20,000 VISITORS EACH MONTH, AND YOU GET 40 CLICKS ON ADSENSE ADS, YOUR CTR IS 0.2% IF YOU GET 500 CLICKS ON ADS, YOUR CTR IS 2.5%. IRRESPECTIVE OF THE CPC, YOU WANT YOUR CTR TO BE AS HIGH AS POSSIBLE.

WE PROVIDED SOME INCOME EXAMPLES AT THE BEGINNING OF THIS BLOG POST, AND HERE ARE SOME MORE. IF THE AVERAGE CPC PAID BY GOOGLE TO YOU IS 40C, THEN THE ABOVE EXAMPLES WOULD GIVE YOU A MONTHLY INCOME OF $16 AND $200. IF YOU CAN INCREASE YOUR CPC TO 80C, THEN YOU EARN $32 TO $400 EACH MONTH. THE GREATER YOUR CTR THE BETTER FOR YOU – YOU HAVE MORE CONTROL OVER THIS WITH AD PLACEMENT THAN YOU HAVE OVER CPC!

SOME PEOPLE MAKE THOUSANDS EVERY MONTH USING ADSENSE ON MULTIPLE SITES. HOWEVER, EVEN WITH ONE BLOG, YOU HAVE NO REASON NOT TO MAXIMIZE YOUR INCOME BY USING SOME BASIC COMMON SENSE: PLACE YOUR ADSENSE ADS ON THOSE AREAS OF YOUR WEBSITE OR BLOG ON WHICH PEOPLE TEND TO SPEND MOST TIME.

WHY GOOGLE RECOMMENDS IMAGE AND VIDEO ADS

WHY GOOGLE RECOMMENDS IMAGE AND VIDEO ADS

YOU CAN ONLY SHOW ONE IMAGE OR VIDEO ADVERT AT A TIME – YOU CANNOT DISPLAY A ROW OF IMAGE ADS AS YOU CAN TEXT ADS. THIS FOCUSES YOUR VISITOR’S ATTENTION ON ONE ADVERT. THE MORE POPULAR ADVERTISERS, MANUFACTURERS AND SERVICE PROVIDERS LIKE TO PROMOTE THEIR BRAND. THIS MEANS A LOGO OR SOME OTHER IMAGE THAT THEY INCLUDE IN THEIR ADSENSE ADVERTISING.

IT ALSO MEANS THAT THEY ARE MORE LIKELY TO CREATE VIDEOS TO PROMOTE THEIR BUSINESSES. SUCH ADVERTS TEND TO PAY MORE PER CLICK THAN SIMPLE TEXT ADS – BUT ONLY IF THE VIDEO CONTENT MATCHES WELL WITH THE CONTENT OF YOUR PAGE.

TIPS TO USE ADSENSE CHANNELS TO INCREASE ADSENSE CPC

TIPS TO USE ADSENSE CHANNELS TO INCREASE ADSENSE CPC

YOU CAN SET UP YOUR TESTS USING ADSENSE CHANNELS. YOU CAN CREATE CUSTOM CHANNELS TO ESTABLISH THE CPC AND CTR OF INDIVIDUAL AD BLOCKS. MEASURE THE PERFORMANCE OF EACH CHANNEL OVER A PERIOD OF 2-4 WEEKS AND THEN DESIGN YOUR ADSENSE STRATEGY ON THE RESULTS. CHANNELS CAN BE CREATED FOR INDIVIDUAL ADVERTS OR AD BLOCKS.

THIS ENABLES YOU TO DELETE ANY LOW-PERFORMING BLOCKS, OR TO CHANGE THEIR POSITION ON YOUR PAGE. GOOGLE MAY PROVIDE THE HIGHEST-PAYING ADSENSE ADVERTS TO THOSE ADVERTS THAT PERFORM BEST. THAT IS BECAUSE THESE ADVERTISERS ARE PAYING FOR MAXIMUM EXPOSURE. A TOP BID FOR A SPECIFIC KEYWORD NOT ONLY GET YOU TOP OF PAGE#1 OF GOOGLE SERPS FOR THAT KEYWORD, BUT ALSO EXPOSURE ON THE TOP PERFORMING AD BLOCKS ON THE TOP PERFORMING WEB PAGES.

CUSTOM CHANNELS ENABLE YOU TO ESTABLISH THE CTR AND CPC OF EACH OF YOUR INDIVIDUAL AD BLOCKS OR EVEN INDIVIDUAL ADVERTS. YOU CAN ESTABLISH WHETHER A SINGLE BANNER ADVERT PAYS MORE THAN THE COMBINED INCOME FROM EACH ADVERT IN A 4-AD BLOCK IN THE SAME POSITION ON YOUR PAGE. YOU CAN ALSO SET UP CHANNELS TO COMPARE ADVERT SIZES.