{"id":13844782,"url":"https://github.com/01rabbit/PAKURI","last_synced_at":"2025-07-12T00:31:41.612Z","repository":{"id":125286219,"uuid":"222468962","full_name":"01rabbit/PAKURI","owner":"01rabbit","description":"PAKURI has been merged with Python and launched as a new project, PAKURI-THON.","archived":false,"fork":false,"pushed_at":"2022-01-25T03:25:33.000Z","size":6979,"stargazers_count":145,"open_issues_count":1,"forks_count":28,"subscribers_count":15,"default_branch":"master","last_synced_at":"2024-08-05T17:43:04.156Z","etag":null,"topics":["arsenal","exploitation","faraday","kali","metasploit","openvas","penetration-testing","pentest-tool","pentesting-tools","scanning","vulnerabilities"],"latest_commit_sha":null,"homepage":"https://github.com/01rabbit/PAKURI-THON","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/01rabbit.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2019-11-18T14:30:39.000Z","updated_at":"2024-03-17T03:12:14.000Z","dependencies_parsed_at":null,"dependency_job_id":"e339c87f-2a04-4aa5-ad11-ae3dc8caa6e2","html_url":"https://github.com/01rabbit/PAKURI","commit_stats":null,"previous_names":[],"tags_count":6,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/01rabbit%2FPAKURI","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/01rabbit%2FPAKURI/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/01rabbit%2FPAKURI/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/01rabbit%2FPAKURI/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/01rabbit","download_url":"https://codeload.github.com/01rabbit/PAKURI/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225772753,"owners_count":17521882,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["arsenal","exploitation","faraday","kali","metasploit","openvas","penetration-testing","pentest-tool","pentesting-tools","scanning","vulnerabilities"],"created_at":"2024-08-04T17:02:56.614Z","updated_at":"2024-11-21T17:30:48.843Z","avatar_url":"https://github.com/01rabbit.png","language":"Shell","funding_links":[],"categories":["Shell (473)","Shell"],"sub_categories":[],"readme":"# PAKURI: Penetration Test Achieve Knowledge Unite Rapid Interface\n\n![logo](img/pakuri-banner.png)  \n![version](https://img.shields.io/github/v/tag/01rabbit/PAKURI?label=Version)\n![License](https://img.shields.io/github/license/01rabbit/PAKURI)\n![release-date](https://img.shields.io/github/release-date/01rabbit/PAKURI)\n![sns](https://img.shields.io/twitter/follow/PAKURI9?label=PAKURI\u0026style=social)\n![BHASIA](https://img.shields.io/badge/BlackHat%20Asia%202020-Arsenal-red)\n\n---\n\n## PAKURI has been merged with Python and launched as a new project, [PAKURI-THON](https://github.com/01rabbit/PAKURI-THON).\n\n## Overview\n\nPAKURI is a penetration test tool with a terminal user interface (TUI) that can be operated with just the keypad.\n\n![overview](https://user-images.githubusercontent.com/16553787/93030592-19005680-f65f-11ea-8d8c-8216bdb43bb5.png)  \n\n### What's PAKURI\n\nI've consulted many pen testing tools. I then took the good points of those tools and incorporated them into my own tools. In Japanese slang, imitation is also called \"paku-ru\".\n\u003e ぱくる (godan conjugation, hiragana and katakana パクる, rōmaji pakuru)\n\u003e\n\u003e 1. eat with a wide open mouth\n\u003e 2. steal when one isn't looking, snatch, swipe  \n\u003e 3. copy someone's idea or design  \n\u003e 4. nab, be caught by the police  \n\u003e\n\u003e [Wiktionary:ぱくる](https://en.wiktionary.org/wiki/%E3%81%B1%E3%81%8F%E3%82%8B \"ぱくる\")\n\n---\n\n## Description\n\nPAKURI is a semi-automated, user-friendly framework for penetration testing tools. Using only the keypad, you can use the penetration test tool like a game.  \nIt's also a great introductory tool for beginners. Learn the flow of penetration testing with PAKURI without having to wrestle with confusing command lines and tools.\n\n---\n\n## Your benefits\n\nBy using our PAKURI, you will benefit from the following.  \n\nFor redteam:  \n  (a) Red Teams can easily perform operations such as information enumeration and vulnerability scanning.  \n  (b) Visualizing the survey results is possible only with the numeric keypad.\n\nFor blueteam:  \n  (c) The Blue Team can experience a dummy attack by simply operating the numeric keypad even they do not have any penetration testing skill.  \n\nFor beginner:  \n  (d) PAKURI has been created to support the early stages of penetration testing. These can be achieved with what is included in Kali-Tools. It can be useful for training the entry level pentesters.\n\n|**NOTE**  |\n|:----------------|\n|If you are interested, please use them in an environment **under your control and at your own risk**. And, if you execute the PAKURI on systems that are not under your control, it may be considered an attack and you may have legally liabillity for your action.|\n\n---\n\n## Features\n\n### Intelligence gathering\n\n* Port Scan\n  * [Nmap](https://tools.kali.org/information-gathering/nmap)\n* Enumeration\n  * [enum4linux](https://tools.kali.org/information-gathering/enum4linux)\n  * [Nikto](https://tools.kali.org/information-gathering/nikto)\n  * [sslscan](https://github.com/rbsec/sslscan)\n  * [SSLyze](https://tools.kali.org/information-gathering/sslyze)\n\n### Vulnerability analysis\n\n* Vulnerability Scan\n  * [OpenVAS](https://tools.kali.org/vulnerability-analysis/openvas)\n\n### Exploit\n\n* Brute Force Attack\n  * [BruteSpray](https://tools.kali.org/password-attacks/brutespray)\n* Exploitation\n  * [Metasploit](https://tools.kali.org/exploitation-tools/metasploit-framework)\n  * Exsploit Database - [searchsploit](https://tools.kali.org/exploitation-tools/exploitdb)\n\n### Misc\n\n* Visualize\n  * [Faraday](https://github.com/infobyte/faraday.git)\n* CUI-GUI switching  \n  PAKURI can be operated with CUI and does not require a high-spec machine, so it can be operated with Raspberry Pi.\n\n---\n\n## Setup\n\n1. Update your apt and install git:  \n\n    ```shell\n    kali@kali:~$ sudo apt update\n    kali@kali:~$ sudo apt install git\n    ```\n\n2. PAKURI uses the Docker. If you don't have it installed, you can install it by following the steps below.\n\n    1. Install Docker. (I've been promoted to administrator privileges to reduce the amount of work involved.\n  Add the GPG key from the official Docker repository to the system.\n\n        ```shell\n        root@kali:/home/kali# curl -fsSL https://download.docker.com/linux/debian/gpg | apt-key add -\n        ```\n\n    2. Add the Docker repository to the APT source. (kali base debian)\n\n        ```shell\n        root@kali:/home/kali# echo 'deb [arch=amd64] https://download.docker.com/linux/debian buster stable' \u003e /etc/apt/sources.list.d/docker.list\n        ```\n\n    3. Update the repository and install docker-ce and docker-compose.\n\n        ```shell\n        kali@kali:~$ sudo apt update\n        kali@kali:~$ sudo apt install docker-ce -y\n        kali@kali:~$ sudo apt install docker-compose -y\n        ```\n\n3. Download the PAKURI installer from the PAKURI Github repository:\n\n    ```shell\n    kali@kali:~$ git clone https://github.com/01rabbit/PAKURI.git\n    ```\n\n4. CD into the PAKURI folder and run the setup script:\n\n    ```shell\n    kali@kali:~$ cd PAKURI  \n    kali@kali:~/PAKURI$ chmod +x setup.sh\n    kali@kali:~/PAKURI$ ./setup.sh\n    ```\n\n5. Install OpenVAS/GVM if haven’t done so:  \n\n    ```shell\n    sudo apt install -y openvas\n    or\n    sudo apt install -y gvm\n    ```  \n\n6. Initialize Faraday if you haven't done so:  \n\n    ```shell\n    sudo systemctl start postgresql\n    sudo faraday-manage initdb | tee faraday-setup.log\n    ```\n\n7. Include the credentials in pakuri.conf:\n\n    ```shell\n    kali@kali:~/PAKURI$ vim pakuri.conf\n    ...snip...\n\n    # OpenVAS\n    OMPUSER=\"admin\"\n    OMPPASS=\"admin\"\n    ```\n\n8. Faraday-server is started. After starting up, access from your browser and register your workspace:\n\n    ```shell\n    kali@kali:~/PAKURI$ systemctl start faraday.service  \n    kali@kali:~/PAKURI$ firefox localhost:5985\n    ```\n\n9. Register the workspace you just registered in pakuri.conf:\n\n    ```shell\n    kali@kali:~/PAKURI$ vim pakuri.conf\n    ...snip...\n\n    # Faraday\n    WORKSPACE=\"test_workspace\"\n    ```\n\n---\n\n## Usage\n\n```shell\nkali@kali:~/PAKURI$ ./pakuri.sh\n```\n\nPAKURI is not fully automated and requires the user interactions, to make sure to proceed the pentest and to avoid any unintended attack or trouble.  \n\n---\n\n## Operation check environment\n\n* OS: KAli Linux 2020.1\n* Memory: 8.0GB\n\n## Known Issues\n\n* This is intended for use Kali Linux. Operation on other OS is not guaranteed.  \n* Due to major changes in OpenVAS, the commands used have changed. This will be fixed in the next version.\n\n---\n\n## Contributors\n\nIf you have some new idea about this project, issue, feedback or found some valuable tool feel free to open an issue for just DM me via [@Mr.Rabbit](https://twitter.com/01ra66it) or [@PAKURI](https://twitter.com/PAKURI9).\n\n---\n\n### Presentation\n* Black Hat:\n  * Asia ![](https://raw.github.com/wiki/infobyte/faraday/images/flags/singapore.png):\n  [2020](https://www.blackhat.com/asia-20/arsenal/schedule/index.html#pakuri-penetration-test-achieve-knowledge-unite-rapid-interface-19270)\n\n* AVTokyo ![](https://raw.github.com/wiki/infobyte/faraday/images/flags/japan.png):\n    [2019](http://en.avtokyo.org/avtokyo2019/event) -\n    [2020](http://en.avtokyo.org/avtokyo2020/event)\n\n* SECCON ![](https://raw.github.com/wiki/infobyte/faraday/images/flags/japan.png):\n   [2019](https://www.seccon.jp/2019/akihabara/#yorozu)\n\n### Special thanks\n\nThanks to [@cyberdefense_jp](https://twitter.com/cyberdefense_jp) for contribute so many awesome ideas to this tool.  \n***Please note that I have nothing to do with CDI. I just respect them on my own.***\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2F01rabbit%2FPAKURI","html_url":"https://awesome.ecosyste.ms/projects/github.com%2F01rabbit%2FPAKURI","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2F01rabbit%2FPAKURI/lists"}