Modular cybersecurity toolkit for penetration testing and CTF challenges.
Built for Linux. Use only on systems you own or have explicit permission to test.
| Module | Description |
|---|---|
recon |
DNS enumeration, WHOIS, SSL analysis, subdomain discovery, tech fingerprinting |
crypto |
Hash detection/cracking, AES/RSA encryption, classical ciphers |
memory |
Memory dump analysis, binary inspection, YARA rules, disassembly |
network |
Network scanning, ARP spoofing detection, interactive topology visualization |
exploit |
SSH/HTTP/SMB brute force testing |
webcam |
IP camera discovery, IoT default credential testing |
ddos |
HTTP/TCP/UDP stress testing (authorized environments only) |
git clone https://github.com/ayadseghairi/BaroudX.git
cd BaroudX
chmod +x install.sh
sudo ./install.sh
python3 validate_system.pypython3 main.py --module <MODULE> --target <TARGET> [OPTIONS]
# Examples
python3 main.py --module recon --target example.com
sudo python3 main.py --module network --target 192.168.1.0/24 --nmap-scan
python3 main.py --module crypto --target "5f4dcc3b5aa765d61d8327deb882cf99"
python3 main.py --module exploit --target 192.168.1.100 --usernames admin --passwords admin,123456Network: --interface --packets --nmap-scan --detect-os
Exploit: --usernames --passwords
Crypto: --wordlist
DDoS: --ddos-type --port --duration --threads
- Linux (Ubuntu 20.04+, Kali, Arch)
- Python 3.8+
- Optional API keys: Shodan, VirusTotal, Censys (add to
.env)
For authorized testing only. Unauthorized use is illegal.
The author assumes no liability for misuse.
Ayad Seghiri — Algeria 🇩🇿