
Feedback on my old-ish tool
Hello,
Some time ago, I made a tool for performing brute-force attacks (for work purposes, as I work as a security tester/pentester). I don't know if I had hands from the wrong place or what, but it was somewhat difficult to use Hydra, which at that time was a top-tier tool for this. So I made my own tool that works like I want it to work.
The main idea of the tool is that all configuration goes inside a YAML configuration file. Why, you may ask, because security testing usually goes in this circle: performing -> reporting -> someone fixes -> re-testing. Sometimes the systems we test are similar, sometimes they are complex enough, and also saving hydra commands or sharing them wasn't quite a practical solution in the long term.
Some time ago, I moved to another company where I'm more on the defensive side rather than attacking, so I didn't have a chance to use this tool much. So maybe anyone can give some kind of feedback on the code, possible improvements, etc.
Repo: https://github.com/narukoshin/EnRaiJin
p.s. For all the AI haters, this code is not vibe coded, as it was created when the AI hype wasn't even a thing. :) Commits lasting years are a good proof for that.
Thanks.