Clik here to view.
Hackbox - The Combination Of Awesome Techniques
HackBox is the combination of awesome tools and techniques.Youtube TutorialUsage$ python hackbox.pyCreditsShawar Khan https://twitter.com/ShawarkOFFICIALJobart Abama...
View ArticleClik here to view.
Cookiescanner - Tool For Check The Cookie Flag In Multiple Sites
Tool for check the cookie flag in multiple sites.IntroTool created to do more easy the process of check the cookie flag when we are analyzing multiple web servers.If you want to know for why could be...
View ArticleClik here to view.
PortWitness - Tool For Checking Whether A Domain Or Its Multiple Sub-Domains...
PortWitness is a bash tool designed to find out active domain and subdomains of websites using port scanning. It helps penetration testers and bug hunters collect and gather information about active...
View ArticleClik here to view.
Hijacker v1.5 - All-in-One Wi-Fi Cracking Tools for Android
Hijacker is a Graphical User Interface for the penetration testing tools Aircrack-ng, Airodump-ng, MDK3 and Reaver. It offers a simple and easy UI to use these tools without typing commands in a...
View ArticleClik here to view.
Goddi (Go Dump Domain Info) - Dumps Active Directory Domain Information
Based on work from Scott Sutherland (@_nullbind), Antti Rantasaari, Eric Gruber (@egru), Will Schroeder (@harmj0y), and the PowerView authors.InstallUse the executables in the releases section. If you...
View ArticleClik here to view.
Snallygaster - Tool To Scan For Secret Files On HTTP Servers
Snallygaster is a tool that looks for files accessible on web servers that shouldn't be public and can pose a security risk.Typical examples include publicly accessible git repositories, backup files...
View ArticleClik here to view.
Nemesis - A Command-Line Network Packet Crafting And Injection Utility
The Nemesis Project is designed to be a command line based, portable human IP stack for UNIX-like and Windows systems. The suite is broken down by protocol, and should allow for useful scripting of...
View ArticleClik here to view.
AutoNSE - Massive NSE (Nmap Scripting Engine) AutoSploit And AutoScanner
Massive NSE (Nmap Scripting Engine) AutoSploit and AutoScanner. The Nmap Scripting Engine (NSE) is one of Nmap's most powerful and flexible features. It allows users to write (and share) simple scripts...
View ArticleClik here to view.
Grok-backdoor - Backdoor With Ngrok Tunnel Support
Grok-backdoor is a simple python based backdoor, it uses Ngrok tunnel for the communication. Ngrok-backdoor can generate windows, linux and mac binaries using Pyinstaller.Disclaimer:All the code...
View ArticleClik here to view.
Metta - An Information Security Preparedness Tool To Do Adversarial Simulation
Metta is an information security preparedness tool.This project uses Redis/Celery, python, and vagrant with virtualbox to do adversarial simulation. This allows you to test (mostly) your host based...
View ArticleClik here to view.
RTA - Framework Designed To Test The Detection Capabilities Against Malicious...
RTA provides a framework of scripts designed to allow blue teams to test their detection capabilities against malicious tradecraft, modeled after MITRE ATT&CK.RTA is composed of python scripts that...
View ArticleClik here to view.
Infection Monkey - An Automated Pentest Tool
The Infection Monkey is an open source security tool for testing a data center's resiliency to perimeter breaches and internal server infection. The Monkey uses various methods to self propagate across...
View ArticleClik here to view.
Invoke-ATTACKAPI - A PowerShell Script To Interact With The MITRE ATT& CK...
A PowerShell script to interact with the MITRE ATT&CK Framework via its own API in order to gather information about techniques, tactics, groups, software and references provided by the MITRE...
View ArticleClik here to view.
RedHunt OS - Virtual Machine For Adversary Emulation And Threat Hunting
Virtual Machine for Adversary Emulation and Threat HuntingRedHunt aims to be a one stop shop for all your threat emulation and threat hunting needs by integrating attacker's arsenal as well as...
View ArticleClik here to view.
Bad-Pdf - Steal NTLM Hashes With A PDF From Windows Machines
Bad-PDF create malicious PDF to steal NTLM Hashes from windows machines, it utilize vulnerability disclosed by checkpoint team to create the malicious PDF file. Bad-Pdf reads the NTLM hashes using...
View ArticleClik here to view.
WSSAT v2.0 - Web Service Security Assessment Tool
WSSAT is an open source web service security scanning tool which provides a dynamic environment to add, update or delete vulnerabilities by just editing its configuration files. This tool accepts WSDL...
View ArticleClik here to view.
Gitmails - An Information Gathering Tool To Colect Git Commit Emails In...
An information gathering tool to colect git commit emails in version control host services.OverviewGitmails explores that git commits contains a name and an email configured by the author and that...
View ArticleClik here to view.
Yamot - Yet Another MOnitoring Tool
yamot is a web-based server-monitoring tool built for small environments with just a handful servers. It takes a minimum of resources which allows the execution on almost every machine, also very old...
View ArticleClik here to view.
Kali Linux 2018.2 Release - The Best Penetration Testing Distribution
This Kali release is the first to include the Linux 4.15 kernel, which includes the x86 and x64 fixes for the much-hyped Spectre and Meltdown vulnerabilities. It also includes much better support for...
View ArticleClik here to view.
Astra - Automated Security Testing For REST API's
REST API penetration testing is complex due to continuous changes in existing APIs and newly added APIs. Astra can be used by security engineers or developers as an integral part of their process, so...
View Article