Clik here to view.
Cloud Custodian - Rules Engine For Cloud Security, Cost Optimization, And...
Cloud Custodian is a rules engine for AWS fleet management. It allows users to define policies to enable a well managed cloud infrastructure, that's both secure and cost optimized. It consolidates many...
View ArticleClik here to view.
NETworkManager - A Powerful Tool For Managing Networks And Troubleshoot...
A powerful tool for managing networks and troubleshoot network problems!FeaturesNetwork Interface - Information, ConfigureIP-ScannerPort-ScannerPingTracerouteDNS LookupRemote DesktopPuTTYSNMP - Get,...
View ArticleClik here to view.
Repokid - AWS Least Privilege For Distributed, High-Velocity Deployment
Repokid uses Access Advisor provided by Aardvark to remove permissions granting access to unused services from the inline policies of IAM roles in an AWS account.Getting StartedInstallmkvirtualenv...
View ArticleClik here to view.
Git-Secrets - Prevents You From Committing Secrets And Credentials Into Git...
Prevents you from committing passwords and other sensitive information to a git repository.Synopsisgit secrets --scan [-r|--recursive] [--cached] [--no-index] [--untracked] [<files>...]git...
View ArticleClik here to view.
Cred Scanner - A Simple File-Based Scanner To Look For Potential AWS Access...
A simple command line tool for finding AWScredentials in files. Optimized for use with Jenkins and other CI systems.I suspect there are other, better tools out there (such as git-secrets), but I...
View ArticleClik here to view.
Cr3dOv3r v0.4 - Know The Dangers Of Credential Reuse Attacks
Your best friend in credential reuse attacks.You give Cr3dOv3r an email then it does two simple useful jobs with it:Search for public leaks for the email and returns the result with the most useful...
View ArticleClik here to view.
EvilOSX - An Evil RAT (Remote Administration Tool) For macOS/OS X
An evil RAT (Remote Administration Tool) for macOS / OS X.FeaturesEmulate a terminal instanceSimple extendable module systemNo bot dependencies (pure python)Undetected by anti-virus (OpenSSL AES-256...
View ArticleClik here to view.
Photon - Incredibly Fast Crawler Which Extracts Urls, Emails, Files, Website...
Photon is a lightning fast web crawler which extracts URLs, files, intel & endpoints from a target.Yep, you can use 100 threads and Photon won't complain about it because its in Ninja Mode.Why...
View ArticleClik here to view.
FF Password Exporter - Easily Export Your Passwords From Firefox
It can be difficult to export your passwords from Firefox. Since version 57 of Firefox (Quantum) existing password export addons no longer work. Mozilla provides no other official alternatives. FF...
View ArticleClik here to view.
Pure Blood v2.0 - A Penetration Testing Framework Created For Hackers /...
A Penetration Testing Framework created for Hackers / Pentester / Bug Hunter.Web Pentest / Information Gathering:Banner GrabWhoisTracerouteDNS RecordReverse DNS LookupZone Transfer LookupPort ScanAdmin...
View ArticleClik here to view.
WAScan v0.2.1 - Web Application Scanner
WAScan ((W)eb (A)pplication (Scan)ner) is a Open Source web application security scanner. It is designed to find various vulnerabilities using "black-box" method, that means it won't study the source...
View ArticleClik here to view.
SafeText - Script To Remove Homoglyphs And Zero-Width Characters To Allow For...
Tool to sanitize text to allow for safe distribution of documents from anonymous sources by removing zero-width characters and homoglpyhs.Individuals attempting to leak an email or other text file face...
View ArticleClik here to view.
sRDI - Shellcode Implementation Of Reflective DLL Injection
sRDI allows for the conversion of DLL files to position independent shellcode.Functionality is accomplished via two components:C project which compiles a PE loader implementation (RDI) to...
View ArticleClik here to view.
Faraday v3.0 - Collaborative Penetration Test and Vulnerability Management...
This new version has made major architectural changes to adapt the software to the new challenges of cybersecurity. It focuses on processing large volumes of data and facilitating user interaction with...
View ArticleClik here to view.
WTF - A Personal Information Dashboard For Your Terminal
A personal terminal-based dashboard utility, designed for displaying infrequently-needed, but very important, daily data.Quick StartDownload and run the latest binary or install from source:go get -u...
View ArticleClik here to view.
OWTF v2.4 - Offensive Web Testing Framework
OWASP OWTF is a project focused on penetration testing efficiency and alignment of security tests to security standards like the OWASP Testing Guide (v3 and v4), the OWASP Top 10, PTES and NIST so that...
View ArticleClik here to view.
Neto - A Tool To Analyse Browser Extensions
Project Neto is a Python 3 package conceived to analyse and unravel hidden features of browser plugins and extensions for well-known browsers such as Firefox and Chrome. It automates the process of...
View ArticleClik here to view.
GoldenEye v1.2.0 - Layer 7 (KeepAlive+NoCache) DoS Test Tool
GoldenEye is an python app for SECURITY TESTING PURPOSES ONLY!GoldenEye is a HTTP DoS Test Tool.Attack Vector exploited: HTTP Keep Alive + NoCacheUsage USAGE: ./goldeneye.py <url> [OPTIONS]...
View ArticleClik here to view.
Ridrelay - Quick And Easy Way To Get Domain Usernames While On An Internal...
Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv. Quick and easy way to get domain usernames while on an internal network.How it worksRidRelay combines the SMB...
View ArticleClik here to view.
StegCracker - Steganography Brute-Force Utility To Uncover Hidden Data Inside...
Steganography brute-force utility to uncover hidden data inside files.UsageUsing stegcracker is simple, pass a file to it as it's first parameter and optionally pass the path to a wordlist of passwords...
View Article