Clik here to view.
Domained - Multi Tool Subdomain Enumeration
A domain name enumeration toolThe tools contained in domained requires Kali Linux (preferred) or Debian 7+ and Recon-ngdomained uses several subdomain enumeration tools and wordlists to create a unique...
View ArticleClik here to view.
Htbenum - A Linux Enumeration Script For Hack The Box
This script is designed for use in situations where you do not have internet access on a Linux host and would like to run enumeration and exploit suggestion scripts, such as Hack The Box. I find myself...
View ArticleClik here to view.
crauEmu - An uEmu Extension For Developing And Analyzing Payloads For...
crauEmu is an uEmu extension for developing and analyzing payloads for code-reuse attacks.Slides from ZeroNights 2019Demo 1 - X32-64, Edge, rop-gadgets from pwnjsDemo 2 - ARM64, checkm8 callback-chain*...
View ArticleClik here to view.
Burp Exporter - A Burp Suite Extension To Copy A Request To The Clipboard As...
Exporter is a Burp Suite extension to copy a request to the clipboard as multiple programming languages functions.You can export as:cURLWgetPython RequestPerl LWPPHP HTTP_Request2Go NativeNodeJS...
View ArticleClik here to view.
Crescendo - A Swift Based, Real Time Event Viewer For macOS - It Utilizes...
Crescendo is a swift based, real time event viewer for macOS. It utilizes Apple's Endpoint Security Framework.Getting StartedApple has introduced some new security mechanisms that we need to enable to...
View ArticleClik here to view.
DNSProbe - A Tool Built On Top Of Retryabledns That Allows You To Perform...
DNSProbe is a tool built on top of retryabledns that allows you to perform multiple dns queries of your choice with a list of user supplied resolvers.FeaturesSimple and Handy utility to query DNS...
View ArticleClik here to view.
Pwndrop - Self-Deployable File Hosting Service For Red Teamers, Allowing To...
pwndrop is a self-deployable file hosting service for sending out red teaming payloads or securely sharing your private files over HTTP and WebDAV.If you've ever needed to quickly set up an...
View ArticleClik here to view.
PEASS - Privilege Escalation Awesome Scripts SUITE
Here you will find privilege escalation tools for Windows and Linux/Unix* (in some near future also for Mac).These tools search for possible local privilege escalation paths that you could exploit and...
View ArticleClik here to view.
RS256-2-HS256 - JWT Attack To Change The Algorithm RS256 To HS256
JWT Attack to change the algorithm RS256 to HS256Usageusage: RS256_2_HS256_JWT.py [-h] payload pubkeypositional arguments: payload JSON payload from JWT to attack pubkey Public key file to use for...
View ArticleClik here to view.
goBox - GO Sandbox To Run Untrusted Code
GO sandbox to run untrusted code.goBox uses Ptrace to hook into READ syscalls, giving you the option to accept or deny syscalls before they are executed.UsageUsage of ./gobox: gobox [FLAGS] command...
View ArticleClik here to view.
Vulnx v2.0 - An Intelligent Bot Auto Shell Injector That Detect...
Vulnx is An Intelligent Bot Auto Shell Injector that detects vulnerabilities in multiple types of Cms, fast cms detection,informations gathering and vulnerabilitie Scanning of the target like...
View ArticleClik here to view.
Flux-Keylogger - Modern Javascript Keylogger With Web Panel
Modern javascript keylogger with web panelWeb panel:Logging:KeyloggerCookiesLocationRemote IPUser-AgentsInstallation server files:Upload files from server directory to you serverChange default...
View ArticleClik here to view.
Lk Scraper - An Fully Configurable Linkedin Scrape (Scrape Anything Within...
Scrapes Any Linkedin DataInstallation$ pip install git+git://github.com/jqueguiner/lk_scraperSetupUsing Docker compose$ docker-compose up -d$ docker-compose run lk_scraper python3Using Docker only for...
View ArticleClik here to view.
Adamantium-Thief - Decrypt Chromium Based Browsers Passwords, Cookies, Credit...
Get chromium browsers: passwords, credit cards, history, cookies, bookmarks.Chrome 80 > is supported!Examples:Get passwords from browsers:Stealer.exe PASSWORDSGet credit cards from...
View ArticleClik here to view.
Httpgrep - Scans HTTP Servers To Find Given Strings In URIs
A python tool which scans for HTTP servers and finds given strings in URIs.Usage$ httpgrep -H--==[ httpgrep by nullsecurity.net ]==--usage httpgrep -h <args> -s <arg> [opts] |...
View ArticleClik here to view.
githubFind3r - Fast Command Line Repo/User/Commit Search Tool
githubFind3r is a very fast command line repo/user/commit search toolInstallationgit clone https://github.com/atmoner/githubFind3r.gitcd githubFind3rnpm installRun itnode githubFind3r.jsDownload...
View ArticleClik here to view.
Nullscan - A Modular Framework Designed To Chain And Automate Security Tests
A modular framework designed to chain and automate security tests. It parses target definitions from the command line and runs corresponding modules and their nullscan-tools afterwards. It can also...
View ArticleClik here to view.
Impulse - Impulse Denial-of-service ToolKit
Modern Denial-of-service ToolKitMain windowMethods:MethodTargetDescriptionSMS+PHONESMS & CALL FLOODNTPIP:PORTNTP amplification is a type of DistributedDenial of Service (DDoS) attack in which the...
View ArticleClik here to view.
Lulzbuster - A Very Fast And Smart Web Directory And File Enumeration Tool...
Lulzbuster is a very fast and smart web directory and file enumeration tool written in C.Usage$ lulzbuster -H __ __ __ __ / /_ __/ /___ / /_ __ _______/ /____ _____ / / / / / /_ / / __ \/ / / / ___/...
View ArticleClik here to view.
Firebase-Extractor - A Tool Written In Python For Scraping Firebase Data
This tool is written in python2, the purpose of this tool is to parse all the results from Bing search.Basically whenever a firebaseio URL is found for an app , User instead of searching for sensitive...
View Article