Clik here to view.
SNOWCRASH - A Polyglot Payload Generator
A polyglot payload generator IntroductionSNOWCRASH creates a script that can be launched on both Linux and Windows machines. Payload selected by the user (in this case combined Bash and Powershell...
View ArticleClik here to view.
Commit Stream - OSINT Tool For Finding Github Repositories By Extracting...
commit-stream drinks commit logs from the Github event firehose exposing the author details (name and email address) associated with Github repositories in real time.OSINT / Recon uses for Redteamers /...
View ArticleClik here to view.
Kubebox - Terminal And Web Console For Kubernetes
Terminal and Web console for KubernetesFeatures Configuration from kubeconfig files (KUBECONFIG environment variable or $HOME/.kube) Switch contexts interactivelyAuthentication support (bearer token,...
View ArticleClik here to view.
Oralyzer - Tool To Identify Open Redirection
Oralyzer, a simple python script, capable of identifying the open redirection vulnerability in a website. It does that by fuzzing the url i.e. provided as the input.FeaturesOralyzer can identify...
View ArticleClik here to view.
uDork - Tool That Uses Advanced Google Search Techniques To Obtain Sensitive...
uDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web applications,...
View ArticleClik here to view.
dazzleUP - A Tool That Detects The Privilege Escalation Vulnerabilities...
A tool that detects the privilege escalationvulnerabilities caused by misconfigurations and missing updates in the Windows operating systems. dazzleUP detects the following vulnerabilities.Exploit...
View ArticleClik here to view.
Kubei - A Flexible Kubernetes Runtime Scanner
Kubei is a vulnerabilitiesscanning tool that allows users to get an accurate and immediate risk assessment of their kubernetes clusters. Kubei scans all images that are being used in a Kubernetes...
View ArticleClik here to view.
Cloudsplaining - An AWS IAM Security Assessment Tool That Identifies...
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized HTML report.Example reportDocumentationFor full documentation,...
View ArticleClik here to view.
CWFF - Create Your Custom Wordlist For Fuzzing
CWFF is a tool that creates a special High quality fuzzing/content discovery wordlist for you at the highest speed possible using concurrency and it's heavily inspired by @tomnomnom's Who, What, Where,...
View ArticleClik here to view.
EternalBlueC - EternalBlue Suite Remade In C/C++ Which Includes: MS17-010...
EternalBlue suite remade in C which includes: MS17-010 Exploit, EternalBlue/MS17-010 vulnerability detector, DoublePulsar detector and DoublePulsar UploadDLL & Shellcode[*] ms17_vuln_status.cpp -...
View ArticleClik here to view.
DeimosC2 - A Golang Command And Control Framework For Post-Exploitation
DeimosC2 is a post-exploitation Command & Control (C2) tool that leverages multiple communication methods in order to control machines that have been compromised. DeimosC2 server and agents works...
View ArticleClik here to view.
Mistica - An Open Source Swiss Army Knife For Arbitrary Communication Over...
Mística is a tool that allows to embed data into application layer protocol fields, with the goal of establishing a bi-directional channel for arbitrary communications. Currently, encapsulation into...
View ArticleClik here to view.
Cnitch - Container Snitch Checks Running Processes Under The Docker Engine...
cnitch (snitch or container snitch) is a simple framework and command line tool for monitoring Docker containers to identify any processes which are running as root.Why is this a bad thing? If you have...
View ArticleClik here to view.
Xeca - PowerShell Payload Generator
xeca is a project that creates encrypted PowerShell payloads for offensive purposes.Creating position independent shellcode from DLL files is also possible.InstallFirstly ensure that rust is installed,...
View ArticleClik here to view.
DLInjector-GUI - DLL Injector Graphical User Interface
DLInjector for Graphical User Interface.Faster DLL Injector for processes. It targets the process name to identify the target. The process does not need to be open to define the target. DLInjector...
View ArticleClik here to view.
Netenum - A Tool To Passively Discover Active Hosts On A Network
Network reconnaisance tool that sniffs for active hostsIntroductionNetenum passively monitors the ARPtraffic on the network. It extracts basic data about each active host, such as IP address, MAC...
View ArticleClik here to view.
UEFI_RETool - A Tool For UEFI Firmware Reverse Engineering
A tool for UEFI firmware reverse engineering.UEFI firmware analysis with uefi_retool.py scriptUsage:Copy ida_plugin/uefi_analyser.py script and ida_plugin/uefi_analyser directory to IDA plugins...
View ArticleClik here to view.
Taowu - A CobaltStrike Toolkit
TaoWu(檮杌) is a CobaltStrike toolkit. All the scripts are gathered on the Internet and slightly modified by myself. You can use it under GPLv3. And all on your own risk.Any PR is appreciated. Or you can...
View ArticleClik here to view.
Gtunnel - A Robust Tunelling Solution Written In Golang
A TCP tunneling suite built with golang and gRPC. gTunnel can manage multiple forward and reverse tunnels that are all carried over a single TCP/HTTP2 connection. I wanted to learn a new language, so I...
View ArticleClik here to view.
Chalumeau - Automated, Extendable And Customizable Credential Dumping Tool
Chalumeau is automated,extendable and customizable credential dumping tool based on powershell and python.Main FeaturesWrite your own PayloadsIn-Memory executionExtract Password ListDashboard reporting...
View Article