Clik here to view.
Speakeasy - Windows Kernel And User Mode Emulation
Speakeasy is a portable, modular, binary emulator designed to emulate Windows kernel and user mode malware.Check out the overview in the first Speakeasy blog post.Instead of attempting to perform...
View ArticleClik here to view.
Reg1c1de - Registry Permission Scanner For Finding Potential Privesc Avenues...
Reg1c1de is a tool that scans specified registry hives and reports on any keys where the user has write permissions In addition, if any registry values are found that contain file paths with certain...
View ArticleClik here to view.
Keyhacks - A Repository Which Shows Quick Ways In Which API Keys Leaked By A...
KeyHacks shows ways in which particular API keys found on a Bug Bounty Program can be used, to check if they are valid.@Gwen001 has scripted the entire process available here and it can be found...
View ArticleClik here to view.
Fpicker - A Frida-based Fuzzing Suite Supporting Various Modes (Including...
fpicker is a Frida-based fuzzing suite that offers a variety of fuzzing modes for in-process fuzzing, such as an AFL++ mode or a passive tracing mode. It should run on all platforms that are supported...
View ArticleClik here to view.
SigFlip - A Tool For Patching Authenticode Signed PE Files (Exe, Dll, Sys...
SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) in a way that doesn't affect or break the existing authenticode signature, in other words you can change PE file...
View ArticleClik here to view.
403Bypasser - Automates The Techniques Used To Circumvent Access Control...
403bypasser automates the techniques used to circumvent access control restrictions on target pages. 403bypasser will continue to be improved and it is open to contributions.InstallationClone the...
View ArticleClik here to view.
Assless-Chaps - Crack MSCHAPv2 Challenge/Responses Quickly Using A Database...
Crack MSCHAPv2/NTLMv1 challenge/responses quickly using a database of NT hashesIntroductionAssless CHAPs is an efficient way to recover the NT hash used in a MSCHAPv2/NTLMv1 exchange if you have the...
View ArticleClik here to view.
KnockOutlook - A Little Tool To Play With Outlook
"The best feeling is to win by knockout." - Nonito DonaireOverviewKnockOutlook is a C# project that interacts with Outlook's COM object in order to perform a number of operations useful in red team...
View ArticleClik here to view.
MobileAudit - SAST and Malware Analysis for Android Mobile APKs
Django Web application for performing Static Analysis and detecting malware in Android APKsIn each of the scans, it would have the following information:Application InfoSecurity InfoComponentsSAST...
View ArticleClik here to view.
CobaltStrikeParser - Python parser for CobaltStrike Beacon's configuration
Python parser for CobaltStrike Beacon's configurationDescriptionUse parse_beacon_config.py for stageless beacons, memory dumps or C2 urls with metasploit compatibility mode (default true). Many...
View ArticleClik here to view.
Zuthaka - An Open Source Application Designed To Assist Red-Teaming Efforts,...
A collaborative free open-source Command & Control integration framework that allows developers to concentrate on the core function and goal of their C2. Explore the docs »About the projectProblem...
View ArticleClik here to view.
Bugs-feed - A Local Hosted Portal Where You Can Search For The Latest News,...
Bug's feed is a local hosted portal where you can search for the latest news, videos, CVEs, vulnerabilities... It's implemented as a PWA application so you can get rid of the explorer and use it as a...
View ArticleClik here to view.
GoPurple - Yet Another Shellcode Runner Consists Of Different Techniques For...
This project is a simple collection of various shell code injection techniques, aiming to streamline the process of endpoint detection evaluation, beside challenging myself to get into Golang...
View ArticleClik here to view.
Ligolo-Ng - An Advanced, Yet Simple, Tunneling/Pivoting Tool That Uses A TUN...
An advanced, yet simple, tunneling tool that uses a TUN interface.by TNP IT SecurityIntroductionLigolo-ng is a simple, lightweight and fast tool that allows pentesters to establish tunnels from a...
View ArticleClik here to view.
Nettacker - Automated Penetration Testing Framework
OWASP Nettacker project is created to automate information gathering, vulnerability scanning and eventually generating a report for networks, including services, bugs, vulnerabilities,...
View ArticleClik here to view.
packetsifterTool - A Tool To Aid Analysts In Sifting Through A Packet Capture...
PacketSifter is a tool to perform batch processing of PCAP data to uncover potential IOCs.Simply initializePacketSifter with your desired integrations (VirusTotal, AbuseIPDB) and pass PacketSifter a...
View ArticleClik here to view.
Penelope - Shell Handler
Penelope is an advanced shell handler. Its main aim is to replace netcat as shell catcher during exploiting RCE vulnerabilities. It works on Linux and macOS and the only requirement is Python3. It is...
View ArticleClik here to view.
TIGMINT - OSINT (Open Source Intelligence) GUI Software Framework
An OSINT (Open Source Intelligence) software framework with an objective of making cyber investigations more convinient by implementing abstraction mechanisms to hide the background technical...
View ArticleClik here to view.
TREVORspray - A Featureful Round-Robin SOCKS Proxy And Python O365 Sprayer...
TREVORproxy is a SOCKS proxy that round-robins requests through SSH hosts. TREVORspray is a A featureful Python O365 sprayer based on MSOLSpray which uses the Microsoft Graph APIBy...
View ArticleClik here to view.
SharpStrike - A Post Exploitation Tool Written In C# Uses Either CIM Or WMI...
SharpStrike is a post-exploitation tool written in C# that uses either CIM or WMI to query remote systems. It can use provided credentials or the current user's session.Note: Some commands will use...
View Article