Clik here to view.
DNSControl - Synchronize your DNS to multiple providers from a simple DSL
DNSControl is a system for maintaining DNS zones. It has two parts: a domain specific language (DSL) for describing DNS zones plus software that processes the DSL and pushes the resulting zones to DNS...
View ArticleClik here to view.
nRF24 Playset - Software tools for Nordic Semiconductor nRF24-based Devices...
The nRF24 Playset is a collection of software tools for wireless input devices like keyboards, mice, and presenters based on Nordic Semiconductor nRF24 transceivers, e.g. nRF24LE1 and nRF24LU1+.All...
View ArticleClik here to view.
EaST - Exploits and Security Tools Framework
Pentest framework environment is the basis of IT security specialist’s toolkit. This software is essential as for learning and improving of knowledge in IT systems attacks and for inspections and...
View ArticleClik here to view.
morty - Privacy aware web content sanitizer proxy as a service
Web content sanitizer proxy as a service.Morty rewrites web pages to exclude malicious HTML tags and attributes. It also replaces external resource references to prevent third party information leaks....
View ArticleClik here to view.
netattack - Scan and Attack Wireless Networks
The netattack.py is a python script that allows you to scan your local area for WiFi Networks and perform deauthentification attacks. The effectiveness and power of this script highly depends on your...
View ArticleClik here to view.
Sherlock - Tool to find missing Windows patches for Local Privilege...
PowerShell script to quickly find missing Microsoft patches for local privilege escalation vulnerabilities.Currently looks for:MS10-015 : User Mode to Ring (KiTrap0D)MS10-092 : Task SchedulerMS13-053 :...
View ArticleClik here to view.
oletools - Tools to analyze MS OLE2 files and MS Office documents, for...
oletools is a package of python tools to analyze Microsoft OLE2 files (also called Structured Storage, Compound File Binary Format or Compound Document File Format), such as Microsoft Office documents...
View ArticleClik here to view.
Securitybot - Distributed alerting for the masses!
Distributed alerting for the masses!Securitybot is an open-source implementation of a distributed alerting chat bot, as described in Ryan Huber's blog post. Distributed alerting improves the monitoring...
View ArticleClik here to view.
Nix-Auditor - Nix Audit Made Easier
A script to audit linux and unix distributions based mainly on the CIS standards and universal linux hardening guidelines. The value it brings to your auditing set of tools is:Speed - one can audit OS...
View ArticleClik here to view.
ssh_scan - A prototype SSH Configuration and Policy Scanner
A SSH configuration and policy scannerKey BenefitsMinimal Dependancies - Uses native Ruby and BinData to do its work, no heavy dependancies.Not Just a Script - Implementation is portable for use in...
View ArticleClik here to view.
PoshC2 - Powershell C2 Server and Implants
PoshC2 is a proxy aware C2 framework written completely in PowerShell to aid penetration testers with red teaming, post-exploitation and lateral movement. The tools and modules were developed off the...
View ArticleClik here to view.
Mousejack Transmit - Wireless Mouse/Keyboard Attack With Replay/Transmit PoC
This is code extending the mousejack tools https://github.com/RFStorm/mousejack.Replay/transmit tools have been added to the original tools.POC packets based on a Logitech Wireless Combo MK220 which...
View ArticleClik here to view.
HashPump - A Tool To Exploit The Hash Length Extension Attack In Various...
A tool to exploit the hash length extension attack in various hashing algorithms.Currently supported algorithms: MD5, SHA1, SHA256, SHA512.Help Menu$ hashpump -hHashPump [-h help] [-t test] [-s...
View ArticleClik here to view.
pwdlyser - Python-based CLI Password Analyser (Reporting Tool)
The 'pwdlyser' tool is a Python-based CLI script that automates the arduous process of manually reviewing cracked passwords during password audits following security assessments or penetration tests....
View ArticleClik here to view.
shARP - anti-ARP-spoofing application software and uses active scanning...
ARP spoofing allows an attacker to intercept data frames on a network, modify the traffic, or stop all traffic. Often the attack is used as an opening for other attacks, such as denial of service, man...
View ArticleClik here to view.
ShodanHat - Search For Hosts Info With Shodan
Search For Hosts Info With Shodan.DependenciesYou need to install shodan with pip install shodan or easy_install shodan.You need to install python-nmap with pip install python-nmap.You need to set your...
View ArticleClik here to view.
Evilginx - MITM Attack Framework [Advanced Phishing With Two-factor...
Evilginx is a man-in-the-middle attack framework used for phishing credentials and session cookies of any web service. It's core runs on Nginx HTTP server, which utilizes proxy_pass and sub_filter to...
View ArticleClik here to view.
BeRoot - Windows Privilege Escalation Tool
BeRoot(s) is a post exploitation tool to check commun Windows misconfigurations to find a way to escalate our privilege. A compiled version is available here.It will be added to the pupy project as a...
View ArticleClik here to view.
TaBi - Track BGP Hijacks
Developed since 2011 for the needs of the French Internet Resilience Observatory, TaBi is a framework that ease the detection of BGP IP prefixes conflicts, and their classification into BGP hijacking...
View ArticleClik here to view.
Ad-LDAP-Enum - Active Directory LDAP Enumerator
ad-ldap-enum is a Python script that was developed to discover users and their group memberships from Active Directory. In large Active Directory environments, tools such as NBTEnum were not performing...
View Article