Clik here to view.
jwt-cracker - Simple HS256 JWT Token Brute Force Cracker
Simple HS256 JWT token brute force cracker.Effective only to crack JWT tokens with weak secrets.Recommendation: Use strong long secrets or RS256 tokens.InstallWith npm:npm install --global...
View ArticleClik here to view.
WS-Attacker v1.8 - Modular Framework For Web Services Penetration Testing
WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr University Bochum (http://nds.rub.de/ ) and the Hackmanit GmbH...
View ArticleClik here to view.
PcapViz - Visualize Network Topologies and Collect Graph Statistics Based on...
PcapViz visualizes network topologies and provides graph statistics based on pcap files. It should be possible to determine key topological nodes or data exfiltration attempts more easily.FeaturesDraw...
View ArticleClik here to view.
pydictor - A Powerful and Useful Hacker Dictionary Builder for a Brute-Force...
pydictor is a powerful and useful hacker dictionary builder for a brute-force attack.Why I need to use pydictor ?1. it always can help youYou can use pydictor to generate a general blast wordlist, a...
View ArticleClik here to view.
BoopSuite - A Suite of Tools for Wireless Auditing and Security Testing
BoopSuite is an up and coming suite of wireless tools designed to be easy to use and powerful in scope, that support both the 2 and 5 GHz spectrums. Written purely in python. A handshake sniffer (CLI...
View ArticleClik here to view.
BadIntent - Intercept, Modify, Repeat and Attack Android's Binder...
BadIntent is the missing link between the Burp Suite and the core Android's IPC/Messaging-system. BadIntent consists of two parts, an Xposed-based module running on Android and a Burp-plugin. Based on...
View ArticleClik here to view.
Invoke-CradleCrafter - PowerShell Remote Download Cradle Generator and...
Invoke-CradleCrafter is a PowerShell v2.0+ compatible PowerShell remote download cradle generator and obfuscator.PurposeInvoke-CradleCrafter exists to aid Blue Teams and Red Teams in easily exploring,...
View ArticleClik here to view.
Plasma - An Interactive Disassembler for x86/ARM/MIPS
PLASMA is an interactive disassembler. It can generate a more readable assembly (pseudo code) with colored syntax. You can write scripts with the available Python api (see an example below). The...
View ArticleClik here to view.
Vulscan - Advanced vulnerability scanning with Nmap NSE
Vulscan is a module which enhances nmap to a vulnerability scanner. The nmap option -sV enables version detection per service which is used to determine potential flaws according to the identified...
View ArticleClik here to view.
Pafish - Tool to Detect Sandboxes and Analysis Environments in the Same Way...
Pafish is a demonstration tool that employs several techniques to detect sandboxes and analysis environments in the same way as malware families do.The project is open source, you can read the code of...
View ArticleClik here to view.
LinEnum v0.6 - Scripted Local Linux Enumeration and Privilege Escalation Checks
LinEnum will automate many of the checks that I’ve documented in the Local Linux Enumeration & Privilege Escalation Cheatsheet. It’s a very basic shell script that performs over 65 checks, getting...
View ArticleClik here to view.
APKiD - Android Application Identifier for Packers, Protectors, Obfuscators...
APKiD gives you information about how an APK was made. It identifies many compilers, packers, obfuscators, and other weird stuff. It's PEiD for Android.For more information on what this tool can be...
View ArticleClik here to view.
jadx - Dex to Java Decompiler
jadx - Dex to Java decompilerCommand line and GUI tools for produce Java source code from Android Dex and Apk files.Building from sourcegit clone https://github.com/skylot/jadx.gitcd jadx./gradlew...
View ArticleClik here to view.
PyREBox - Python scriptable Reverse Engineering Sandbox
PyREBox is a Python scriptable Reverse Engineering sandbox. It is based on QEMU, and its goal is to aid reverse engineering by providing dynamic analysis and debugging capabilities from a different...
View ArticleClik here to view.
Spaghetti - Web Application Security Scanner
Spaghetti is a web application security scanner tool. It is designed to find various default and insecure files, configurations and misconfigurations. Spaghetti is built on python2.7 and can run on any...
View ArticleClik here to view.
Phishery - An SSL Enabled Basic Auth Credential Harvester with a Word...
Phishery is a Simple SSL Enabled HTTP server with the primary purpose of phishing credentials via Basic Authentication. Phishery also provides the ability easily to inject the URL into a .docx Word...
View ArticleClik here to view.
RED HAWK v2.0.0 - All in one tool for Information Gathering, Vulnerability...
RED HAWK is An All In One Tool For Information Gathering, SQL Vulnerability Scannig and Crawling. Coded In PHP.Features:Basic Scan Site Title NEWIP AddressWeb Server Detection IMPROVEDCMS...
View ArticleClik here to view.
JWT cracker - JWT Brute Force Cracker Written in C
A multi-threaded JWT brute-force cracker written in C. If you are very lucky or have a huge computing power, this program should find the secret key of a JWT token, allowing you to forge valid tokens....
View ArticleClik here to view.
MeterSSH v2.0 - Take Shellcode and Inject It Into Memory Over SSH
MeterSSH is a way to take shellcode, inject it into memory then tunnel whatever port you want to over SSH to mask any type of communications as a normal SSH connection. The way it works is by injecting...
View ArticleClik here to view.
PyStat - Advanced Netstat Using Python For Windows
PyStat is an Advanced Netstat Using Python For Windows.FeaturesKnow remote address of processKnow remote ports of processKnow which user using process along with title & PIDChangelogs:Auto Install...
View Article