Clik here to view.
LANs.py - Inject Code, Jam Wifi, And Spy on Wifi Users
LANs.pyAutomatically find the most active WLAN users then spy on one of them and/or inject arbitrary HTML/JS into pages they visit.Individually poisons the ARP tables of the target box, the router and...
View ArticleClik here to view.
BinaryAlert - Serverless, Real-time & Retroactive Malware Detection
BinaryAlert is an open-source serverless AWS pipeline where any file uploaded to an S3 bucket is immediately scanned with a configurable set of YARA rules. An alert will fire as soon as any match is...
View ArticleClik here to view.
AVPASS - Tool For Leaking And Bypassing Android Malware Detection System
AVPASS is a tool for leaking the detection model of Androidmalware detection systems (i.e., antivirus software), and bypassing their detection logics by using the leaked information coupled with APK...
View ArticleClik here to view.
WINspect - Powershell-based Windows Security Auditing Toolbox
WINspect is part of a larger project for auditing different areas of Windows environments. It focuses on enumerating different parts of a Windows machine aiming to identify security weaknesses and...
View ArticleClik here to view.
DELTA - SDN Security Evaluation Framework
DELTA is a penetration testing framework that regenerates known attack scenarios for diverse test cases. This framework also provides the capability of discovering unknown security problems in SDN by...
View ArticleClik here to view.
Nili - Tool for Network Scan, Man in the Middle, Protocol Reverse Engineering...
Nili is a Tool for Network Scan, Man in the Middle, Protocol Reverse Engineering and Fuzzing.PrerequisitesPython - Python Programming LanguageScapy - Interactive Packet Manipulation ProgramNetzob -...
View ArticleClik here to view.
SQLMap v1.1.8 - Automatic SQL Injection And Database Takeover Tool
SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection...
View ArticleClik here to view.
Sobelow - Security-Focused Static Analysis for the Phoenix Framework
Sobelow is a security-focused static analysis tool for the Phoenix framework. For security researchers, it is a useful tool for getting a quick view of points-of-interest. For project maintainers, it...
View ArticleClik here to view.
Comission - WhiteBox CMS Analysis
CoMisSion is a tool to quickly analyze a CMS setup. The tool:checks for the core version;looks for the last core version;looks for vulnerabilities in core version used;checks for plugins version;looks...
View ArticleClik here to view.
DSSS - Damn Small SQLi Scanner
Damn Small SQLi Scanner (DSSS) is a fully functional SQL injectionvulnerability scanner (supporting GET and POST parameters) written in under 100 lines of code.As of optional settings it supports HTTP...
View ArticleClik here to view.
Wordpresscan - WPScan rewritten in Python + some WPSeku ideas
A simple Wordpressscanner written in python based on the work of WPScan (Ruby version)Install & LaunchDependenciespip install requestspip install tornadoInstallgit clone...
View ArticleClik here to view.
RedSnarf - A Pen-Testing / Red-Teaming Tool For Windows Environments
RedSnarf is a pen-testing / red-teaming tool by Ed Williams for retrieving hashes and credentials from Windows workstations, servers and domain controllers using OpSec Safe Techniques.RedSnarf...
View ArticleClik here to view.
EvilAbigail - Automated Linux Evil Maid Attack
Automated Linux evil maid attackScenarioLaptop left turned off with FDE turned onAttacker boots from USB/CD/NetworkScript executes and backdoors initrdUser returns to laptop, boots as normalBackdoored...
View ArticleClik here to view.
BlackArch Linux v2017.08.30 - Penetration Testing Distribution
BlackArch Linux is an Arch Linux-based distribution for penetration testers and security researchers. The repository contains 1859tools. You can install tools individually or in groups. BlackArch Linux...
View ArticleClik here to view.
Tulpar - Web Vulnerability Scanner
Tulpar is a open source web vulnerability scanner for written to make web penetration testing automated.FeaturesSql Injection (GET Method)XSS (GET Method)CrawlE-mail DisclosureCredit Card...
View ArticleClik here to view.
WSSiP - Application for capturing, modifying and sending custom WebSocket...
Short for "WebSocket/Socket.io Proxy", this tool, written in Node.js, provides a user interface to capture, intercept, send custom messages and view all WebSocket and Socket.IO communications between...
View ArticleClik here to view.
sdnpwn - An SDN Penetration Testing Toolkit
The Open Networking Foundation defines SDN as “The physical separation of the network control plane from the forwarding plane, and where a control plane controls several devices”. What this means is...
View ArticleClik here to view.
D0xk1t - Web-based OSINT and Active Reconaissance Suite
Active reconnaissance, information gathering and OSINT built in a portable web application.1.0 IntroductionWhat is this?D0xk1t is an open-source, self-hosted and easy to use OSINT and active...
View ArticleClik here to view.
Demiguise - HTA Encryption Tool for RedTeams
What does it do?The aim of this project is to generate .html files that contain an encrypted HTA file. The idea is that when your target visits the page, the key is fetched and the HTA is decrypted...
View ArticleClik here to view.
Luckystrike - A PowerShell based utility for the creation of malicious Office...
A PowerShell based utility for the creation of malicious Office macro documents. To be used for pentesting or educational purposes only.Luckystrike is a menu-drive (SET style) PowerShell-based...
View Article