Sandcastle : A Python Script For AWS S3 Bucket Enumeration

Inspired by a conversation with Instacart's @nickelser on HackerOne, I've optimized and published Sandcastle – a Python script for AWS…

TweetShell : Multi-Thread Twitter BruteForcer In Shell Script

Tweetshell is an Shell Script to perform multi-threaded brute force attack against Twitter, this script can bypass login limiting and…

• Kali Linux

Jackdaw : Gather Gather Gather

Jackdaw is here to collect all information in your domain, store it in a SQL database and show you nice…

Frida-Fuzzer : Experimental Fuzzer Used For API In-Memory Fuzzing

Frida-Fuzzer is a experimental fuzzer is meant to be used for API in-memory fuzzing. The design is highly inspired and…

DigiTrack : Attacks For $5 or Less Using Arduino

In 30 seconds, DigiTrack attack can learn which networks a MacOS computer has connected to before, and plant a script…

FProbe : Domains/Subdomains & Probe For Working Http/Https Server

FProbe is a took to take list of domains/subdomains and probe for working http/https server. Installation GO111MODULE=on go get -u…

MSSQLi-DUET : MSSQL Injection-based Domain User Enumeration Tool

SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing. Supports various…

AWSPX : A Graph-Based Tool For Visualizing Effective Access

AWSPX is a graph-based tool for visualizing effective access and resource relationships within AWS. It resolves policy information to determine…

Pulsar : Network Footprint Scanner Platform

Pulsar is an automated network footprint scanner for Red Teams, Pentesters and Bounty Hunters. Its focused on discovery of organization…

CVE-2020-0796 : Windows SMBv3 Client/Server Remote Code Execution Vulnerability

CVE-2020-0796 is a remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol…