Kali
Subdomain takeover is a class of vulnerability where subdomain points to an external service that has been deleted. The external services are Github, Heroku, Gitlab, Tumblr and so on. Let’s assume we have a subdomain sub.example.com that points to an external service such as GitHub. If the Github page is removed by its owner and …
Continue reading “TakeOver : Takeover Script Extracts CNAME Record Of All Subdomains At Once”
Atlas is an open source tool that can suggest sqlmap tampers to bypass WAF/IDS/IPS, the tool is based on returned status code. Atlas Installation $ git clone https://github.com/m4ll0k/Atlas.git atlas $ cd atlas $ python atlas.py Also ReadDex2jar – Tools To Work With Android .dex & Java .class Files Usage $ python atlas.py –url http://site.com/index.php?id=Price_ASC –payload=”-1234 …
Dex2jar is a tool to work with android .dex and java .class files. dex-reader/writer: Read/write the Dalvik Executable (.dex) file. It has a light weight API similar with ASM. d2j-dex2jar: Convert .dex file to .class files (zipped as jar) smali/baksmali: disassemble dex to smali files and assemble dex from smali files. different implementation to smali/baksmali, …
Continue reading “Dex2jar – Tools To Work With Android .dex & Java .class Files”
XenoScan is a memory scanner which can be used to scan the memory of processes to locate the specific locations of important values. These types of tools are typically used when hacking video games, as they allow one to locate the values representing the game’s state in memory. XenoScan is written in C++ with a …
Continue reading “XenoScan – Open source memory scanner written in C++”
HeapHopper is a bounded model checking framework for Heap-implementation. HeapHopper Setup sudo apt update && sudo apt install build-essential python-dev virtualenvwrapper git clone https://github.com/angr/heaphopper.git && cd ./heaphopper mkvirtualenv -ppython2 heaphopper pip install -e . Required Packages build-essential python-dev virtualenvwrapper Required Python-Packages ana angr cle claripy IPython psutil pyelftools pyyaml Also ReadDarkSpiritz – A Penetration Testing Framework …
Continue reading “HeapHopper – A Bounded Model Checking Framework For Heap-Implementations”
Malwoverview is a first response tool to perform an initial and quick triage on either a directory containing malware samples or a specific malware sample. This tool aims to : Determining similar executable malware samples (PE/PE+) according to the import table (imphash) and group them by different colors (pay attention to the second column from …
DbgShell a PowerShell front-end for the Windows debugger engine. DbgShell Inducement Have you ever tried automating anything in the debugger? (cdb/ntsd/kd/windbg) How did that go for you? The main impetus for DbgShell is that it’s just waaaay too hard to automate anything in the debugger. There are facilities today to assist in automating the debugger, …
Continue reading “DbgShell – A PowerShell Front-End For The Windows Debugger Engine”
DarkSpiritz is a penetration testing framework for UNIX systems. It is a re-vamp of the very popular framework known as “Roxysploit”. You may be familiar with this framework and if you are then it will help you with DarkSpiritz. It also works like another pentesting framework known as Metasploit. If you know how to use …
Continue reading “DarkSpiritz – A Penetration Testing Framework For UNIX Systems”
NodeXP is an intergrated tool, written in Python 2.7, capable of detecting possible vulnerabilities on Node.js services as well as exploiting them in an automated way, based on S(erver)S(ide)J(avascript)I(njection) attack! Nodexp Getting Started – Installation & Usage Download NodeXP by cloning the Git repository: git clone https://github.com/esmog/nodexp To get a list of all options run: …
SubScraper uses DNS brute force, Google & Bing scraping, and Virus Total to enumerate subdomains without an API. Written in Python3, SubScraper performs HTTP(S) requests and DNS “A” record lookups during the enumeration process to validate discovered subdomains. This provides further information to help prioritize targets and aid in potential next steps. Post-Enumeration, “CNAME” lookups …
Continue reading “Subscraper – Tool That Performs Subdomain Enumeration Through Various Techniques”