The toolkit has several ways it could be used, due to its modular nature, but the main feature of it is to test the Bluetooth Classic enabled device for possible known vulnerabilities. The modular nature of the toolkit allows a user to test either a specific vulnerability, all of them at once or a specific …
Author Archives: Tamil S
Awesome Red Teaming – A Comprehensive Guide To Advanced Security Techniques
Explore the dynamic world of red teaming with our extensive guide designed for cybersecurity professionals and enthusiasts alike. ‘Awesome Red Teaming’ offers a treasure trove of resources, techniques, and tools that are essential for mastering adversarial tactics and strategies. This living document is continuously updated to keep pace with the latest in Mitre ATT&CK frameworks …
Continue reading “Awesome Red Teaming – A Comprehensive Guide To Advanced Security Techniques”
Awesome OSINT – A Comprehensive Resource For Cybersecurity Experts
A curated list of amazingly awesome open source intelligence tools and resources. Open-source intelligence (OSINT) is intelligence collected from publicly available sources. In the intelligence community (IC), the term “open” refers to overt, publicly available sources (as opposed to covert or clandestine sources). This list is to help all of those who are into Cyber Threat Intellience …
Continue reading “Awesome OSINT – A Comprehensive Resource For Cybersecurity Experts”
Pwnat : Bridging NAT Barriers Without Port Forwarding
pwnat, by Samy Kamkar, is a tool that allows any client behind a NAT to communicate with a server behind a separate NAT with no port forwarding and no DMZ setup on any routers in order to directly communicate with each other. There is no middle man, no proxy, no third party, no UPnP required, no spoofing, no DNS …
Continue reading “Pwnat : Bridging NAT Barriers Without Port Forwarding”
CLI Usage : Command-Line Mastery With The BlueKit Toolkit
Explore the comprehensive command-line interface (CLI) of the BlueKit toolkit designed for cybersecurity professionals. This article delves into the various CLI commands and options available, providing detailed explanations on how to effectively manage and deploy exploits. Whether you’re checking system setups or running targeted exploits, this guide equips you with the necessary knowledge to leverage …
Continue reading “CLI Usage : Command-Line Mastery With The BlueKit Toolkit”
apkInspector – A Comprehensive Tool For APK Analysis And Evasion Detection
apkInspector is a tool designed to provide detailed insights into the zip structure of APK files, offering the capability to extract content and decode the AndroidManifest.xml file. What sets APKInspector apart is its adherence to the zip specification during APK parsing, eliminating the need for reliance on external libraries. This independence, allows APKInspector to be …
Continue reading “apkInspector – A Comprehensive Tool For APK Analysis And Evasion Detection”
WinRM Client Certificate Authentication : Step-By-Step Setup And Configuration Guide
This repo demonstrates how to create certificates for WinRM/WSMan client certificate authentication and how to configure Windows to setup the service side to allow those certificates for client authentication. It has some Ansible playbooks that can be used to do all the necessary steps plus some standalone scripts and background information to help you understand …
MSC Dropper – A Python Tool For Custom MSC File Creation And Payload Execution
MSC Dropper is a Python script designed to automate the creation of MSC (Microsoft Management Console) files with customizable payloads for arbitrary execution. This tool leverages a method discovered by Samir (@SBousseaden) from Elastic Security Labs, termed #GrimResource, which facilitates initial access and evasion through mmc.exe. Overview The script allows users to generate MSC files that …
Continue reading “MSC Dropper – A Python Tool For Custom MSC File Creation And Payload Execution”
Atexec-Pro : Advanced Features And Usage For Remote Command Execution
Modified based on atexec.py. The TSCH service is used by default(need port 135 a dynamic high port), port 445 is no longer required. ATSVC need port 445 The technology is mainly based on this article by zcgonvh. Features Note: functions upload, download and execute-assembly currently only support files up to 1MB in size. All functions do not bypass AMSI. Usage Example GetShell
Project Horus – The Comprehensive Toolkit For Investigation Assistance
Project Horus, your ultimate pre-operations tool tailored for enhancing investigation processes. This comprehensive toolkit leverages advanced APIs and data compilation strategies to streamline your investigative workflow. Whether you’re a security professional or a tech enthusiast, Horus equips you with the necessary tools to elevate your analytical capabilities. Table of Contents 🚀 About Horus Horus is …
Continue reading “Project Horus – The Comprehensive Toolkit For Investigation Assistance”