HandleKatz tool was implemented as part of our Brucon2021 conference talk and demonstrates the usage of cloned handles to Lsass in order…
aDLL is a binary analysis tool focused on the automatic discovery of DLL Hijacking vulnerabilities. The tool analyzes the image…
ADLab, the purpose of this module is to automate the deployment of an Active Directory lab for practicing internal penetration…
Vimana is a modular security framework designed to audit Python web applications. Framework Structure The base of the Vimana is…
Melting-Cobalt tool to hunt/mine for Cobalt Strike beacons and "reduce" their beacon configuration for later indexing. Hunts can either be…
Web-Hacking-Toolkit multi-platform web hacking toolkit Docker image with Graphical User Interface (GUI) support. Installation Docker Pull the image from Docker…
PeTeReport (PenTest Report) is an open-source application vulnerability reporting tool designed to assist pentesting/redteaming efforts, by simplifying the task of writing…
Dockerized Android is a container-based framework that allows to execute and Android Emulator inside Docker and control it through a browser.…
GC2 (Google Command and Control) is a Command and Control application that allows an attacker to execute commands on the…
Scarce-Apache2 tool can scan websites with CVE-2021-41773 Vulnerability that are affecting Apache2 Webserver, ScaRCE can run too for executing Remote…