PwnBack – Burp Extender Plugin That Generates A Sitemap Of A Website Using Wayback...
PwnBack requires PhantomJS to run. To understand why it is required currently see the section PhantomsJS.
The plugin has several settings that a user can...
Headless Burp – Automate security tests using Burp Suite
Headless Burp provides an extension to Burp that allows you to run Burp Suite's Spider and Scanner tools in headless mode via command-line.
However, it...
Firework – Tool To Interact With Microsoft Workplaces Creating Valid Files
Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process. The tool also wraps...
HUNT – Burp Suite Pro/Free and OWASP ZAP Extensions
HUNT Suite is a collection of Burp Suite Pro/Free and OWASP ZAP extensions. Identifies common parameters vulnerable to certain vulnerability classes (Burp Suite Pro...
MalwareCMDMonitor – Shows Command Lines Used By Latest Instances Analyzed On Hybrid-Analysis
By using MalwareCMDMonitor python script, you can observe the commands of the latest malware instances executed on hybrid-analysis.com sandbox. In a nutshell, it downloads...
SQLMap v1.2.9 – Automatic SQL Injection & Database Takeover Tool
SQLMap v1.2.9 is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database...
Peda – Python Exploit Development Assistance for GDB
PEDA is a python exploit development assistance for GDB.
Features
Enhance the display of gdb: colorize and display disassembly codes, registers, memory information during debugging.
...
KisMac2 – Free Open Source Wireless Stumbling & Security Tool For Mac OS X
KisMAC2 is a free, open source wireless stumbling and security tool for Mac OS X. This project, is an active project to continue where...
Java-Stager : A PoC To Download, Compile & Execute A Java File In Memory
A PoC Java-Stager which can download, compile, and execute a Java file in memory.
The key parts of the talk for me are:
Load a...
htrace.sh – Simple Shell Script To Debugging Http/Https Traffic Tracing
htrace.sh simple shell script to debugging http/https traffic tracing, response headers and mixed-content. Scanning domain using Nmap NSE Library. Support external security tools: Mozilla...
