Kubei : A Flexible Kubernetes Runtime Scanner
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems. It scans both runtime K8s clusters and CI/CD pipelines for enhanced software supply chain security. Why? SBOM & Vulnerability Detection...
auditpolCIS : CIS Benchmark Testing Of Windows SIEM Configuration
auditpolCIS is a CIS Benchmark testing of Windows SIEM configuration. This is an application for testing the configuration of Windows Audit Policy settings against the CIS Benchmark recommended settings. A few points: The tested system was Windows Server 2019, and the benchmark used was also Windows Server 2019. The script connects with SSH. SSH is included with Windows Server 2019, it...
PortEx : Java Library To Analyse Portable Executable Files With A Special Focus On Malware Analysis And PE Malformation Robustness
PortEx is a Java library to analyse Portable Executable files with a special focus on malware analysis and PE malformation robustness PortEx is a Java library for static malware analysis of Portable Executable files. Its focus is on PE malformation robustness, and anomaly detection. PortEx is written in Java and Scala, and targeted at Java applications. Features Reading header information from: MSDOS...
Vid2img-extract all frame from a given video
Introduction to Vid2img Tool: A script written in Python called the vid2img tool can extract every frame from a given video. Any device with Python installed can use this tool Installation vid2img tool (python 3) Kali-Linux sudo apt-get update -y && sudo apt-get upgrade -y sudo apt install git python3 -y git clone https://github.com/turbo-hackers/Vid2img.git cd Vid2img make install python3 vid2img -h Termux apt-get update -y && apt-get upgrade -y pkg install...
404 Frame – Infiltrating websites is now easy
What is a 404 Frame? Most tools for hacking a website are found in the 404 Frame. In this way, no time is wasted! We wanted to give 404 Frame a unique terminal feel since most software does not have one. So what exactly are the commands? You can issue orders using everyday conversational language because we did not want...
jupyter-kali
Introduction A Kali-based container for recon and enumeration using JupyterLab hosted on Docker. Jupyter Notebook is an open-source web application that allows you to create and share documents that contain live code, equations, visualizations, and narrative text. Uses include data cleaning and transformation, numerical simulation, statistical modeling, data visualization, machine learning, and much more. Example 1. Run 2. Import/Export Files 3. Split Files &...
Passwordless Authentication Should Become Mainstream by 2023
Since the days of Ancient Rome and Egypt, people have used passwords to authenticate and grant access. Nowadays, passwords are more common than ever. From Netflix to Amazon and all the other online platforms, the average person has 90 online accounts. To save time and make login credentials easier to remember, most people recycle passwords across accounts. That is,...
Email2PhoneNumber: Obtain Phone Number via Email Address
Introduction An open-source intelligence (OSINT) tool called Email2PhoneNumber enables you to discover a target's phone number simply by knowing his email address. Basic usage information By exploiting the password reset email design flaws and publicly available data, this crude tool assists in automating finding someone's phone number. It supports 3 primary functions: “scrape” — scrapes websites for phone number digits by initiating password...
SOC-Multitool
Introduction Introducing SOC Multitool a free and open-source browser extension that accelerates and optimizes research. Now accessible through the Chrome Web Store and working with every browser powered by the Chromium OS, including Microsoft Edge, Chrome, Brave, and Opera. Download link- https://chrome.google.com/webstore/detail/soc-multi-tool/diagjgnagmnjdfnfcciocmjcllacgkab?hl=en&authuser=0 Streamline your investigations The constant copying and pasting required during investigations is done away with by SOC Multi-Tool. To access the type...
KubeStalk : Discovers Kubernetes Attack Surface From A Black-Box Perspective
.png "KubeStalk : Discovers Kubernetes Attack Surface From A Black-Box Perspective")
KubeStalk is a tool to discover Kubernetes and related infrastructure based attack surface from a black-box perspective. This tool is a community version of the tool used to probe for unsecured Kubernetes clusters around the internet during Project Resonance - Wave 9. Usage The GIF below demonstrates usage of the tool: Installation KubeStalk is written in Python and requires the requests library. To install...
.png "Zap-Scripts : Zed Attack Proxy Scripts For Finding CVEs And Secrets")
