EyeWitness : Take Screenshots Of Websites
.png "EyeWitness : Take Screenshots Of Websites")
EyeWitness is designed to take screenshots of websites provide some server header info, and identify default credentials if known. EyeWitness is designed to run on Kali Linux. It will auto detect the file you give it with the -f flag as either being a text file with URLs on each new line, nmap xml output, or nessus xml output. The...
RDPHijack : Uses WinStationConnect API to Perform local/Remote RDP session hijacking
.png "RDPHijack : Uses WinStationConnect API to Perform local/Remote RDP session hijacking")
Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking. With a valid access token / kerberos ticket (e.g., golden ticket) of the session owner, you will be able to hijack the session remotely without dropping any beacon/tool on the target server. To enumerate sessions locally/remotely, you could use Quser-BOF. Usage Usage: bof-rdphijack Command...
Cyber Security And Mental Health
It is no secret that the internet can be a dark and dangerous place. Whether you’re just spending some leisure time on social media or gambling online, it is important to be vigilant. Every day we read stories in the news about cyber attacks and cyber bullying. These stories usually involve young people who have been the victim of...
NimGetSyscallStub : Get Fresh Syscalls From A Fresh Ntdll.Dll Copy
.png "NimGetSyscallStub : Get Fresh Syscalls From A Fresh Ntdll.Dll Copy")
NimGetSyscallStub, Get fresh Syscalls from a fresh ntdll.dll copy. This code can be used as an alternative to the already published awesome tools NimlineWhispers and NimlineWhispers2 by @ajpc500 or ParallelNimcalls. The advantage of grabbing Syscalls dynamically is, that the signature of the Stubs is not included in the file and you don't have to worry about changing Windows versions. To compile the shellcode execution template run the following: nim...
OSRipper : AV Evading OSX Backdoor And Crypter Framework
.png "OSRipper : AV Evading OSX Backdoor And Crypter Framework")
OSripper is a fully undetectable Backdoor generator and Crypter which specialises in OSX M1 malware. It will also work on windows but for now there is no support for it and it IS NOT FUD for windows (yet at least) and for now i will not focus on windows. You can also PM me on discord for support or to...
Kam1n0 : Assembly Analysis Platform
.png "Kam1n0 : Assembly Analysis Platform")
Kam1n0 v2.x is a scalable assembly management and analysis platform. It allows a user to first index a (large) collection of binaries into different repositories and provide different analytic services such as clone search and classification. It supports multi-tenancy access and management of assembly repositories by using the concept of Application. An application instance contains its own exclusive repository and provides...
CATS : REST API Fuzzer And Negative Testing Tool For OpenAPI Endpoints
.png "CATS : REST API Fuzzer And Negative Testing Tool For OpenAPI Endpoints")
CATS , REST API fuzzer and negative testing tool. Run thousands of self-healing API tests within minutes with no coding effort! Comprehensive: tests are generated automatically based on a large number scenarios and cover every field and headerIntelligent: tests are generated based on data types and constraints; each Fuzzer has specific expectations depending on the scenario under testHighly Configurable: high amount of...
gophish : Open-Source Phishing Toolkit
.png "gophish : Open-Source Phishing Toolkit")
Gophish is an open-source phishing toolkit designed for businesses and penetration testers. It provides the ability to quickly and easily setup and execute phishing engagements and security awareness training. Install Installation of Gophish is dead-simple - just download and extract the zip containing the release for your system, and run the binary. Gophish has binary releases for Windows, Mac, and Linux platforms. Building From...
Dependency Check : Detects Publicly Disclosed Vulnerabilities In Application Dependencies
.png "Dependency Check : Detects Publicly Disclosed Vulnerabilities In Application Dependencies")
Dependency-Check is a Software Composition Analysis (SCA) tool that attempts to detect publicly disclosed vulnerabilities contained within a project's dependencies. It does this by determining if there is a Common Platform Enumeration (CPE) identifier for a given dependency. If found, it will generate a report linking to the associated CVE entries. Documentation and links to production binary releases can be...
Firezone : WireGuard-Based VPN Server And Firewall
.png "Firezone : WireGuard-Based VPN Server And Firewall")
Firezone is a self-hosted VPN server and Linux firewall Manage remote access through an intuitive web interface and CLI utility.Deploy on your own infrastructure to keep control of your network traffic.Built on WireGuard® to be stable, performant, and lightweight. Get Started Follow our deploy guide to install your self-hosted instance of Firezone. Or, if you're on a supported platform, try our one-line install script : sudo -E bash -c "$(curl...
.webp "Afrog – Empowering Bug Bounty, Pentesting, And Red Teaming With A High-Performance Security Tool")
