dBmonster : Track WiFi Devices With Their Recieved Signal Strength
.png "dBmonster : Track WiFi Devices With Their Recieved Signal Strength")
dBmonster you are able to scan for nearby WiFi devices and track them trough the signal strength (dBm) of their sent packets (sniffed with TShark). These dBm values will be plotted to a graph with matplotlib. It can help you to identify the exact location of nearby WiFi devices (use a directional WiFi antenna for the best results) or to find out how...
Concealed_Code_Execution : Tools And Technical Write-Ups Describing Attacking Techniques
.png "Concealed_Code_Execution : Tools And Technical Write-Ups Describing Attacking Techniques")
Concealed_Code_Execution is a set of tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows. Here you will find explanations of how these techniques work, receive advice on detection, and get sample source code for testing your detection coverage. Content This repository covers two classes of attacking techniques that extensively use internal Windows mechanisms plus provides suggestions...
RPCMon : RPC Monitor Tool Based On Event Tracing For Windows
%20(2).png "RPCMon : RPC Monitor Tool Based On Event Tracing For Windows")
RPCMon can help researchers to get a high level view over an RPC communication between processes. It was built like Procmon for easy usage, and uses James Forshaw .NET library for RPC. RPCMon can show you the RPC functions being called, the process who called them, and other relevant information.RPCMon uses a hardcoded RPC dictionary for fast RPC information...
crAPI : Completely Ridiculous API
.png "crAPI : Completely Ridiculous API")
crAPI (completely ridiculous API) will help you to understand the ten most critical API security risks. crAPI is vulnerable by design, but you'll be able to safely run it to educate/train yourself. crAPI is modern, built on top of a microservices architecture. When time has come to buy your first car, sign up for an account and start your journey. To know...
dnsReaper : Subdomain Takeover Tool For Attackers, Bug Bounty Hunters And The Blue Team!
DNS Reaper is yet another sub-domain takeover tool, but with an emphasis on accuracy, speed and the number of signatures in our arsenal! We can scan around 50 subdomains per second, testing each one with over 50 takeover signatures. This means most organisations can scan their entire DNS estate in less than 10 seconds. You can use DNS Reaper as an...
Ropr : A Blazing Fast Multithreaded ROP Gadget Finder. Ropper / Ropgadget Alternative
.png "Ropr : A Blazing Fast Multithreaded ROP Gadget Finder. Ropper / Ropgadget Alternative")
ROP (Return Oriented Programming) Gadgets are small snippets of a few assembly instructions typically ending in a ret instruction which already exist as executable code within each binary or library. These gadgets may be used for binary exploitation and to subvert vulnerable executables. When the addresses of many ROP Gadgets are written into a buffer we have formed a ROP Chain. If...
Hoaxshell : An Unconventional Windows Reverse Shell, Currently Undetected By Microsoft Defender
%20(1).png "Hoaxshell : An Unconventional Windows Reverse Shell, Currently Undetected By Microsoft Defender")
Hoaxshell is an unconventional Windows reverse shell, currently undetected by Microsoft Defender and possibly other AV solutions as it is solely based on http(s) traffic. The tool is easy to use, it generates it's own PowerShell payload and it supports encryption (ssl). So far, it has been tested on fully updated Windows 11 Enterprise and Windows 10 Pro boxes (see video and screenshots). Installation git clone...
VLANPWN : VLAN Attacks Toolkit
VLAN attacks toolkit, the author has nothing to do with those who will use these tools for personal purposes to destroy other people's computer networks. The tools are presented for training purposes to help engineers improve the security of their network. ᛝ DoubleTagging.py - This tool is designed to carry out a VLAN Hopping attack. As a result of injection of a...
RedGuard : C2 Front Flow Control Tool, Can Avoid Blue Teams, AVs, EDRs Check
.png "RedGuard : C2 Front Flow Control Tool, Can Avoid Blue Teams, AVs, EDRs Check")
RedGuard, a derivative tool based on command and control (C2) front flow control technology, has a lighter design, efficient traffic interaction, and reliable compatibility with development in the go programming language.As cyber attacks are constantly evolving , the red and blue team exercises become progressively more complex, RedGuard is designed to provide a better C2 channel hiding solution for...
NimGetSyscallStub : Get Fresh Syscalls From A Fresh Ntdll.Dll Copy
.png "NimGetSyscallStub : Get Fresh Syscalls From A Fresh Ntdll.Dll Copy")
NimGetSyscallStub, Get fresh Syscalls from a fresh ntdll.dll copy. This code can be used as an alternative to the already published awesome tools NimlineWhispers and NimlineWhispers2 by @ajpc500 or ParallelNimcalls. The advantage of grabbing Syscalls dynamically is, that the signature of the Stubs is not included in the file and you don't have to worry about changing Windows versions. To compile the shellcode execution template run the following: nim...
