Pyramid : A Tool To Help Operate In EDRs’ Blind Spots
.png "Pyramid : A Tool To Help Operate In EDRs’ Blind Spots")
Pyramid is a set of Python scripts and module dependencies that can be used to evade EDRs. The main purpose of the tool is to perform offensive tasks by leveraging some Python evasion properties and looking as a legit Python application usage. This can be achieved because: the Python Embeddable package provides a signed Python interpreter with good reputation; Python has...
Metasploit Framework – A Beginner’s Guide for Penetration Testing & Exploit Development
Metasploit Framework is a collection of exploits, shellcodes, fuzzing tools, payloads, encoders etc. Moreover, we can regard it as a collection of exploitation tools bundled into a single framework. It is available in all major Linux, Windows, OS X platforms. Its main objective is to test your/company's/organization's defenses by attacking them. Something like "Offense for Defense". This is actually where a...
AzureGraph : Azure AD Enumeration Over MS Graph
.png "AzureGraph : Azure AD Enumeration Over MS Graph")
AzureGraph is an Azure AD information gathering tool over Microsoft Graph. Thanks to Microsoft Graph technology, it is possible to obtain all kinds of information from Azure AD, such as users, devices, applications, domains and much more. This application, allows you to query this data through the API in an easy and simple way through a PowerShell console. Additionally, you can...
Whatweb – A Scanning Tool to Find Security Vulnerabilities in Web App
Whatweb is the perfect name for this tool. Simply it answers the question, “What is that Website?” Whatweb can identify all sorts of information about a live website, like: Platform CMS platform Type of Script Google Analytics Web server Platform IP address, Country 900+ Plugins & their libraries used Server Headers, Cookies and a lot more. Whatweb offers both passive scanning and aggressive testing. Passive scanning just extracts...
SIEM – Security Information and Event Management Tools – A Beginner’s Guide
What is a SIEM? SIEM, when expanded, becomes Security Information Event Management. As its name suggests, the primary function of a SIEM is Event management. The SIEM solution, once implemented completely & effectively, will have complete visibility over an organization’s network. This helps administrators and SIEM operators to monitor network activity in their infrastructure. But interestingly, one can categorize various assets(network...
R4Ven : Track IP And GPS Location
.png "R4Ven : Track IP And GPS Location")
Track User's Smartphone/Pc Ip And Gps Location. The tool hosts a fake website which uses an iframe to display a legit website and, if the target allows it, it will fetch the Gps location (latitude and longitude) of the target along with IP Address and Device Information. This tool is a Proof of Concept and is for Educational Purposes Only. Using this...
Klyda : Highly Configurable Script For Dictionary/Spray Attacks Against Online Web Applications
.png "Klyda : Highly Configurable Script For Dictionary/Spray Attacks Against Online Web Applications")
The Klyda project has been created to aid in quick credential based attacks against online web applications. Klyda supports the use from simple password sprays, to large multithreaded dictionary attacks. Klyda is a new project, and I am looking for any contributions. Any help is very appreciated.Klyda offers simple, easy to remember usage; however, still offers configurability for your needs: Mulithreaded...
Pylirt : Python Linux Incident Response Toolkit
Pylirt application, it is aimed to accelerate the incident response processes by collecting information in Linux operating systems. Features Information is collected in the following contents. /etc/passwd cat /etc/group cat /etc/sudoers lastlog cat /var/log/auth.log uptime/proc/meminfo ps aux /etc/resolv.conf /etc/hosts iptables -L -v -n find / -type f -size +512k -exec ls -lh {}/; find / -mtime -1 -ls ip a netstat -nap arp -a echo $PATH Installation git clone https://github.com/anil-yelken/pylirtcd pylirtsudo pip3 install paramiko Usage The following information should be specified...
Scscanner : Tool To Read Website Status Code Response From The Lists
Scscanner is tool to read website status code response from the lists. This tool have ability to filter only spesific status code, and save the result to a file. Feature Slight dependency. This tool only need curl to be installed Multi-processing. Scanning will be more faster with multi-processing Filter status code. If you want only spesific status code (ex: 200) from the list,...
Neton : A Sandbox Information Gathering Tool
Neton is a tool for getting information from Internet connected sandboxes. It is composed by an agent and a web interface that displays the collected information.The Neton agent gets information from the systems on which it runs and exfiltrates it via HTTPS to the web server. Some of the information it collects: Operating system and hardware information Find files on mounted drives List...
.webp "M.E.A.T. – Pioneering Mobile Forensics With The Mobile Evidence Acquisition Toolkit")
