Sub3Suite : A Free, Open Source, Cross Platform Intelligence Gathering Tool
.png "Sub3Suite : A Free, Open Source, Cross Platform Intelligence Gathering Tool")
Sub3 Suite is a research-grade suite of tools for Subdomain Enumeration, OSINT Information gathering & Attack Surface Mapping. Supports both manual and automated analysis on variety of target types with many available features & tools. Launching Download Sub3 Suite for your required platform (Windows or Linux) from releases. on Windows After download: Extract the zip file to location of your choice. To run just...
Ecapture : Capture SSL/TLS Text Content Without CA Cert By eBPF
.png "Ecapture : Capture SSL/TLS Text Content Without CA Cert By eBPF"){kind=logo}
eCapture is a tool to capture SSL/TLS text content without CA cert Using eBPF. How eCapture works SSL/TLS text context capture, support openssllibresslboringsslgnutlsnspr(nss) libraries.bash audit, capture bash command for Host Security Audit.mysql query SQL audit, support mysqld 5.65.78.0, and mariadDB. eCapture Architecure Getting started use ELF binary file Download ELF zip file release , unzip and use by command ./ecapture --help. Linux kernel version >= 4.18Enable BTF BPF Type Format...
Jfscan : A Super Fast And Customisable Port Scanner, Based On Masscan And NMap
.png "Jfscan : A Super Fast And Customisable Port Scanner, Based On Masscan And NMap")
JFScan (Just Fu*king Scan) is a wrapper around a super-fast port scanner Masscan. It's designed to simplify work when scanning for open ports on targets in a variety of formats. The JFScan accepts a target in the following forms: URL, domain, or IP (including CIDR). You can specify a file with targets using argument or use stdin. The JFScan also...
Ma2Tl : macOS Forensic Timeline Generator Using The Analysis Result DBs Of Mac_Apt
.png "Ma2Tl : macOS Forensic Timeline Generator Using The Analysis Result DBs Of Mac_Apt")
Ma2Tl is a DFIR tool for generating a macOS forensic timeline from the analysis result DBs of mac_apt. Requirements Python 3.7.0 or laterpytztzlocalxlsxwriter Installation % git clone https://github.com/mnrkbys/ma2tl.git Usage % python ./ma2tl.py -husage: ma2tl.py plugin Forensic timeline generator using mac_apt analysis results. Supports only SQLite DBs.positional arguments:plugin Plugins to run (space separated).optional arguments:-h, --help show this help...
DumpSMBShare : A Script To Dump Files And Folders Remotely From A Windows SMB Share
.png "DumpSMBShare : A Script To Dump Files And Folders Remotely From A Windows SMB Share")
DumpSMBShare is a script to dump files and folders remotely from a Windows SMB share. Features Only list shares with --list-shares. Select only files with given extensions (with --extensions) or all files. Choose the local folder to dump to with --dump-dir. Select base folder to search from in the share with --base-dir. Usage $ ./DumpSMBShare.py -hDumpSMBShare v1.2 - by @podalirius_usage: Dump.py (-s SHARE | -l) ...
Can Linux Be Installed On a Mac?
Linux operating system is the most common open source OS used on servers, smartphones, desktop and laptop computers, and other compatible devices. It can run on most major computer platforms like ARM, SPARC, and x86; and is rated highly by many in the tech industry. There are different versions of Linux OS and all of them are capable of managing...
Smap : A Drop-In Replacement For Nmap Powered By Shodan.Io
.png "Smap : A Drop-In Replacement For Nmap Powered By Shodan.Io")
Smap is a replica of Nmap which uses shodan.io's free API for port scanning. It takes same command line arguments as Nmap and produces the same output which makes it a drop-in replacement for Nmap. Features Scans 200 hosts per secondDoesn't require any account/api keyVulnerability detectionSupports all nmap's output formatsService and version fingerprintingMakes no contact to the targets Installation Binaries You can download a...
ADReaper : A Fast Enumeration Tool For Windows Active Directory Pentesting Written In Go
.png "ADReaper : A Fast Enumeration Tool For Windows Active Directory Pentesting Written In Go")
ADReaper is a tool written in Golang which enumerates an Active Directory environment with LDAP queries within few seconds Installation You can download precompiled executable binaries for Windows/Linux from latest releases Install from source To build from source, clone the repo and build it with GO $ git clone https://github.com/AidenPearce369/ADReaper$ cd ADReaper/$ go build Usage ADReaper performs enumeration with various commands that performs LDAP queries with respective to it PS C:UsersredteamerDesktopshared>...
KrbRelay : Framework For Kerberos Relaying
.png "KrbRelay : Framework For Kerberos Relaying")
KrbRelay should be working on most fully patched Windows systems. There may be difficulties with Server OS in lab environments because of the firewall blocking the OXID resolver however, this will most likely not be an issue during real life engagements, same goes for CLSIDs. Supported Protocols and Features Some protocols are more completed than others, PR's are welcomed. LLMNRLDAP/LDAPSHTTPEWSSMBv2RPC over SMBMS-SAMRMS-SCMRMS-RPRNMS-RRPMS-LSAT/MS-LSAD Examples LPE.KrbRelay.exe...
Zircolite : A Standalone SIGMA-based Detection Tool For EVTX, Auditd And Sysmon For Linux Logs
.png "Zircolite : A Standalone SIGMA-based Detection Tool For EVTX, Auditd And Sysmon For Linux Logs")
Zircolite is a standalone tool written in Python 3. It allows to use SIGMA rules on MS Windows EVTX (EVTX and JSONL format), Auditd logs and Sysmon for Linux logs Zircolite can be used directly on the investigated endpoint (use releases) or in your forensic/detection labZircolite is fast and can parse large datasets in just seconds (check benchmarks) Zircolite can be used directly in Python...
