LAZYPARIAH : A Tool For Generating Reverse Shell Payloads On The Fly
.png "LAZYPARIAH : A Tool For Generating Reverse Shell Payloads On The Fly")
LAZYPARIAH is a simple and easily installable command-line tool written in pure Ruby that can be used during penetration tests and capture-the-flag (CTF) competitions to generate a range of reverse shell payloads on the fly. The reverse shell payloads that LAZYPARIAH supports include (but are not limited to): C binary payloads (compiled on the fly): c_binaryRuby payloads: ruby, ruby_b64, ruby_hex, ruby_cPowershell payloads: powershell_c, powershell_b64Base64-encoded Python payloads: python_b64Rust binary payloads...
Socid-Extractor : Extract Accounts Info From Personal Pages On Various Sites For OSINT Purpose
Socid-Extractor Extracts information about a user from profile webpages / API responses and save it in machine-readable format. Usage As a command-line tool: $ socid_extractor --url https://www.deviantart.com/muse1908country: Francecreated_at: 2005-06-16 18:17:41gender: femaleusername: Muse1908website: www.patreon.com/musemercierlinks: tagline: Nothing worth having is easy… Without installing: $ ./run.py --url https://www.deviantart.com/muse1908 As a Python library: import socid_extractor, requestsr = requests.get('https://www.patreon.com/annetlovart')socid_extractor.extract(r.text){'patreon_id': '33913189', 'patreon_username': 'annetlovart', 'fullname': 'Annet Lovart', 'links': ""} Installation $ pip3 install socid-extractor The latest...
Gitcolombo : Extract And Analyze Contributors Info From Git Repos
.png "Gitcolombo : Extract And Analyze Contributors Info From Git Repos")
Git colombo is an OSINT tool to extract info about persons from git repositories: common names, emails, matches between different (as it may seems) accounts. Using Install gitRun: from any git url./gitcolombo.py -u https://github.com/Kalanchyovskaia16/newlpsfrom directory, recursively./gitcolombo.py -d ./newlps -rfrom all GitHub personal/org repos by nickname./gitcolombo.py --nickname LubyRuffy For batch cloning from Gitlab and Bitbucket group repos you can use ghorg. Output: verbose persons infonameemailnumber of appearences...
Nimcrypt2 : .NET, PE, And Raw Shellcode Packer/Loader Written In Nim
Nimcrypt2 is yet another PE packer/loader designed to bypass AV/EDR. It is an improvement on my original Nimcrypt project, with the main improvements being the use of direct syscalls and the ability to load regular PE files as well as raw shellcode. Before going any further, I must acknowledge those who did the VAST majority of work and research that this project...
Ostorlab : A Security Scanning Platform That Enables Running Complex Security Scanning Tasks
.png "Ostorlab : A Security Scanning Platform That Enables Running Complex Security Scanning Tasks")
Ostorlab is a Security testing requires often chaining tools together, taking the output from one, mangling it, filtering it and then pushing it to another tool. Several tools have tried to make the process less painful. Ostorlab addresses the same challenge by simplifying the hardest part and automating the boring and tedious part. To do that, Ostorlab focuses on the...
Zkar : A Java Serialization Protocol Analysis Tool Implement In Go
.png "Zkar : A Java Serialization Protocol Analysis Tool Implement In Go")
ZKar is a Java serialization protocol analysis tool implement in Go. This tool is still work in progress, so no complete API document and contribution guide. ZKar provides: A Java serialization payloads parser and viewer in pure Go, no CGO or JDK is requiredFrom the Java serialization protocol to a Go structA Go library that can manipulate the Java serialization dataWIP: ysoserial implement in...
Request_Smuggler : Http Request Smuggling Vulnerability Scanner
%20(1).png "Request_Smuggler : Http Request Smuggling Vulnerability Scanner")
Request_Smuggler is a Http request smuggling vulnerability scanner. Based on the amazing research by James Kettle. The tool can help to find servers that may be vulnerable to request smuggling vulnerability. Usage USAGE:request_smuggler --urlFLAGS:-h, --help Prints help information-V, --version Prints version informationOPTIONS:--amount-of-payloads low/medium/all -t, --attack-types --filesend request from a fileyou need to explicitly pass rn at the end of the lines-H, --header Example:...
Factual-Rules-Generator : An Open Source Project Which Aims To Generate YARA Rules
.png "Factual-Rules-Generator : An Open Source Project Which Aims To Generate YARA Rules")
Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a running operating system. The goal of the software is to be able to use a set of rules against collected or acquired digital forensic evidences and find installed software in a timely fashion. The software can be used to baseline known software from Windows system and...
SysWhispers3 : AV/EDR Evasion Via Direct System Calls
.png "SysWhispers3 : AV/EDR Evasion Via Direct System Calls")
SysWhispers helps with evasion by generating header/ASM files implants can use to make direct system calls. Why on earth didn't I create a PR to SysWhispers2? The reason for SysWhispers3 to be a standalone version are many, but the most important are: SysWhispers3 is the de-facto "fork" used by Inceptor, and implements some utils class which are not relevant to the original version...
ADExplorerSnapshot.py : An AD Explorer Snapshot Parser. It Is Made As An Ingestor For BloodHound
.png "ADExplorerSnapshot.py : An AD Explorer Snapshot Parser. It Is Made As An Ingestor For BloodHound")
ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON. AD Explorer allows you to connect to a DC and browse LDAP data. It can also create snapshots of the server you are currently attached to. This tool allows you to convert those snapshots to BloodHound-compatible JSON files, or...
