.webp "How To Install/Run – Streamlining OSINT Workflows For Enhanced Capabilities")
GRAT2 : Command And Control (C2) Project For Learning Purpose
GRAT2 is a Command and Control (C2) tool written in python3 and the client in .NET 4.0. The main idea came from Georgios Koumettou who initiated the project. Why we developed GRAT2 ? We are aware that there are numerous C2 tools out there but, we developed this tool due to curiosity of how C2 and other evasion techniques work. That's...
VMPDump : A Dynamic VMP Dumper And Import Fixer
VMPDump is a dynamic VMP dumper and import fixer, powered by VTIL. Works for VMProtect 3.X x64. Before vs After Usage VMPDump.exe <Target PID> "<Target Module>" Arguments: <Target PID>: The ID of the target process, in decimal or hex form.<Target Module>: The name of the module which should be dumped and fixed. This can be an empty string ("") if the process...
Moriarty Project : This Tool Gives Information About The Phone Number That You Entered
Moriarty is a tool that tries to find good information about the phone number that you provided Tries To Find Owner Of The NumberTries To Find Risk Level Of The NumberTries To Find Location,Time Zone Of The Number,CarrierTries To Find Social Media Platforms That The Number Is RegisteredTries To Find Links About Phone NumberTries To Find Comments About Phone NumberSends...
CRLFuzz : A Fast Tool To Scan CRLF Vulnerability Written In Go
CRLFuzz is a fast tool to scan CRLF vulnerability written in Go. Installation From Binary The installation is easy. You can download a prebuilt binary from releases page, unpack and run! or with curl -sSfL https://git.io/crlfuzz | sh -s -- -b /usr/local/bin From Source If you have go1.13+ compiler installed and configured: GO111MODULE=on go get -v github.com/dwisiswant0/crlfuzz/cmd/crlfuzz In order to update the tool, you can use -u...
Unimap : Scan Only Once By IP Address
Scan only once by IP address and reduce scan times with Nmap for large amounts of data. Unimap is an abbreviation of "Unique Nmap Scan". The tool can run in Linux, OSX, Windows or Android (Termux) without problems. Why? If you have plans to run an Nmap to a whole organization you need to consideer that surely tens, hundreds or even...
BXSS : A Blind XSS Injector Tool
BXSS is a blind XSS injector tool. Features Inject Blind XSS payloads into custom headersInject Blind XSS payloads into parametersUses Different Request Methods (PUT,POST,GET,OPTIONS) all at onceTool ChainingReally fastEasy to setup Install $ go get -u github.com/ethicalhackingplayground/bxss Arguments -- Coded by @z0idsec ---appendModeAppend the payload to the parameter-concurrency intSet the concurrency (default 30)-header stringSet the custom header (default "User-Agent")-parametersTest the parameters for blind xss-payload...
CRLFMap – A Tool To Find HTTP Splitting Vulnerabilities
CRLFMap is a tool to find HTTP Splitting vulnerabilities. Why? I wanted to write a tool in Golang for concurrencyI wanted to be able to fuzz both parameters and paths Installation go get github.com/ryandamour/crlfmap Help Available Commands:help Help about any commandscan A scanner for all your CRLF needsFlags:-h, --help help for crlfmap Scan Usage crlfmap scan --domains domains.txt --output results.txt---------------------------------------------------------------------------------------------v0.0.1---------------------------------------------------------------------------------------------:: Domains : domains.txt:: Payloads : payloads.txt::...
Zin : A Payload Injector For Bugbounties Written In Go
Zin is a payload Injector For Bugbounties Written In Go. Features Inject multiple payloads into all parametersInject single payloads into all parametersSaves responses into output folderDisplays Status Code & Response LengthCan grep for patterns in the responseReally fastEasy to setup Install $ go get -u github.com/ethicalhackingplayground/Zin New Features Pattern Matching in responsesMatch Status Codes Arguments May the bounties come-c intthe concurrency (default 20)-g stringgrep the response for...
DorkX : Pipe Different Tools With Google Dork Scanner
DorkX pipe different tools with google dork Scanner. Install zoid@MSI ~/dorkX> git clone https://github.com/ethicalhackingplayground/dorkXzoid@MSI ~/dorkX> cd dorkXzoid@MSI ~/dorkX> go build dorkx.gozoid@MSI ~/dorkX> go build corsx.gozoid@MSI ~/dorkX> go build csrfx.gozoid@MSI ~/dorkX> go build zin.go Usage Blind XSS zoid@MSI ~/dorkX> ./dorkX -dorks dorks.txt -concurrency 100 | dalfox pipe -b '">' XSS zoid@MSI ~/dorkX> ./dorkx -dorks dorks.txt | dalfox pipezoid@MSI ~/dorkX> ./dorkx -dork "inurl:index.php?id" | dalfox pipe Cors zoid@MSI ~/dorkX> ./dorkx...
AES Finder : Utility To Find AES Keys In Running Processes
AES Finder is a utility to find AES keys in running process memory. Works for 128, 192 and 256-bit keys. Usage Open aes-finder.sln solution in Visual Studio 2013 to compile source. Alternatively use gcc/clang: g++ -O3 -march=native -fomit-frame-pointer aes-finder.cpp -o aes-finder To search for keys in process with id = 123, execute following: aes-finder.exe -123 To search for keys in any process...
