Xerror : An Automated Penetration Tool
Xerror is an automated penetration tool , which will help security professionals and non professionals to automate their pen testing tasks. Xerror will perform all tests and, at the end generate two reports for executives and analysts. Xerror provides GUI easy to use menu driven options.Internally it supports openVas for vulnerability scanning, Metasploit for exploitation and gives GUI based options...
NamedPipePTH : Pass The Hash To A Named Pipe For Token Impersonation
NamedPipePTH project is a PoC code to use Pass-the-Hash for authentication on a local Named Pipe user Impersonation. There also is a blog post for explanation: https://s3cur3th1ssh1t.github.io/Named-Pipe-PTH/ It is heavily based on the code from the projects Invoke-SMBExec.ps1 and RoguePotato. I faced certain Offensive Security project situations in the past, where I already had the NTLM-Hash of a low privileged user account and needed a shell for...
LocCheck : A Tool For Simplifying The Process Of Researching IOCs
LocCheck is a tool for simplifying the process of researching file hashes, IP addresses, and other indicators of compromise (IOCs). Features Look up hashes across multiple threat intelligence services, from a single command or a few lines of Python.Currenty supports the following services:VirusTotalMalwareBazaarShodan.ioPlanned support:URLhausOTXInQuest LabsMalShareMalpediaMaltiverse Quickstart pip install ioccheck You can also run the code directly git clone https://github.com/ranguli/ioccheck && cd ioccheckpoetry install Usage ➜ ioccheck 275a021bbfb6489e54d471899f7db9d1663fc695ec2fe2a2c4538aabf651fd0fChecking...
Squalr : Squalr Memory Editor – Game Hacking Tool Written In C#
Squalr is performant Memory Editing software that allows users to create and share cheats in their windows desktop games. This includes memory scanning, pointers, x86/x64 assembly injection, and so on. Squalr achieves fast scans through multi-threading combined with SIMD instructions. See this article: SIMD in .NET. To take advantage of these gains, your CPU needs to have support for SSE, AVX, or...
Kconfig : Hardened-Check – A Tool For Checking The Hardening Options In The Linux Kernel Config
Kconfig is a tool For Checking The Hardening Options In The Linux Kernel Config There are plenty of Linux kernel hardening config options. A lot of them are not enabled by the major distros. We have to enable these options ourselves to make our systems more secure. But nobody likes checking configs manually. So let the computers do their job! kconfig-hardened-check.py helps me...
RdpCacheStitcher : RdpCacheStitcher Is A Tool That Supports Forensic Analysts
RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps. Using raw RDP cache tile bitmaps extracted by tools like e.g. ANSSI's BMC-Tools (https://github.com/ANSSI-FR/bmc-tools) as input, it provides a graphical user interface and several placement heuristics for stitching tiles together so that meaningful images or even full screenshots can be reconstructed. Features Show hints where a selected...
FalconEye : Real-time detection software for Windows process injections
FalconEye is a windows endpoint detection software for real-time process injections. It is a kernel-mode driver that aims to catch process injections as they are happening (real-time). Since FalconEye runs in kernel mode, it provides a stronger and reliable defense against process injection techniques that try to evade various user-mode hooks. You can check our presentation at 2021 Blackhat ASIA Arsenal and slides. Project...
Rustcat : Netcat Alternative
Rustcat is a port listener that can be used for different purposes.It is basically like netcat but with fewer options. Why Use Rustcat? Serves it purpose of listening to portsHas command historyIt is easy to useSupports udpUses colors Installation Debian wget https://github.com/robiot/rustcat/releases/latest/download/rustcat_amd64.debsudo apt install ./rustcat_amd64.deb Arch git clone https://aur.archlinux.org/rustcat.gitcd rustcatmakepkg -si Or with yay: yay -S rustcat Other Distributions To install from crates.io: cargo install rustcat To install the latest github release...
Joern : Open-source Code Analysis Platform For C/C++/Java Based On Code Property Graphs
Joern is an open-source Code Analysis Platform For C/C++/Java Based On Code Property Graphs. Quick Installation wget https://github.com/ShiftLeftSecurity/joern/releases/latest/download/joern-install.shchmod +x ./joern-install.shsudo ./joern-install.shjoernCompiling (synthetic)/ammonite/predef/interpBridge.scCompiling (synthetic)/ammonite/predef/replBridge.scCompiling (synthetic)/ammonite/predef/DefaultPredef.scCompiling /home/tmp/shiftleft/joern/(console)██╗ ██████╗ ███████╗██████╗ ███╗ ██╗██║██╔═══██╗██╔════╝██╔══██╗████╗ ██║██║██║ ██║█████╗ ██████╔╝██╔██╗ ██║██ ██║██║ ██║██╔══╝ ██╔══██╗██║╚██╗██║╚█████╔╝╚██████╔╝███████╗██║ ██║██║ ╚████║╚════╝ ╚═════╝ ╚══════╝╚═╝ ╚═╝╚═╝ ╚═══╝joern> If the installation script fails for any reason, try ./joern-install --interactive
PPLdump : Dump The Memory Of A PPL With A Userland Exploit
PPLdump implements a userland exploit that was initially discussed by James Forshaw (a.k.a. @tiraniddo) - in this blog post - for dumping the memory of any PPL as an administrator. I wrote two blog posts about this tool. The first part is about Protected Processes concepts while the second one dicusses the bypass technique itself. Blog post part #1: Do You Really Know About LSA Protection (RunAsPPL)?Blog post part...
