Onelinepy : Python Obfuscator To Generate One-Liners And FUD Payloads
Onelinepy is a Python Obfuscator To Generate One-Liners And FUD Payloads. Download & Run git clone https://github.com/spicesouls/onelinepycd onelinepychmod +x setup.sh./setup.shonelinepy Usage Guide _ | || _ _| . | | -| | | | -| . | | | Python|||||||||| | | Obfustucator |_| ||usage: oneline.py optional arguments:-h, --help show this help message and exit-m M Obfustucating...
Arkhota : A Web Brute Forcer For Android
Arkhota is a web (HTTP/S) brute forcer for Android. A web brute forcer is always in a hacker's computer, for obvious reasons. Sometimes attacks require to be quick or/and with minimal device preparation. Also a phone takes less attention rather than a laptop/computer. For this situations here's Arkhota. Usage Explanation is in order of objects in the APK from top to...
Dent : A Framework For Creating COM-based Bypasses Utilizing Vulnerabilities In Microsoft’s WDAPT Sensors
Dent is a framework generates code to exploit vulnerabilties in Microsoft Defender Advanced Threat Protection's Attack Surface Reduction (ASR) rules to execute shellcode without being detected or prevented. ASR was designed to be the first line of defense, detecting events based on actions that violate a set of rules. These rules focus on specific behavior indicators on the endpoint...
Bucky : An Automatic S3 Bucket Discovery Tool
Bucky is an automatic tool designed to discover S3 bucket misconfiguration, Bucky consists up of two modules Bucky firefox addon and Bucky backend engine. Bucky addon reads the source code of the webpages and uses Regular Expression(Regex) to match the S3 bucket used as Content Delivery Network(CDN) and sends it to the Bucky Backend engine. The backend engine receives...
DNS-Black-Cat(DBC) : Multi Platform Toolkit For An Interactive DNS Shell Commands Exfiltration, By Using DNS-Cat You Will Be Able To Execute System Commands In Shell Mode Over DNS Protocol
DNS-Black-Cat is a Multi-platform toolkit for an interactive C2C DNS shell, by using DNS-Black-Cat, you will be able to execute system commands in shell mode over a fully encrypted covert channel. Server ported as a python script, which acts as DNS server with required functionalities to provide interactive shell command interface. Client ported as the following file formats Windows 32/64 executable (exe)Linux 32/64 executable...
Php_Code_Analysis : Scan your PHP code for vulnerabilities
Php_Code_Analysis is a tool to Scan your PHP code for vulnerabilities the script can find check_file_upload issueshost_header_injectionSQl injectioninsecure deserializationopen_redirectSSRFXSSLFIcommand_injection Features fastsimple report Usage python code.py >>> this will scan one filepython code.py >>> this will scan full folder (.)python code.py >>> scan full folder Output Download
Solr-GRAB : Steal Apache Solr Instance Queries With Or Without A Username And Password
Solr-GRAB is a tool to Steal Apache Solr instance Queries with or without a username and password. Note : This project should be used for authorized testing and educational purposes only. Download git clone https://github.com/GnosticPlayers/Solr-GRAB Usage You can search for Apache Solr Instances via Censys, with the dork "Welcome To Solr" or "Apache Solr Admin". To grab queries, simply go to the http access point, sometimes being...
CiLocks : Android LockScreen Bypass
CiLocks (Crack Interface lockscreen), Metasploit and More Android Hacking. Update Available V1.1.0 Added New Tools Root Android {Supersu} Not Support All OS Version Jump To Adb Toolkit Remove Lockscreen {Root} Jump To Metasploit Restore All Media Deleted (Coomingsoon) Brute Pin 4 Digit Brute Pin 6 Digit Brute LockScreen Using Wordlist Bypass LockScreen {Antiguard} Not Support All OS Version Reset Data Screenshot Required ADB {Android SDk}USB CableAndroid Emulator {Nethunter/Termux} RootOr Computer Installation For Linux git clone https://github.com/tegal1337/CiLockscd...
MurMurHash : Tool To Calculate A MurmurHash Value Of A Favicon To Hunt Phishing Websites On The Shodan Platform
MurMurHash is a tool used to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform. What Is MurMurHash? MurmurHash is a non-cryptographic hash function suitable for general hash-based lookup. The name comes from two basic operations, multiply (MU) and rotate (R), used in its inner loop. The current version is MurmurHash3 which yields a 32-bit...
AMSITrigger : The Hunt For Malicious Strings
AMSITrigger will identify all of the malicious strings in a powershell file, by repeatedly making calls to AMSI using AMSIScanBuffer . Hunting For Malicious Strings Usage -i, --inputfile=VALUE Powershell filename-u, --url=VALUE URL eg. https://10.1.1.1/Invoke-NinjaCopy.ps1-f, --format=VALUE Output Format:1 - Only show Triggers2 - Show Triggers with Line numbers3 - Show Triggers inline with code4 - Show AMSI calls (xmas tree mode)-d, --debug Show...
