Bucky : An Automatic S3 Bucket Discovery Tool
Bucky is an automatic tool designed to discover S3 bucket misconfiguration, Bucky consists up of two modules Bucky firefox addon and Bucky backend engine. Bucky addon reads the source code of the webpages and uses Regular Expression(Regex) to match the S3 bucket used as Content Delivery Network(CDN) and sends it to the Bucky Backend engine. The backend engine receives...
DNS-Black-Cat(DBC) : Multi Platform Toolkit For An Interactive DNS Shell Commands Exfiltration, By Using DNS-Cat You Will Be Able To Execute System Commands In Shell Mode Over DNS Protocol
DNS-Black-Cat is a Multi-platform toolkit for an interactive C2C DNS shell, by using DNS-Black-Cat, you will be able to execute system commands in shell mode over a fully encrypted covert channel. Server ported as a python script, which acts as DNS server with required functionalities to provide interactive shell command interface. Client ported as the following file formats Windows 32/64 executable (exe)Linux 32/64 executable...
Php_Code_Analysis : Scan your PHP code for vulnerabilities
Php_Code_Analysis is a tool to Scan your PHP code for vulnerabilities the script can find check_file_upload issueshost_header_injectionSQl injectioninsecure deserializationopen_redirectSSRFXSSLFIcommand_injection Features fastsimple report Usage python code.py >>> this will scan one filepython code.py >>> this will scan full folder (.)python code.py >>> scan full folder Output Download
Solr-GRAB : Steal Apache Solr Instance Queries With Or Without A Username And Password
Solr-GRAB is a tool to Steal Apache Solr instance Queries with or without a username and password. Note : This project should be used for authorized testing and educational purposes only. Download git clone https://github.com/GnosticPlayers/Solr-GRAB Usage You can search for Apache Solr Instances via Censys, with the dork "Welcome To Solr" or "Apache Solr Admin". To grab queries, simply go to the http access point, sometimes being...
CiLocks : Android LockScreen Bypass
CiLocks (Crack Interface lockscreen), Metasploit and More Android Hacking. Update Available V1.1.0 Added New Tools Root Android {Supersu} Not Support All OS Version Jump To Adb Toolkit Remove Lockscreen {Root} Jump To Metasploit Restore All Media Deleted (Coomingsoon) Brute Pin 4 Digit Brute Pin 6 Digit Brute LockScreen Using Wordlist Bypass LockScreen {Antiguard} Not Support All OS Version Reset Data Screenshot Required ADB {Android SDk}USB CableAndroid Emulator {Nethunter/Termux} RootOr Computer Installation For Linux git clone https://github.com/tegal1337/CiLockscd...
MurMurHash : Tool To Calculate A MurmurHash Value Of A Favicon To Hunt Phishing Websites On The Shodan Platform
MurMurHash is a tool used to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform. What Is MurMurHash? MurmurHash is a non-cryptographic hash function suitable for general hash-based lookup. The name comes from two basic operations, multiply (MU) and rotate (R), used in its inner loop. The current version is MurmurHash3 which yields a 32-bit...
AMSITrigger : The Hunt For Malicious Strings
AMSITrigger will identify all of the malicious strings in a powershell file, by repeatedly making calls to AMSI using AMSIScanBuffer . Hunting For Malicious Strings Usage -i, --inputfile=VALUE Powershell filename-u, --url=VALUE URL eg. https://10.1.1.1/Invoke-NinjaCopy.ps1-f, --format=VALUE Output Format:1 - Only show Triggers2 - Show Triggers with Line numbers3 - Show Triggers inline with code4 - Show AMSI calls (xmas tree mode)-d, --debug Show...
Charlotte : C++ Fully Undetected Shellcode Launcher
Charlotte is an c++ fully undetected shellcode launcher . Description 13/05/2021:c++ shellcode launcher, fully undetected 0/26 as of 13th May 2021.dynamic invoking of win32 api functionsXOR encryption of shellcode and function namesrandomised XOR keys and variables per runon Kali Linux, simply 'apt-get install mingw-w64*' and thats it!17/05/2021:random strings length and XOR keys length Antiscan.me Usage git clone the repository, generate your shellcode file with...
GraphQLmap : A Scripting Engine To Interact With A Graphql Endpoint For Pentesting Purposes
GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. Install $ git clone https://github.com/swisskyrepo/GraphQLmap$ python graphqlmap.py_/ | | | / _ | | | | _ _ _ _ _ _ | |_ | | | | | _ _ _ _ _ _ | | | | '/ | '_ | '_ | | |...
Here’s What the Best Online Coding Classes Have Going for Them
In the last few years, online coding classes have become a common activity for parents everywhere to book for their children. Not only are the sessions fun, but they teach kids skills they’ll need in the classroom and workforce of the future. Before signing up your child for sessions, it’s crucial to know how to recognize the best programs from...
.png "HTTPLoot : An Automated Tool Which Can Simultaneously Crawl, Fill Forms, Trigger Error/Debug Pages")
