Best WordPress Appointment Booking Plugins
WordPress is the most opted CMS around the world. As per stats, around 63.8% of CMS websites use WordPress. Why? Well, there are countless choices for themes and plugins that WordPress offers. Moreover, aspects like drag and drop editor, responsiveness, etc., make them more demanding. And these can be used to design and develop the best websites in a minimum...
IPED : Digital Forensic Tool – Process And Analyze Digital Evidence
IPED is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation by private examiners. Introduction Digital Evidence Processor and Indexer (translated from Portuguese) is a tool implemented in java and originally and still developed by digital forensic experts from Brazilian Federal Police since...
Ghidra-Evm : Module For Reverse Engineering Smart Contracts
Ghidra-Evm in the last few years, attacks on deployed smart contracts in the Ethereum blockchain have ended up in a significant amount of stolen funds due to programming mistakes. Since smart contracts, once compiled and deployed, are complex to modify and update different practitioners have suggested the importance of reviewing their security in the blockchain where only Ethereum Virtual...
Msldap : LDAP Library For Auditing MS AD
Msldap is a tool for (LDAP) LightWeight Directory Acess Protocol library for MS AD. Features Comes with a built-in console LDAP clientAll parameters can be conrolled via a conveinent URL (see below)Supports integrated windows authentication (SSPI) both with NTLM and with KERBEROSSupports channel binding (for ntlm and kerberos not SSPI)Supports encryption (for NTLM/KERBEROS/SSPI)Supports LDAPS (TODO: actually verify certificate)Supports SOCKS5 proxy withot...
What Are The 10 Best Content Idea Generator Tools
Content matters when presenting yourself on social media, a blog, or when developing your business. Your main goal does not matter. The quality of titles, posts, pictures, and everything you publish on the Internet defines the outcome you get. Proficient bloggers are not generating content by themselves. Instead, they apply practical content idea generator tools; these instruments are irreplaceable...
Mediator : An Extensible, End-To-End Encrypted Reverse Shell With A Novel Approach To Its Architecture
Mediator is an end-to-end encrypted reverse shell in which the operator and the shell connect to a "mediator" server that bridges the connections. This removes the need for the operator/handler to set up port forwarding in order to listen for the connection. Mediator also allows you to create plugins to expand the functionality of the reverse shell. You can run...
Corsair_Scan : A Security Tool To Test Cross-Origin Resource Sharing (CORS)
Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS) misconfigurations. CORS is a mechanism that allows restricted resources on a web page to be requested from another domain outside the domain from which the first resource was served. If this is not properly configured, unauthorised domains can access to those resources. What is CORS? CORS is an HTTP-header based...
Eyeballer : Convolutional Neural Network For Analyzing Pentest Screenshots
Eyeballer is meant for large-scope network penetration tests where you need to find "interesting" targets from a huge set of web-based hosts. Go ahead and use your favorite screenshotting tool like normal (EyeWitness or GoWitness) and then run them through Eyeballer to tell you what's likely to contain vulnerabilities, and what isn't. Example Labels Old-Looking Sites Login Pages Webapp Custom 404's Parked Domains What The Labels...
DFIR-O365RC : PowerShell Module For Office 365 And Azure AD Log Collection
The DFIR-O365RC PowerShell module is a set of functions that allow the DFIR analyst to collect logs relevant for Office 365 Business Email Compromise investigations. The logs are generated in JSON format and retrieved from two main data sources: Office 365 Unified Audit Logs.Azure AD sign-ins logs and audit logs. The two data sources can be queried from different endpoints: Pre-requisites (OS or Azure)Unified Audit Logs / Exchange...
Red-Kube : Red Team K8S Adversary Emulation Based On Kubectl
Red-Kube is a collection of kubectl commands written to evaluate the security posture of Kubernetes clusters from the attacker's perspective. The commands are either passive for data collection and information disclosure or active for performing real actions that affect the cluster. The commands are mapped to MITRE ATT&CK Tactics to help get a sense of where we have most of our...
