Eyeballer : Convolutional Neural Network For Analyzing Pentest Screenshots
Eyeballer is meant for large-scope network penetration tests where you need to find "interesting" targets from a huge set of web-based hosts. Go ahead and use your favorite screenshotting tool like normal (EyeWitness or GoWitness) and then run them through Eyeballer to tell you what's likely to contain vulnerabilities, and what isn't. Example Labels Old-Looking Sites Login Pages Webapp Custom 404's Parked Domains What The Labels...
DFIR-O365RC : PowerShell Module For Office 365 And Azure AD Log Collection
The DFIR-O365RC PowerShell module is a set of functions that allow the DFIR analyst to collect logs relevant for Office 365 Business Email Compromise investigations. The logs are generated in JSON format and retrieved from two main data sources: Office 365 Unified Audit Logs.Azure AD sign-ins logs and audit logs. The two data sources can be queried from different endpoints: Pre-requisites (OS or Azure)Unified Audit Logs / Exchange...
Red-Kube : Red Team K8S Adversary Emulation Based On Kubectl
Red-Kube is a collection of kubectl commands written to evaluate the security posture of Kubernetes clusters from the attacker's perspective. The commands are either passive for data collection and information disclosure or active for performing real actions that affect the cluster. The commands are mapped to MITRE ATT&CK Tactics to help get a sense of where we have most of our...
CIMplant : C# Port Of WMImplant Which Uses Either CIM Or WMI To Query Remote Systems
C# port of WMImplant which uses either CIM or WMI to query remote systems. It can use provided credentials or the current user's session. Note: Some commands will use PowerShell in combination with WMI, denoted with ** in the --show-commands command. Introduction CIMplant is a C# rewrite and expansion on @christruncer's WMImplant. It allows you to gather data about a remote system, execute commands, exfil data,...
APSoft Web Scanner V2 : Powerful Dork Searcher & Vulnerability Scanner For Windows Platform
APSoft Web Scanner V2 is a tool for Powerful Dork Searcher And Vulnerability Scanner For Windows Platform. Software Pictures What Can I Do With This ? with this software, you will be able to search your dorks in supported search engines and scan grabbed urls to find their vulnerabilities. in addition , you will be able to generate dorks, scan urls and saerch dorks...
ByeIntegrity UAC : Bypass UAC By Hijacking A DLL Located In The Native Image Cache
ByeIntegrity UAC is a tool used to bypass user account control (UAC) to gain elevated (Administrator) privileges to run any program at a high integrity level. Requirements Administrator accountUAC notification level set to default or lower How It Works ByeIntegrity hijacks a DLL located in the Native Image Cache (NIC). The NIC is used by the .NET Framework to store optimized .NET Assemblies...
3KLCON : Automation Recon Tool Which Works With Large & Medium Scope
3KLCON is a Full Automation Recon tool which works with Small and Medium scopes. ّIt's recommended to use it on VPS, it'll discover secrets and searching for vulnerabilities. So, Welcome and let's deep into it <3 Updates Version 1.1, what's new? (Very Recommended) Fixing multiple issues with the used tools.Upgrading to python3Editing the tool's methedology, you can check it there :)Editing the...
R77 Rootkit : Fileless Ring 3 Rootkit With Installer And Persistence
R77 is a ring 3 Rootkit that hides following entities from all processes: Files, directories, junctions, named pipes, scheduled tasksProcessesCPU usageRegistry keys & valuesServicesTCP & UDP connections It is compatible with Windows 7 and Windows 10 in both x64 and x86 editions. Hiding By Prefix All entities where the name starts with "$77" are hidden. Configuration System The dynamic configuration system allows to hide processes by PID and by name,...
HTTPX : A Fast And Multi-Purpose HTTP Toolkit
HTTPX is a fast and multi-purpose HTTP toolkit allow to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads. Features Simple and modular code base making it easy to contribute.Fast And fully configurable flags to probe mutiple elements.Supports multiple HTTP based probings.Smart auto fallback from https to http as default.Supports hosts, URLs and CIDR as...
Mubeng : An Incredibly Fast Proxy Checker And IP Rotator With Ease
Mubeng is an incredibly fast proxy checker & IP rotator with ease. Features Proxy IP rotator: Rotates your IP address for every specific request.Proxy checker: Check your proxy IP which is still alive.All HTTP/S methods are supported.HTTP & SOCKSv5 proxy protocols apply.All parameters & URIs are passed.Easy to use: You can just run it against your proxy file, and choose the action you...
