.webp "How To Install/Run – Streamlining OSINT Workflows For Enhanced Capabilities")
Sharingan : Offensive Security Recon Tool
Sharingan is a recon multitool for offensive security / bug bounty. This is very much a work in progress and I'm relatively new to offensive security in general so if you see something that can be improved please open an issue or PR with suggested changes. Cloning for development Outside of your gopath git clone https://github.com/leobeosab/sharingan Installing go get github.com/leobeosab/sharingan/cmd/sharingancli Also Read - Threadtear...
Badlnk : Reverse Shell In Shortcut File (.lnk)
Badlnk is a reverse shell in shortcut file (.lnk). How it works? Shortcut file (Microsoft Windows 9.x) LNK is a file extension for a shortcut file used by Microsoft Windows to point to an executable file. LNK stands for LiNK. Shortcut files are used as a direct link to an executable file, instead of having to navigate to the executable....
Paramkit : A Small Library Helping To Parse Commandline Parameters
Paramkit is a small library helping to parse commandline parameters. Objectives "like Python's argparse but for C/C++"compact and minimalisticeasy to useextendable Also Read - WiFiPumpkin3 : Powerful Framework For Rogue Access Point Attack Demo Print help for each parameter: Easily store values of popular types, and verify if all required parameters are filled: Verify if no invalid parameter was passed: See the demo code Download
Hidden Cry – Windows Crypter/Decrypter Generator With AES 256 Bits Key
Hidden Cry is a Windows Crypter/Decrypter Generator With AES 256 Bits Key. Features Works on WAN: Port Forwarding by Serveo.netFully Undetectable (FUD) -> Don't Upload to virustotal.com! Usage git clone https://github.com/thelinuxchoice/hidden-crycd hidden-cryapt-get update & apt-get install mingw-w64 -ychmod +x hidden-cry./hidden-cry Also Read - CatchYou : FUD Win32 Msfvenom Payload Generator Disclaimer Usage of Hidden-Cry for attacking targets without prior mutual consent is illegal. It's the end...
Evilreg : Reverse Shell Using Windows Registry Files (.reg)
Evilreg is a reverse shell using Windows Registry files (.reg) Features Reverse TCP Port Forwarding using Ngrok.io Requirements Ngrok Authtoken (for TCP Tunneling): Sign up at: https://ngrok.com/signupYour authtoken is available on your dashboard: https://dashboard.ngrok.comInstall your auhtoken: ./ngrok authtoken <YOUR_AUTHTOKEN>Target must reboot/re-login after installing the .reg file Also Read - CatchYou : FUD Win32 Msfvenom Payload Generator Usage git clone https://github.com/thelinuxchoice/evilreg cd evilreg bash evilreg.sh Disclaimer Usage of...
URLBrute : Tool To Brute Website Sub-Domains & Dirs
URLBrute is a tool to help you brute forcing website sub-domains and dirs.Can be used with python3 and python2. Dependencies urlbrute.pyrequests >= 2.21.0bs4 >= 0.0.1datetime >= 4.3 Also Read - PayloadsAllTheThings : A List Of Useful Payloads & Bypass How to install? In Linux: chmod +x install.sh sudo ./install.sh In Windows, install python 3.7, then run cmd as administrator: install.bat Credits Credits to danTaler who created the wordlists. Download
Getdroid : FUD Android Payload & Listener
Getdroid is a FUD Android payload and listener. Requirements (Android-SDK, APKSinger) apt-get install android-sdk apksigner -y Usage git clone https://github.com/thelinuxchoice/getdroid cd getdroid bash getdroid.sh Also Read - Kali Linux 2020.2 Release – Penetration Testing and Ethical Hacking Linux Distribution Disclaimer Usage of GetDroid for attacking targets without prior mutual consent is illegal. It's the end user's responsibility to obey all applicable local, state...
DiscordRAT : Discord Remote Administration Tool Fully Written In Python
DiscordRAT is a Discord Remote Administration Tool fully written in Python3. This is a RAT controlled over Discord with over 20 post exploitation modules. Setup Guide You will first need to register a bot with the Discord developper portal and then add the bot to the server that you want. Once the bot is created copy the token of your bot...
Lockphish : A Tool For Phishing Attacks On The Lock Screen
Lockphish it's the first tool (05/13/2020) for phishing attacks on the lock screen, designed to grab Windows credentials, Android PIN and iPhone Passcode using a https link. Features Lockscreen phishing page for Windows, Android and iPhoneAuto detect devicePort Forwarding by NgrokIP Tracker Disclaimer Usage of Lockphish for attacking targets without prior mutual consent is illegal. It's the end user's responsibility to obey all...
Dalfox : Parameter Analysis & XSS Scanning Tool
DalFox is just XSS Scanning and Parameter Analysis tool. I previously developed XSpear, a ruby-based XSS tool, and this time, a full change occurred during the process of porting with golang!!! and created it as a new project. The basic concept is to analyze parameters, find XSS, and verify them based on DOM Parser. I talk about naming. Dal(달) is...
