.webp "How To Install/Run – Streamlining OSINT Workflows For Enhanced Capabilities")
Pown : A Security Testing An Exploitation Toolkit Built
Pown (Pown.js) is a security testing and exploitation toolkit built on top of Node.js and NPM. Unlike traditional security tools like Metasploits, Pown.js considers frameworks to be an anti-pattern. Therefore, each module in it is in fact a standalone NPM module allowing greater degree of reuse and flexibility. Creating new modules is a matter of...
RansomCoinPublic : A DFIR Tool To Extract Cryptocoin Addresses
RansomCoinPublic is a DFIR tool to extract cryptocoin addresses and other indicators of compromise from binaries. Extracting metadata and hardcoded Indicators of Compromise from ransomware, in a scalable, efficient, way with cuckoo integrations. Ideally, is it run during cuckoo dynamic analysis, but can also be used for static analysis on large collections of ransomware. Designed to be fast, with...
Why should you build your next app with Flutter?
If you want to stay up to date, you will need to develop an app for your product or service. And once you decide to develop an app, the main question arises? Should it be an Android or iOS? Or both? Can I get developed for both at the same time and yet cost lesser? Before answering these,...
nmapAutomator : A Script That You Can Run In The Background
nmapAutomator is a script that you can run in the background. The main goal for this script is to automate all of the process of recon/enumeration that is run every time, and instead focus our attention on real pen testing. This will ensure two things: Automate nmap scans. Always have some recon running in the background. Once you find the initial ports...
Quark Engine : An Obfuscation-Neglect Android Malware Scoring System
Quark Engine is an Obfuscation-Neglect Android Malware Scoring System. Android malware analysis engine is not a new story. Every antivirus company has their own secrets to build it. With curiosity, we develop a malware scoring system from the perspective of Taiwan Criminal Law in an easy but solid way. We have an order theory of criminal which...
Malwinx : Just A Normal Flask Web App To Understand Win32api With Code Snippets & References
Malwinx is a normal flask web app to learn win32api with code snippets and references. Malwinx Prerequisite You need to download the following package before starting it pip install flask pip install pefile pip install requests Usage $ python flaskapp.py Demo https://www.youtube.com/watch?v=_z7snPXRG3M Contributing I have started this project to get a quick reference on win32api by integrating different sources. The project is in its evolving stage, so...
PAKURI : Penetration Test Achieve Knowledge Unite Rapid Interface
Pakuri is a Penetration test Achieve Knowledge Unite Rapid Interface. Pentesters love to move their hands. However, I do not like troublesome work. Simple work is performed semi-automatically with simple operations. It executes commands frequently used in penetration tests by simply operating the numeric keypad. You can test penetration as if you were playing a fighting game. Abilities of "PAKURI". Intelligence...
Pylane : An Python VM Injector With Debug Tools, Based On GDB
Pylane is a python vm injector with debug tools, based on gdb and ptrace. Pylane uses gdb to trace python process, inject and run some code in its python vm. Usage use inject command to inject a python script in an process: pylane inject <PID><YOUR_PYTHON_FILE>+ Also Read - Lazyrecon : Automate Your Reconnaissance Process In An Organized Fashion use shell command to...
AttackSurfaceMapper : Tool That Aims To Automate The Reconnaissance Process
AttackSurfaceMapper is a reconnaissance tool that uses a mixture of open source intellgence and active techniques to expand the attack surface of your target. You feed in a mixture of one or more domains, subdomains and IP addresses and it uses numerous techniques to find more targets. It enumerates subdomains with bruteforcing and passive ...
HuskyCI : Performing Security Tests Inside Your CI
HuskyCI is an open source tool that orchestrates security tests and centralizes all results into a database for further analysis and metrics. It can perform static security analysis in Python (Bandit and Safety), Ruby (Brakeman), JavaScript (Npm Audit and Yarn Audit), Golang (Gosec), and Java (SpotBugs plus Find Sec Bugs). It can also audit repositories for secrets...
