Want to protect multiple domains with a single SSL certificate? Here is your definitive guide.
If we compare the number of users on the internet today vs a decade back, we will notice a major change in the numbers. Even as you read this, thousands of people are using the internet as a source to give or extract information. Your business needs a huge platform to be successful. Hence, in the modern world, it...
AWS Report : A Tool For Analyzing Amazon Resources
AWS Report is a tool for analyzing amazon resources. Install Using PIP pip install awsreport Features Search IAM users based on creation date Search buckets public Search security based in rules, default is 0.0.0.0/0 Search elastic ip dissociated Search volumes available Search AMIs with permission public Search internet gateways detached Options aws_report.py Options:--s3 Search buckets public in s3--iam Search iam users based on creation date--iam-max-age...
Nautilus : A Grammar Based Feedback Fuzzer
Nautilus is a coverage guided, grammar based fuzzer. You can use it to improve your test coverage and find more bugs. By specifying the grammar of semi valid inputs, Nautilus is able to perform complex mutation and to uncover more interesting test cases. Many of the ideas behind this fuzzer are documented in a Paper published at NDSS 2019. Version...
Kali Linux 2020.3 Release (ZSH, Win-Kex, HiDPI & Bluetooth Arsenal) – Download Now!!
Its that time of year again, time for another Kali Linux release! Quarter #3 – Kali Linux 20202.3. This release has various impressive updates including New Shell, Bluetooth Arsenal, Automating HiDPI support, Nokia Support, new updated tools icons A quick overview of what’s new since the last release in May 2020: New Shell – Starting the process to switch from “Bash” to...
SkyArk : A Cloud Security Project With Two Main Scanning Modules
SkyArk is a cloud security project with two main scanning modules: AzureStealth - Scans Azure environmentsAWStealth - Scan AWS environments These two scanning modules will discover the most privileged entities in the target AWS and Azure. The Main Goal - Discover The Most Privileged Cloud Users It currently focuses on mitigating the new threat of Cloud Shadow Admins, and helps organizations to discover,...
How SSL Certificate Validation Works
Want to skyrocket your business? The best way to do so is undoubtedly getting it on the world wide web. In this advancing world where everybody needs the internet for their tasks, spending a day at ease without it seems impossible. With the increase in the adoption of the internet over the years. There are now more people to avail...
PE Tree : Python Module For Viewing Portable Executable (PE) Files In A Tree-View
PE Tree is a Python module for viewing Portable Executable (PE) files in a tree-view using pefile and PyQt5. Can also be used with IDA Pro to dump in-memory PE files and reconstruct imports. Features Standalone application and IDAPython pluginSupports Windows/Linux/MacRainbow PE ratio map:High-level overview of PE structures, size and file locationAllows for fast visual comparison of PE samplesDisplays the following...
Flask Session Cookie Manager : Flask Session Cookie Decoder/Encoder
Flask Session Cookie Decoder/Encoder. Dependencies Python 2 or Python 3itsdangerousFlask Installation BlackArch Linux # pacman -S flask-session-cookie-manager{3,2} Git ArchLinux Both python3 etn python2: $ git clone https://github.com/noraj/flask-session-cookie-manager.git && cd flask-session-cookie-manager # makepkg -sic Other Distros Find your way with your package manager, use pip in a virtual environment or use pyenv. Eg. $ git clone https://github.com/noraj/flask-session-cookie-manager.git && cd flask-session-cookie-manager $ python -m venv venv $ source venv/bin/activate $ python setup.py...
Arcane : A Simple Script Designed To Backdoor iOS Packages
Arcane is a simple script designed to backdoor iOS packages (iphone-arm) and create the necessary resources for APT repositories. It was created for this publication to help illustrate why Cydia repositories can be dangerous and what post-exploitation attacks are possible from a compromised iOS device. How Arcane Works? To understand what's happening in the GIF, decompress a package created with Arcane. dpkg-deb...
IRFuzz : Simple Scanner with Yara Rules
IRFuzz is a simple scanner with yara rules for document archives or any files. Install 1. Prerequisites Linux or OS X Yara: just use the latest release source code, compile and install it (or install it via pip install yara-python)Yara Rules - You may download yara rules from here or import your own custom ruleset.Python dependencies Dependencies are managed with pipenv. To get started...
