Badlnk : Reverse Shell In Shortcut File (.lnk)
Badlnk is a reverse shell in shortcut file (.lnk). How it works? Shortcut file (Microsoft Windows 9.x) LNK is a file extension for a shortcut file used by Microsoft Windows to point to an executable file. LNK stands for LiNK. Shortcut files are used as a direct link to an executable file, instead of having to navigate to the executable....
Paramkit : A Small Library Helping To Parse Commandline Parameters
Paramkit is a small library helping to parse commandline parameters. Objectives "like Python's argparse but for C/C++"compact and minimalisticeasy to useextendable Also Read - WiFiPumpkin3 : Powerful Framework For Rogue Access Point Attack Demo Print help for each parameter: Easily store values of popular types, and verify if all required parameters are filled: Verify if no invalid parameter was passed: See the demo code Download
Hidden Cry – Windows Crypter/Decrypter Generator With AES 256 Bits Key
Hidden Cry is a Windows Crypter/Decrypter Generator With AES 256 Bits Key. Features Works on WAN: Port Forwarding by Serveo.netFully Undetectable (FUD) -> Don't Upload to virustotal.com! Usage git clone https://github.com/thelinuxchoice/hidden-crycd hidden-cryapt-get update & apt-get install mingw-w64 -ychmod +x hidden-cry./hidden-cry Also Read - CatchYou : FUD Win32 Msfvenom Payload Generator Disclaimer Usage of Hidden-Cry for attacking targets without prior mutual consent is illegal. It's the end...
Evilreg : Reverse Shell Using Windows Registry Files (.reg)
Evilreg is a reverse shell using Windows Registry files (.reg) Features Reverse TCP Port Forwarding using Ngrok.io Requirements Ngrok Authtoken (for TCP Tunneling): Sign up at: https://ngrok.com/signupYour authtoken is available on your dashboard: https://dashboard.ngrok.comInstall your auhtoken: ./ngrok authtoken <YOUR_AUTHTOKEN>Target must reboot/re-login after installing the .reg file Also Read - CatchYou : FUD Win32 Msfvenom Payload Generator Usage git clone https://github.com/thelinuxchoice/evilreg cd evilreg bash evilreg.sh Disclaimer Usage of...
URLBrute : Tool To Brute Website Sub-Domains & Dirs
URLBrute is a tool to help you brute forcing website sub-domains and dirs.Can be used with python3 and python2. Dependencies urlbrute.pyrequests >= 2.21.0bs4 >= 0.0.1datetime >= 4.3 Also Read - PayloadsAllTheThings : A List Of Useful Payloads & Bypass How to install? In Linux: chmod +x install.sh sudo ./install.sh In Windows, install python 3.7, then run cmd as administrator: install.bat Credits Credits to danTaler who created the wordlists. Download
Getdroid : FUD Android Payload & Listener
Getdroid is a FUD Android payload and listener. Requirements (Android-SDK, APKSinger) apt-get install android-sdk apksigner -y Usage git clone https://github.com/thelinuxchoice/getdroid cd getdroid bash getdroid.sh Also Read - Kali Linux 2020.2 Release – Penetration Testing and Ethical Hacking Linux Distribution Disclaimer Usage of GetDroid for attacking targets without prior mutual consent is illegal. It's the end user's responsibility to obey all applicable local, state...
DiscordRAT : Discord Remote Administration Tool Fully Written In Python
DiscordRAT is a Discord Remote Administration Tool fully written in Python3. This is a RAT controlled over Discord with over 20 post exploitation modules. Setup Guide You will first need to register a bot with the Discord developper portal and then add the bot to the server that you want. Once the bot is created copy the token of your bot...
Lockphish : A Tool For Phishing Attacks On The Lock Screen
Lockphish it's the first tool (05/13/2020) for phishing attacks on the lock screen, designed to grab Windows credentials, Android PIN and iPhone Passcode using a https link. Features Lockscreen phishing page for Windows, Android and iPhoneAuto detect devicePort Forwarding by NgrokIP Tracker Disclaimer Usage of Lockphish for attacking targets without prior mutual consent is illegal. It's the end user's responsibility to obey all...
Dalfox : Parameter Analysis & XSS Scanning Tool
DalFox is just XSS Scanning and Parameter Analysis tool. I previously developed XSpear, a ruby-based XSS tool, and this time, a full change occurred during the process of porting with golang!!! and created it as a new project. The basic concept is to analyze parameters, find XSS, and verify them based on DOM Parser. I talk about naming. Dal(달) is...
Saycheese : Grab Target’s Webcam Shots By Link
Saycheese is a tool generates a malicious HTTPS page using Ngrok Port Forwarding method, and a javascript code to perform cam requests using MediaDevices.getUserMedia. The MediaDevices.getUserMedia() method prompts the user for permission to use a media input which produces a MediaStream with tracks containing the requested types of media. That stream can include, for example, a video track (produced by...
