Purify : All-In-One Tool For Managing Vulnerability Reports
The goal of Purify to be an easy-in-use and efficient tool to simplify a workflow of managing vulnerabilities delivered from various tools. Purify is designed to analyze the report of any tool, if the report is in JSON or XML format. This means you don't need any special plug-ins to process reports from your selection of tools. Purify is able to...
ANDRAX : NH-Killer Penetration Testing On Android
ANDRAX is a Penetration Testing platform developed specifically for Android smartphones, it has the ability to run natively on Android so it behaves like a common Linux distribution, But more powerful than a common distribution! The development of the tool began on 08/09/2016 (DD/MM/YYYY) only for people in Brazil ANDRAX has been fully redefined and reloaded on 05/10/2018 (DD/MM/YYYY) open to the international public.It...
DroidFiles : Get Files From Android Directories
DroidFiles is a tool used to get files from Android directories, internal and external storage (Pictures, Downloads, Whatsapp, Videos, …) Requirements Android Studio (https://developer.android.com/studio) Also Read - Locator : Geolocator, IP Tracker, Device Info by URL (Serveo & Ngrok) Usage # git clone https://github.com/thelinuxchoice/droidfiles# cd droidfiles# bash droidfiles.sh Download
Memory Mapper : Map Both Native & Managed Assemblies Into Memory
Memory Mapper is a lightweight library which allows the ability to map both native and managed assemblies into memory by either using process injection of a process specified by the user or self-injection; the technique of injecting an assembly into the currently running process attempting to do the injection. The library comes with tools not only to map assemblies,...
RepoPeek : A Python Script To Get Details About A Repository Without Cloning
RepoPeek is a Python script to get details about a repository without cloning it. All the information are retrieved using the GitHub API. Note: API requests made by this module aren't using basic authentication or OAuth. Therefore the rate limit allows for up to 60 requests per hour. Unauthenticated requests are associated with the originating IP address. Information Provided Basic information about...
Pivotnacci : A Tool To Make Socks Connections Through HTTP Agents
Pivot into the internal network by deploying HTTP agents. Pivotnacci allows you to create a socks server which communicates with HTTP agents. The architecture looks like the following: This tool was inspired by the great reGeorg. However, it includes some improvements: Support for balanced serversCustomizable polling interval, useful to reduce detection ratesAuto drop connections closed by a serverModular and cleaner codeInstallation...
QRLJacking : Hijack Services That Relies On QR Code Authentication
QRLJacking or Quick Response Code Login Jacking is a simple social engineering attack vector capable of session hijacking affecting all applications that rely on the Login with QR code feature as a secure way to login into accounts. In a nutshell, the victim scans the attacker’s QR code which results in session hijacking. Features Port Forwarding using Ngrok Disclaimer Usage of OhMyQR for...
FinalRecon : The Last Web Recon Tool You’ll Need
FinalRecon is a fast and simple python script for web reconnaissance. It follows a modular structure so in future new modules can be added with ease. Featured Python For OSINTHakin9 April 2020https://hakin9.org/product/python-for-osint-tooling/NullBytehttps://null-byte.wonderhowto.com/how-to/conduct-recon-web-target-with-python-tools-0198114/https://www.youtube.com/watch?v=F9lwzMPGIgoHakin9https://hakin9.org/final-recon-osint-tool-for-all-in-one-web-reconnaissance/ Features FinalRecon provides detailed information such as : Header InformationWhoisSSL Certificate InformationCrawlerhtmlCSSJavascriptsInternal LinksExternal LinksImagesrobotssitemapsLinks inside JavascriptsLinks from Wayback Machine from Last 1 YearDNS EnumerationA, AAAA, ANY, CNAME, MX, NS, SOA, TXT RecordsDMARC...
A Complete Security Protocols Guide That Use For Secure Online Transactions
Online security is gaining more importance than ever before. With cyber criminals adopting newer and more sophisticated ways of breaching your protection and stealing your data, you need to stay ahead of the curve. Remember, one episode of online hacking is all it takes to ruin your reputation, lose money, and turn customers away. It may even make you...
Jaeles : The Swiss Army Knife For Automated Web Application Testing
Jaeles is a powerful, flexible and easily extensible framework written in Go for building your own Web Application Scanner. Installation Download precompiled version here. If you have a Go environment, make sure you have Go >= 1.13 with Go Modules enable and run the following command. GO111MODULE=on go get github.com/jaeles-project/jaeles Please visit the Official Documention for more details. Note: Checkout Signatures Repo for install signature. Usage #Scan...
