iKy : OSINT Project To Collect Information From Mail
Project iKy is a tool that collects information from an email and shows results in a nice visual interface. We want to warn you that we have changed the Frontend from AngularJS to Angular 7. For this reason we left the project with AngularJS as Frontend in the iKy-v1 branch. The reason of changing the Frontend was to update the technology...
Passpie : Multiplatform Command-line Password Manager
Passpie is a command line tool to manage passwords from the terminal with a colorful and configurable interface. Use a master passphrase to decrypt login credentials, copy passwords to clipboard, syncronize with a git repository, check the state of your passwords, and more. Password files are encrypted using GnuPG and saved into yaml text files. Passpie supports Linux, OSX and Windows. What does it look like? Here...
PasteHunter : Scanning Pastebin With Yara Rules
PasteHunter is a python3 application that is designed to query a collection of sites that host publicly pasted data. For all the pastes it finds it scans the raw contents against a series of Yara rules looking for information that can be used by an organisation or a researcher. Installation There are a few ways to install Local Installation Pastehunter If you want...
Pown Duct : Essential Tool For Finding Blind Injection Attacks
Pown Duct is an essential tool for finding blind injection attacks using DNS side-channels. This tool is part of secapps.com open-source initiative. Note : This tool is taking advantage of http://requestbin.net service. Future versions will use a dedicated, custom-built infrastructure. Quickstart This tool is meant to be used as part of Pown.js but it can be invoked separately as an independent tool. Install Pown first...
Dwarf : Full Featured Multi Arch/OS Debugger Built On Top Of PyQt5 & Frida
Dwarf is a debugger for reverse engineers, crackers and security analyst. Or you can call it damn, why are raspberries so fluffy or yet, duck warriors are rich as fuck. Whatever you like! Built on top of pyqt5, frida and some terrible code. Features breakpointswatchpoints without hardware supportvisual emulation with auto map from target, reporting memory accessesbreaks module loading cycle, java...
Ghostfuscator : The Python Password-Protected Obfuscator
Ghostfuscator is a obfuscate python scripts making them password-protected using AES Encryption. Usage Just execute the script, and follow the menu. Also Read - WinObjEx64 : Windows Object Explorer 64-bit Info Once an script is obfuscated, when running it a password asking prompt will appear, after submitting the correct password, the script will execute decrypting it's decrypted content in the memory. Download
Objection : Runtime Mobile Exploration
Objection is a runtime mobile exploration toolkit, powered by Frida. It was built with the aim of helping assess mobile applications and their security posture without the need for a jailbroken or rooted mobile device. Note: This is not some form of jailbreak / root bypass. By using objection, you are still limited by all of the restrictions imposed by...
CommandoVM : Complete Mandiant Offensive VM (Commando VM), The First Full Windows-Based Penetration Testing Virtual Machine Distribution
Welcome to CommandoVM - a fully customized, Windows-based security distribution for penetration testing and red teaming. Installation (Install Script) Requirements Windows 7 Service Pack 1 or Windows 1060 GB Hard Drive2 GB RAM Recommended Windows 1080+ GB Hard Drive4+ GB RAM2 network adaptersEnable Virtualization support for VM Instructions Create and configure a new Windows Virtual Machine Ensure VM is updated completely. You may have to check for...
Findomain : A Cross-Platform Tool That Use Certificate Transparency Logs To Find Subdomains
Findomain is a cross-platform tool that use Certificates Transparency logs to find subdomains. We currently support Linux, Windows and MacOS. All supported platforms are 64 bits. How it works? It tool doesn't use the common methods for sub(domains) discover, the tool uses Certificate Transparency logs to find subdomains and it method make it tool very faster and reliable. The tool make...
Echidna : Ethereum Fuzz Testing Framework
Echidna is a weird creature that eats bugs and is highly electrosensitive (with apologies to Jacob Stanley) More seriously, Echidna is a Haskell library designed for fuzzing/property-based testing of EVM code. It supports relatively sophisticated grammar-based fuzzing campaigns to falsify a variety of predicates. Features Generates inputs tailored to your actual codeOptional coverage guidance to find deeper bugsAutomatic testcase minimization for quick...
