Seth : Perform A MitM Attack & Extract Clear Text Credentials From RDP Connections
Seth is a tool written in Python and Bash to MitM RDP connections by attempting to downgrade the connection in order to extract clear text credentials. It was developed to raise awareness and educate about the importance of properly configured RDP connections in the context of pentests, workshops or talks. The author is Adrian Vollmer (SySS GmbH). Usage Run it...
RDPScan : A Quick Scanner For “BlueKeep” Vulnerability
RDPScan is a quick-and-dirty scanner for the CVE-2019-0708 vulnerability in Microsoft Remote Desktop. Right now, there are about 900,000 machines on the public Internet vulnerable to this vulnerability, so many are to expect a worm soon like WannaCry and notPetya. Therefore, scan your networks and patch (or at least, enable NLA) on vulnerable systems. This is a command-line tool....
Konan – Advanced Web Application Dir Scanner
Konan is an advanced open source tool designed to brute force directories and files names on web/application servers. Installation Download it by cloning the Git repository: git clone https://github.com/m4ll0k/Konan.git konan Install requirements with pip cd konan && pip install -r requirements.txt Run python konan.py Support Platforms LinuxWindowsMacOSX Also Read - KaliTorify : Transparent Proxy Through Tor For Kali Linux OS Features FeaturesTooldirsearchdirbgobusterMultiThreadedyesyesyesyesMultiple ExtensionsyesyesnonoHTTP Proxy SupportyesyesyesyesReportingyes (text and json)yes (text and json)yes...
Kippo – SSH Honeypot
Kippo is a medium interaction SSH honeypot designed to log brute force attacks and, most importantly, the entire shell interaction performed by the attacker. Some interesting logs from a live Kippo installation below (viewable within a web browser with the help of Ajaxterm). Note that some commands may have been improved since these logs were recorded. 2009-11-222009-11-232009-11-232010-03-16 Features Some interesting features: Fake filesystem...
Prithvi – Report Generation Tool
Prithvi is a report generation tool specially made for Security Assessment which is free to use and easy to use. It will generate high quality vulnerability assessment report for security controls. It got various features and majorly made for security assessment. You can easily find security vulnerabilities in a report. System Requirements Operating SystemsMac OSX(64bit), Windows(64bit & 32bit)RAMMinimum Usage 4GB...
Quarantyne · Modern Web Firewall
Quarantyne is a reverse-proxy that protects web applications and APIs from fraudulent behavior, misuse, bots and cyber-attacks in real-time. Requirements Java 8 Presentation It is a reverse-proxy written in java. It fronts a web application or API and protects it from fraudulent behavior, misuse, bots and cyber-attacks. It cannot stop them all, but it will definitely make it harder and more expensive...
Terminus : A Terminal For A More Modern Age
Terminus is a highly configurable terminal for a more modern age emulator for Windows, macOS and Linux. Theming and color schemesFully configurable shortcutsSplit panesRemembers your tabsPowerShell (and PS Core), WSL, Git-Bash, Cygwin, Cmder and CMD supportIntegrated SSH client and connection managerFull Unicode support including double-width charactersDoesn't choke on fast-flowing outputsProper shell experience on Windows including tab completion (via Clink) Also Read -...
SeccuBus : Easy Automated Vulnerability Scanning, Reporting & Analysis
Seccubus automates regular vulnerability scans with various tools and aids security people in the fast analysis of its output, both on the first scan and on repeated scans. On repeated scan delta reporting ensures that findings only need to be judged when they first appear in the scan results or when their output changes. Its version 2.x is the only actively...
CocoaDebug : iOS Debugging Tool
CocoaDebug is an iOS debugging tool with the following features; Shake to hide or show the black bubble. (support both device and simulator) Long press the black bubble to show UIDebuggingInformationOverlay. (Apple's Private API, support iOS 10/11/12) Application memory usage and FPS. List all print() and NSLog() messages which have been written by developer in Xcode. (optional) List of all the network requests sent by the application. (optional) List crash errors....
GetWin : FUD Win32 Payload Generator & Listener
GetWin is a FUD Win32 payload generator and listener. Following are some of the features of this tool; FUD : Fully UndetectableNo Need configure port forwarding, or install others programs, using only ssh and serveo.net. Usage git clone https://github.com/thelinuxchoice/getwin cd getwin bash getwin.sh Also Read - PhoneInfoga : Advanced Information Gathering & OSINT Tool For Phone Numbers Install Requirements (mingw-w64) sudo apt-get install mingw-w64 Disclaimer Usage of...
.webp "CVE-2023-4427 – Unveiling Chrome Vulnerability Exploitation And Mitigation Strategies")
