.webp "How To Install/Run – Streamlining OSINT Workflows For Enhanced Capabilities")
Rootless Jailbreakd – Jailbreakd Offering Some More Functionality To The Jailbreak
Rootless Jailbreakd is A small jailbreakd offering some more functionality to the jailbreak. Uses CPDisctributedMessageCenter. To compile you need theos (why? cus why not? and I like theos. If you're smart enough you can still compile it manually very easily so yeah) Also Read whatweb – Tool to Discover Security Vulnerabilities With Your Web Application Setup Rootless Jailbreakd Grab AppSupport headers and...
Frisky – Tools To Assist Binary App Reversing & Augmentation
Frisky is an instruments to assist in binary application reversing and augmentation, geared towards walled gardens like iOS. Most, if not all, recently tested on iOS 11.1.2 and macOS 10.12.6. frida-url-interceptor.js(Frisky) Intercepts all URLs of an iOS/macOS application, allowing you to trace and alter/intercept all network traffic, including https, per app before encryption and after decryption: iOS: open app of interest...
Dejavu – Open Source Deception Framework
DejaVU is a open source deception framework. Deception techniques if deployed well can be very effective for organizations to improve network defense and can be a useful arsenal for blue teams to detect attacks at very early stage of cyber kill chain. But the challenge we have seen is deploying, managing and administering decoys across large networks is still...
Delta – SDN Security Evaluation & Penetration Testing Framework
DELTA is a penetration testing framework that regenerates known attack scenarios for diverse test cases. This framework also provides the capability of discovering unknown security problems in SDN by employing a fuzzing technique. Agent-Manager is the control tower. It takes full control over all the agents deployed to the target SDN network. Application-Agent is a legitimate SDN application that...
Unicorn – Downgrade Attack & Inject Shellcode Straight into Memory
A unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's PowerShell attacks and the PowerShell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18. Usage is simple, just run Magic Unicorn (ensure Metasploit is installed if using Metasploit methods and in the right path)...
Onion nmap To Scan Hidden Onion Services
Utilize nmap to scan hidden "onion" benefits on the Tor network. Insignificant picture in view of elevated, utilizing proxychains to wrap nmap. Tor and dnsmasq are keep running as daemons by means of s6, and proxychains wraps nmap to utilize the Tor SOCKS intermediary on port 9050. Tor is likewise designed through DNSPort to secretly resolve DNS solicitations to port...
WarBerryPi – A Collection Of Scanning Tools For Tactical Exploitation
WarBerryPi was built to be used as a hardware implant during red teaming scenarios where we want to obtain as much information as possible in a short period of time with being as stealth as possible. Just find a network port and plug it in. The scripts have been designed in a way that the approach is targeted to...
Hawkeye – A Tool To Crawl The Filesystem Or A Directory
HawkEye is a simple tool to crawl the filesystem or a directory looking for interesting stuff like SSH Keys, Log Files, Sqlite Database, password files, etc. Hawkeye uses a fast filesystem crawler to look through files recursively and then sends them for analysis in real time and presents the data in both json format and simple console output. The...
Curate – A tool for fetching archived URLs
Curate is a tool for fetching archived URLs and to be rewritten in Go. Curate Initial set-up one-liner This will clone this repository and then move all scripts to /usr/local/bin. $ git clone git@github.com:EdOverflow/curate.git && cp curate/curate /usr/local/bin/ && echo "You can delete the ./curate/ folder now." Once you have are done with this one-liner, make sure to include your VirusTotal API key...
Maintaining Access to a Linux Machine Using Cymothoa – Post Exploitation
Cymothoa is a post-exploitation tool. It can be used to maintain access to an exploited system. Cymothoa injects a variety of shellcodes to running processes in a system. Almost all nix systems most of the Linux variants can be backdoored with cymothoa. Cymothoa uses ptrace library in nix systems to evaluate running processes & inject shellcodes. The greatest advantage of...
