Converto : Installing Kali Linux on VPS Server
Converto is a automated Kali Linux or Parrot OS installer for VPS, also installs VNC (Graphical / Non-Graphical VNC). It is tested on the following; Tested on UbuntuTested on Debian Installing sudo apt-get update sudo apt-get install git git clone https://github.com/developerkunal/Converto.git cd Converto. chmod +x converto.sh ./converto.sh Also Read - XSSCon : Simple XSS Scanner Tool Type 1 For Install Type 2 For ExitType note...
CrossLinked : LinkedIn Enumeration Tool To Extract Valid Employee Names From An Organisation
CrossLinked simplifies the processes of searching LinkedIn to collect valid employee names when performing password spraying or other security testing against an organization. Using similar search engine scraping capabilities found in tools like subscraper and pymeta, CrossLinked will find valid employee names and help format the data according to the organization's account naming convention. Results will be written to a 'names.txt' file...
Graffiti : A Tool To Generate Obfuscated One Liners To Aid In Penetration Testing
Graffiti is a tool to generate obfuscated oneliners to aid in penetration testing situations. Graffiti accepts the following languages for encoding: PythonPerlBatchPowershellPHPBash It will also accept a language that is not currently on the list and store the oneliner into a database. Also Read - Bandit : Tool Designed To Find Common Security Issues In Python Code Features Graffiti comes complete with a database...
LANGhost : A LAN Dropbox Chatbot Controllable Via Telegram
LANGhost is designed for Raspberry Pis (Raspbian/Kali for RPi). Running it on other/desktop distros could cause issues and may not work as excepted. You will need a Raspberry Pi with fresh Raspbian/Kali on the SD card, because you don't want anything else running in the background. Boot up the Pi, get an SSH sell or connect a monitor and a keyboard...
Telegram BBBot : Telegram Bug Bounty Bot
Telegram BBBot is a Telegram Bug Bounty Bot. History Telegram BBBot This bot adopted special for deploying to HerokuGeneral purposes of this got - "Be helpful for infosec community!"Bot use https://github.com/maddevsio/bbcrawler for fetching informationUsed heroku https://github.com/heroku/go-getting-started as a template for projectFor bot used free account on heroku.com and firebase.com Also Read - Thc Hydra : Tool To Gain Unauthorised Access...
Thc Hydra : Tool To Gain Unauthorised Access From Remote To A System
Number one of the biggest security holes are passwords, as every password security study shows. Thc Hydra is a proof of concept code, to give researchers and security consultants the possibility to show how easy it would be to gain unauthorized access from remote to a system. THIS TOOL IS FOR LEGAL PURPOSES ONLY! There are already several login hacker tools...
FlashSploit : Exploitation Framework For ATtiny85 Based HID Attacks
Flashsploit is an Exploitation Framework for Attacks using ATtiny85 HID Devices such as Digispark USB Development Board, flashsploit generates Arduino IDE Compatible (.ino) Scripts based on User Input and then Starts a Listener in Metasploit-Framework if Required by the Script, in Summary : Automatic Script Generation with Automated msfconsole. Windows Data Exfiltration Extract all WiFi Passwords and Uploads an XML to...
Versionscan : A PHP Version Scanner For Reporting Possible Vulnerabilities
Versionscan is a tool for evaluating your currently installed PHP version and checking it against known CVEs and the versions they were fixed in to report back potential issues. NOTE: Work is still in progress to adapt the tool to Linux distributions that backport security fixes. As of right now, this only reports back for the straight up version reported. Installation Using Composer {...
XSSCon : Simple XSS Scanner Tool
XSSCon is a simple XSS Scanner tool and a powerful XSS scanner made in python 3.7. Installing Requirements: BeautifulSoup4 pip install bs4 Requests pip install requests python 3.7 Commands: git clone https://github.com/menkrep1337/XSSCon chmod 755 -R XSSCon cd XSSCon python3 xsscon.py --help Also Read - Rogue : An Extensible Toolkit Providing Penetration Testers An Easy-To-Use Platform Usage Basic usage: python3 xsscon.py -u http://testphp.vulnweb.com Advanced usage: python3 xsscon.py --help Main Features crawling all links on a website...
Scavenger : Crawler (Bot) Searching For Credential Leaks On Different Paste Sites
Scavenger crawler (Bot) searching for credential leaks on different paste sites. Just the code of my OSINT bot searching for sensitive data leaks on different paste sites. Search terms: credentialsprivate RSA keysWordpress configuration filesMySQL connect stringsonion linkslinks to files hosted inside the onion network (PDF, DOC, DOCX, XLS, XLSX) Keep in mind: This bot is not beautiful. I wrote it quick and dirty...
