OWTF – Offensive Web Testing Framework Great Tools & Make Pen Testing More Efficient
OWTF or Offensive Web Testing Framework, is a framework which tries to unite great tools and make pen testing more efficient. OWASP OWTF is a project focused on penetration testing efficiency and alignment of security tests to security standards like the OWASP Testing Guide (v3 and v4), the OWASP Top 10, PTES and NIST so that pentesters will have...
WTF – A Personal Information Dashboard For Your Terminal
WTF is a personal terminal-based dashboard utility, designed for displaying infrequently-needed, but very important, daily data. WTF is only compatible with Go versions 1.9.2 or later. It currently does not compile with gccgo. Also Read Cr3dOv3r – Know The Dangers Of Credential Reuse Attacks WTF Installation There are two ways to install WTF: From Source Get this repo and install the dependencies: go get -u github.com/senorprogrammer/wtf cd...
IP-Biter : The Hacker-friendly E-Mail Tracking Framework
IP-Biter is an open source, easy to deploy, tracking framework that generate high configurable and unique tracking images and links to embed in e-mails, sites or chat systems and visualize, in an hacker-friendly dashboard, high detailed reports of the tracked users who visualize the image or open the links. IP-Biter Features Very high configurable tracking image generation Tracking links generation ...
URH : Universal Radio Hacker To Investigate Wireless Protocols Like A Boss
URH (Universal Radio Hacker) is a software for investigating unknown wireless protocols. Features include Hardware Interfaces for common Software Defined Radios Easy Demodulation of signals Assigning Participants to keep overview of your data Customization Decoding to crack even sophisticated encodings like CC1101 data whitening Assign Labels to reveal the logic of the protocol Fuzzing Component to find security leaks ...
Cr3dOv3r – Know The Dangers Of Credential Reuse Attacks
Cr3dOv3r is know as the dangers of credential reuse attacks. It would be your best friend in credential reuse attacks. You give Cr3dOv3r an email then it does two simple useful jobs with it: Search for public leaks for the email and returns the result with the most useful details about the leak (Using haveibeenpwned API) and tries to...
EvilOSX – An Evil Remote Administration Tool For MacOS / OS X
EvilOSX is an Evil Remote Administration Tool For MacOS / OS X with the following features like Emulate a terminal instance, Simple extendable module system, No bot dependencies, Undetected by anti-virus, Persistent, GUI and CLI support, Retrieve Chrome passwords, Retrieve iCloud tokens and contacts, Retrieve/monitor the clipboard, Retrieve browser history, Phish for iCloud passwords via iTunes, iTunes (iOS) backup...
Autocrack – Hashcat Wrapper To Help Automate The Cracking Process
Autocrack is python script is a Hashcat wrapper to help automate the cracking process. The script includes multiple functions to select a set of wordlists and rules, as well as the ability to run a bruteforce attack, with custom masks, before the wordlist/rule attacks. Autocrack uses Python 3, which is usually installed already in various Linux distributions. To install Python...
Dirhunt – Find Web Directories Without Bruteforce
Dirhunt is a web crawler optimize for search and analyze directories. This tool can find interesting things if the server has the "index of" mode enabled. Dirhunt is also useful if the directory listing is not enabled. It detects directories with false 404 errors, directories where an empty index file has been created to hide things and much more. $...
IPv4Bypass – Using IPv6 to Bypass Security
IPv4Bypass bypass security using IPv6. Dependences python2.7 nmap python-nmap termcolor Example on how to run the tool $ python bypass.py -i eth0 -r 10.5.192.0/24 $ python bypass.py -h Usage: bypass.py Options: -h, --help show this help message and exit -i INTERFACENO Network interface (e.g. eth0) -r IPRANGE ...
Noisy – Simple random DNS, HTTP/S Internet Traffic Noise Generator
Noisy is a simple python script that generates random HTTP/DNS traffic noise in the background while you go about your regular web browsing, to make your web traffic data less valuable for selling and for extra obscurity.Tested on MacOS High Sierra, Ubuntu 16.04 and Raspbian Stretch and is compatable with both Python 2.7 and 3.6 These instructions will get you...