EvilOSX – An Evil Remote Administration Tool For MacOS / OS X
EvilOSX is an Evil Remote Administration Tool For MacOS / OS X with the following features like Emulate a terminal instance, Simple extendable module system, No bot dependencies, Undetected by anti-virus, Persistent, GUI and CLI support, Retrieve Chrome passwords, Retrieve iCloud tokens and contacts, Retrieve/monitor the clipboard, Retrieve browser history, Phish for iCloud passwords via iTunes, iTunes (iOS) backup...
Autocrack – Hashcat Wrapper To Help Automate The Cracking Process
Autocrack is python script is a Hashcat wrapper to help automate the cracking process. The script includes multiple functions to select a set of wordlists and rules, as well as the ability to run a bruteforce attack, with custom masks, before the wordlist/rule attacks. Autocrack uses Python 3, which is usually installed already in various Linux distributions. To install Python...
Dirhunt – Find Web Directories Without Bruteforce
Dirhunt is a web crawler optimize for search and analyze directories. This tool can find interesting things if the server has the "index of" mode enabled. Dirhunt is also useful if the directory listing is not enabled. It detects directories with false 404 errors, directories where an empty index file has been created to hide things and much more. $...
IPv4Bypass – Using IPv6 to Bypass Security
IPv4Bypass bypass security using IPv6. Dependences python2.7 nmap python-nmap termcolor Example on how to run the tool $ python bypass.py -i eth0 -r 10.5.192.0/24 $ python bypass.py -h Usage: bypass.py Options: -h, --help show this help message and exit -i INTERFACENO Network interface (e.g. eth0) -r IPRANGE ...
Noisy – Simple random DNS, HTTP/S Internet Traffic Noise Generator
Noisy is a simple python script that generates random HTTP/DNS traffic noise in the background while you go about your regular web browsing, to make your web traffic data less valuable for selling and for extra obscurity.Tested on MacOS High Sierra, Ubuntu 16.04 and Raspbian Stretch and is compatable with both Python 2.7 and 3.6 These instructions will get you...
Orbit – Draws Relationships Between Crypto Wallets Using Recursive Crawling
Orbit draws relationships between crypto wallets using recursive crawling. Give it a blockchain based crypto wallet address and it will crawl 3 levels deep in transaction data to plot a graph out of the information. Orbit Usage Run orbit.py with python3 as follows python3 orbit.py Enter the wallet address __ | |...
Blackowl – Tool To Gather Information, Based On Operative-Framework
Blackowl is a simple tool to gather information, based on Operative-Framework. Leading source of Security Tools, Hacking Tools, CyberSecurity and Network Security. Blackowl Requirements requests pythonwhois beautifulsoup4 Also Read Scout2 – Security Auditing Tool For AWS Environments How To Use Blackowl $ git clone https://github.com/qqwaszx/blackowl.git ; cd blackowl $ pip install -r requirements.txt $ python main.py : blackowl > help Demo Modules /core/modules/ CMS Gathering : CMS Detection Email to...
Seeker – Find Device Information & Geo Location with High Accuracy
Seeker utilizes HTML5, Javascript, JQuery and PHP to grab Device Information and Geo Location with High Accuracy. Seeker is an alternative best used when it's not possible to directly geolocate IP addresses. Seeker Hosts a fake website on Apache Server and uses Ngrok to generate a SSL link which asks for Location Permission and if the user allows it, we...
Camelishing – Social Engineering Tool
Camelishing is a Social Engineering tool with the features like Bulk email sending, Basic Python Agent Creator, Office Excel Macro Creator, DDE Excel Creator(or Custom Payload), Return İnformation, Mail Open Track,Agent Open Track, AutoSave, Statistics Report and User Control. Camelishing is supported in windows 7 and 10. Camelishing Installation $ pip install -r requirements.txt $ Install Microsoft Office Also Read XSS-Payload-List : Cross Site...
Security Monkey – AWS & GCP Accounts For Alerts On Insecure Configurations
Security Monkey monitors your AWS and GCP accounts for policy changes and alerts on insecure configurations. Support is available for OpenStack public and private clouds. It can also watch and monitor your GitHub organizations, teams, and repositories. It provides a single UI to browse and search through all of your accounts, regions, and cloud services. The monkey remembers previous states...
