XSStrike – Most Advanced XSS Detection Suite
XSStrike is a Cross Site Scripting detection suite equipped with four hand written parsers, an intelligent payload generator, a powerful fuzzing engine and an incredibly fast crawler. Instead of injecting payloads and checking it works like all the other tools do, it analyses the response with multiple parsers and then crafts payloads that are guaranteed to work with context analysis...
Python-Nubia : A Command-Line & Interactive Shell Framework
Python-Nubia is a lightweight framework for building command-line applications with Python. It was originally designed for the “logdevice interactive shell (aka. ldshell)” at Facebook. Since then it was factored out to be a reusable component and several internal Facebook projects now rely on it as a quick and easy way to get an intuitive shell/cli application without too much...
Slither – Static Analyzer for Solidity
Slither is a Solidity static analysis framework written in Python 3. It runs a suite of vulnerability detectors, prints visual information about contract details, and provides an API to easily write custom analyses. Slither enables developers to find vulnerabilities, enhance their code comphrehension, and quickly prototype custom analyses. Slither Features Detects vulnerable Solidity code with low false positives Identifies where...
HttpLab : The Interactive Web Server
HttpLab is the interactive web server. HTTPLabs let you inspect HTTP requests and forge responses. HttpLab Installation Golang go get github.com/gchaincl/httplab go install github.com/gchaincl/httplab/cmd/httplab Archlinux yaourt httplab FIXME On systems where snap is supported: snap install httplab Also ReadWinspy – Windows Reverse Shell Backdoor Creator With An Automatic IP Poisener Help Usage of httplab: -a, --auto-update Auto-updates response when fields change. (default true) ...
Telebix – Telebix is an application that communicates with a Bot on the Telegram to receive commands and send information from an infrastructure monitored by Zabbix
Telebix is an application that communicates with a Bot on the Telegram to receive commands and send information from an infrastructure monitored by Zabbix, which also sends messages in real time if any problems occur in the infrastructure, it is totally written in Python with Shell Script and has a graphical interface to help the network administrator more intuitively....
Shellcode-Encrypter-Decrypter : Shellcode Encrypter & Decrypter by using XOR Cipher
Shellcode-Encrypter-Decrypter is a Shellcode Encrypter & Decrypter, Using XOR Cipher to enc and dec shellcode. Shellcode-Encrypter-Decrypter Installation git clone https://github.com/blacknbunny/Shellcode-Encrypter-Decrypter.git && cd Shellcode-Encrypter-Decrypter/ python enc.py --help Also ReadMunin – Online Hash Checker For Virustotal & Other Services Usage Example Encryption: python encdecshellcode.py --shellcode x41x41x42x42 --key SECRETKEY --option encrypt Decryption: python encdecshellcode.py --shellcode x41x41x42x42 --key SECRETKEY --option decrypt Help usage: enc.py ...
Twitter-Intelligence : OSINT Project Performs Tracking & Analysis Of The Twitter
Twitter-Intelligence is a project written in Python to twitter tracking and analysis without using Twitter API. This project is a Python 3.x application. The package dependencies are in the file requirements.txt. Run that command to install the dependencies. pip3 install -r requirements.txt SQLite is used as the database. Tweet data are stored on the Tweet, User, Location, Hashtag, HashtagTweet tables. ...
TLS-Scanner : The TLS-Scanner Module from TLS-Attacker
TLS-Scanner is a tool created by the Chair for Network and Data Security from the Ruhr-University Bochum to assist pentesters and security researchers in the evaluation of TLS Server configurations. Note: It is a research tool intended for TLS developers, pentesters, administrators and researchers. There is no GUI. It is in the first version and may contain some bugs. Compiling TLS-Scanner In...
Bashark – Bash Pentesters & Security Researchers Post Exploitation Toolkit
Bashark aids pentesters and security researchers during the post-exploitation phase of security audits. To launch it on compromised host, simply source the bashark.sh script from terminal: $ source bashark.sh Then type help to see it's help menu. Bashark Features Single Bash script Lightweight and fast Multi-platform: Unix, OSX, Solaris etc. No external dependencies Immune to heuristic and behavioural analysis Built-in...
Winspy – Windows Reverse Shell Backdoor Creator With An Automatic IP Poisener
WinSpy a Windows reverse shell Backdoor creator with an Automatic IP Poisene. Dependencies metasploit-framework xterm apache2 Also ReadEvilginx2 – Standalone MITM Attack Framework Used For Phishing Login Credentials Along With Session Cookies, Allowing For The Bypass Of 2-factor Authentication Winspy Installation sudo apt-get install git git clone https://github.com/TunisianEagles/winspy.git cd winspy chmod +x setup.sh ./setup.sh chmod +x winspy.sh ./winspy.sh Screenshot Disclaimer The author does not hold any responsibility for the bad use...
