Dirhunt – Find Web Directories Without Bruteforce
Dirhunt is a web crawler optimize for search and analyze directories. This tool can find interesting things if the server has the "index of" mode enabled. Dirhunt is also useful if the directory listing is not enabled. It detects directories with false 404 errors, directories where an empty index file has been created to hide things and much more. $...
IPv4Bypass – Using IPv6 to Bypass Security
IPv4Bypass bypass security using IPv6. Dependences python2.7 nmap python-nmap termcolor Example on how to run the tool $ python bypass.py -i eth0 -r 10.5.192.0/24 $ python bypass.py -h Usage: bypass.py Options: -h, --help show this help message and exit -i INTERFACENO Network interface (e.g. eth0) -r IPRANGE ...
Noisy – Simple random DNS, HTTP/S Internet Traffic Noise Generator
Noisy is a simple python script that generates random HTTP/DNS traffic noise in the background while you go about your regular web browsing, to make your web traffic data less valuable for selling and for extra obscurity.Tested on MacOS High Sierra, Ubuntu 16.04 and Raspbian Stretch and is compatable with both Python 2.7 and 3.6 These instructions will get you...
Orbit – Draws Relationships Between Crypto Wallets Using Recursive Crawling
Orbit draws relationships between crypto wallets using recursive crawling. Give it a blockchain based crypto wallet address and it will crawl 3 levels deep in transaction data to plot a graph out of the information. Orbit Usage Run orbit.py with python3 as follows python3 orbit.py Enter the wallet address __ | |...
Blackowl – Tool To Gather Information, Based On Operative-Framework
Blackowl is a simple tool to gather information, based on Operative-Framework. Leading source of Security Tools, Hacking Tools, CyberSecurity and Network Security. Blackowl Requirements requests pythonwhois beautifulsoup4 Also Read Scout2 – Security Auditing Tool For AWS Environments How To Use Blackowl $ git clone https://github.com/qqwaszx/blackowl.git ; cd blackowl $ pip install -r requirements.txt $ python main.py : blackowl > help Demo Modules /core/modules/ CMS Gathering : CMS Detection Email to...
Seeker – Find Device Information & Geo Location with High Accuracy
Seeker utilizes HTML5, Javascript, JQuery and PHP to grab Device Information and Geo Location with High Accuracy. Seeker is an alternative best used when it's not possible to directly geolocate IP addresses. Seeker Hosts a fake website on Apache Server and uses Ngrok to generate a SSL link which asks for Location Permission and if the user allows it, we...
Camelishing – Social Engineering Tool
Camelishing is a Social Engineering tool with the features like Bulk email sending, Basic Python Agent Creator, Office Excel Macro Creator, DDE Excel Creator(or Custom Payload), Return İnformation, Mail Open Track,Agent Open Track, AutoSave, Statistics Report and User Control. Camelishing is supported in windows 7 and 10. Camelishing Installation $ pip install -r requirements.txt $ Install Microsoft Office Also Read XSS-Payload-List : Cross Site...
Security Monkey – AWS & GCP Accounts For Alerts On Insecure Configurations
Security Monkey monitors your AWS and GCP accounts for policy changes and alerts on insecure configurations. Support is available for OpenStack public and private clouds. It can also watch and monitor your GitHub organizations, teams, and repositories. It provides a single UI to browse and search through all of your accounts, regions, and cloud services. The monkey remembers previous states...
Scout2 – Security Auditing Tool For AWS Environments
Scout2 is a security tool that lets AWS administrators assess their environment's security posture. Using the AWS API, Scout2 gathers configuration data for manual inspection and highlights high-risk areas automatically. Rather than pouring through dozens of pages on the web, Scout2 supplies a clear view of the attack surface automatically. Note: Scout2 is stable and actively maintained, but a number...
Hindsight – Tool For Analyzing Web Artifacts Chrome Browser & Chromium-Based Applications
Hindsight is a free tool for analyzing web artifacts. It started with the browsing history of the Google Chrome web browser and has expanded to support other Chromium-based applications (with more to come!). Hindsight can parse a number of different types of web artifacts, including URLs, download history, cache records, bookmarks, autofill records, saved passwords, preferences, browser extensions, HTTP...
