Discover IPv6 Network Range & Hosts from an IPv6 Enabled Network Using passive_discovery6
Passive_discovery6 passively sniffs the network and dump all client's IPv6 addresses detected. Passive_discovery6 simply sniffs for the neighbor-advertisement packet in IPv6 networks. You have to understand the basics of IPv6 networks first. Assuming that you know about IPv4 and what an ARP is, neighbor-advertisement & neighbor-solicitation packets replace the ARP(IPv4) in IPv6. A neighbor-solicitation is the packet sent from a host to...
UBoat – A POC HTTP Botnet Project
UBoat HTTP is a POC HTTP Botnet designed to replicate a full weaponized commercial botnet. UBoat Uses Coded in C++ with no dependencies Encrypted C&C Communications Persistence to prevent your control being lost Connection Redundancy (Uses a fallback server address or domain ) DDoS methods (TCP & UDP Flood) Task Creation System ( Altering system HWID,Country,IP,OS.System ) Remote Commands Update...
Remote Desktop Caching : Tool To Recover Old RDP
Remote Desktop Caching tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or...
Reverse APK – Quickly Analyze & Reverse Engineer Android Packages
Using Reverse APK you will have the option to quickly analyze and reverse engineer Android applications. FEATURES Of Reverse APK Displays all extracted files for easy reference Automatically decompile APK files to Java and Smali format Analyze AndroidManifest.xml for common vulnerabilities and behavior Static source code analysis for common vulnerabilities and behavior Device info Intents Command execution SQLite references Logging...
CMSeeK – CMS Detection And Exploitation Suite
CMSeeK is a CMS detection and exploitation suite where you can Scan WordPress, Joomla, Drupal and 100 other CMSs. CMS or content management system manages the creation and modification of digital content. It typically supports multiple users in a collaborative environment. Use Of CMSeek Basic CMS Detection of over 80 CMS Drupal version detection Advanced Wordpress Scans Detects Version User Enumeration ...
WAF-Buster : Disrupt WAF by abusing SSL/TLS Ciphers
WAF-buster tool was created to Analyze the ciphers that are supported by the Web application firewall being used at the web server end. It works by first triggering SslScan to look for all the supported ciphers during SSL/TLS negotiation with the web server.After getting the text file of all the supported ciphers, then we use Curl to query web...
Vim Wasm – Vim Editor Ported To WebAssembly
Vim Wasm project is running Vim editor on browser by compiling Vim C sources into WebAssembly. Notices Please access from a desktop browser (Chrome/Firefox/Safari/Edge). Safari seems the best on macOS. Please avoid slow networks. Your browser will fetch total of around 1MB files. vim.wasm takes key inputs from DOM keydown event. Please disable your browser extensions which affect key inputs...
GitMiner – Tool For Advanced Mining For Content On Github
GitMiner is a Advanced search tool and automation in Github. This tool aims to facilitate research by code or code snippets on github through the site's search page. GitMiner Requirements lxml requests argparse json re Installation $ git clone http://github.com/UnkL4b/GitMiner $ cd GitMiner ~/GitMiner $ pip3 install -r requirements.txt Docker $ git clone http://github.com/UnkL4b/GitMiner $ cd GitMiner $ docker build -t gitminer . $ docker run -it gitminer -h Also...
Easyssh – The SSH Connection Manager To Make Your Life Easier
Easyssh is a complete, efficient and easy-to-use manager. Create and edit connections, groups, customize the terminal, with multiple instances of the same connection. Easyssh Features Manage connections and groups Customize terminal Dark Theme Multiple instances of same connection Restore opened hosts Sync ~/.ssh/config Also Read Archery – Open Source Vulnerability Assessment & Management Helps Developers & Pentesters To Perform Scans & Manage...
Archery – Open Source Vulnerability Assessment & Management Helps Developers & Pentesters To Perform Scans & Manage Vulnerabilities
Archery is an opensource vulnerability assessment and management tool which helps developers and pentesters to perform scans and manage vulnerabilities. It uses popular opensource tools to perform comprehensive scanning for web application and network. Archery Requirement Python 2.7 OpenVas 8, 9 OWASP ZAP 2.7.0 Selenium Python Firefox Web driver Start Application $ python manage.py runserver 0.0.0.0:8000 Installation $ git clone https://github.com/archerysec/archerysec.git $ cd archerysec $ chmod...
