Cyber security

HackTools – All-in-one Red Team Browser Extension For Web Pentesters

The primary responsibility of red teaming is to assess malicious actors and attempt to breach the system genuinely.

Red teaming’s motto is to mitigate cognitive errors such as groupthink and confirmation bias, which can impede an organization’s or individual’s decision-making ability.

Red teaming is a cybersecurity training approach commonly utilized by private and public sectors.

The primary role of the red team is to identify the risks in your organization through conventional penetration testing.

Red Team Browser Extension – HackTools

HackTools is a red team web extension developed by Ludovic COULON & Riadh BOUCHAHOUA. The tool simplifies web application penetration testing by providing cheat sheets.

Also, it offers a variety of tools commonly used during a test, including XSS payloads, reverse shells, and other resources.

The extension eliminates the need to search for payloads on various websites or your local storage, as most tools are conveniently accessible with a single click.

You can access HackTools in either pop-up mode or a separate tab in the DevTools section of your browser using F12.

Functions:

  • Dynamic Reverse Shell generator (PHP, Bash, Ruby, Python, Perl, Netcat)
  • Shell Spawning (TTY Shell Spawning)
  • MSF Venom Builder
  • XSS Payloads
  • Basic SQLi payloads
  • Local file inclusion payloads (LFI)
  • Data Encoding
  • Obfuscated Files or Information
  • Hash Generator (MD5, SHA1, SHA256, SHA512, SM3)
  • Useful Linux commands (Port Forwarding, SUID)
  • RSS Feed (Exploit DB, Cisco Security Advisories, CXSECURITY)
  • CVE Search Engine
  • Various methods of data exfiltration and download from a remote machine
XSS Detection
Reverse shell

For Chromium Based Browser

The download Google Chrome Extension

For Firefox Browser

To download Firefox browser add-ons

For Safari

Create a Safari web extension project using the command below. This is to be run once.

xcrun safari-web-extension-coverter [path_to_dist_folder]

Follow the instructions to create the project. The default language should be Swift.

  • Build project.
  • Open Safari and enable unsigned extensions; Develop → Allow Unsigned Extensions.
  • Open Safari → Preferences → Extensions and enable Hack-Tools
  • Click on the extension icon and switch to full-screen mode.

Please consider following and supporting us to stay updated with the latest information.

Linumonk

Leave a Comment
Share
Published by
Linumonk
Tags: kali linuxRed Team
3 years ago

Recent Posts

How UDP Works and Why It Is So Fast

When people ask how UDP works, the simplest answer is this: UDP sends data quickly…

2 days ago

How EDR Killers Bypass Security Tools

Endpoint Detection and Response (EDR) solutions have become a cornerstone of modern cybersecurity, designed to…

5 days ago

AI-Generated Malware Campaign Scales Threats Through Vibe Coding Techniques

A large-scale malware campaign leveraging AI-assisted development techniques has been uncovered, revealing how attackers are…

5 days ago

How Does a Firewall Work Step by Step

How Does a Firewall Work Step by Step? What Is a Firewall and How Does…

6 days ago

Fake VPN Download Trap Can Steal Your Work Login in Minutes

People trying to securely connect to work are being tricked into doing the exact opposite.…

7 days ago

This Android Bug Can Crack Your Lock Screen in 60 Seconds

A newly disclosed Android vulnerability is making noise for a good reason. Researchers showed that…

2 weeks ago