Cyber security

HackTools – All-in-one Red Team Browser Extension For Web Pentesters

The primary responsibility of red teaming is to assess malicious actors and attempt to breach the system genuinely.

Red teaming’s motto is to mitigate cognitive errors such as groupthink and confirmation bias, which can impede an organization’s or individual’s decision-making ability.

Red teaming is a cybersecurity training approach commonly utilized by private and public sectors.

The primary role of the red team is to identify the risks in your organization through conventional penetration testing.

Red Team Browser Extension – HackTools

HackTools is a red team web extension developed by Ludovic COULON & Riadh BOUCHAHOUA. The tool simplifies web application penetration testing by providing cheat sheets.

Also, it offers a variety of tools commonly used during a test, including XSS payloads, reverse shells, and other resources.

The extension eliminates the need to search for payloads on various websites or your local storage, as most tools are conveniently accessible with a single click.

You can access HackTools in either pop-up mode or a separate tab in the DevTools section of your browser using F12.

Functions:

  • Dynamic Reverse Shell generator (PHP, Bash, Ruby, Python, Perl, Netcat)
  • Shell Spawning (TTY Shell Spawning)
  • MSF Venom Builder
  • XSS Payloads
  • Basic SQLi payloads
  • Local file inclusion payloads (LFI)
  • Data Encoding
  • Obfuscated Files or Information
  • Hash Generator (MD5, SHA1, SHA256, SHA512, SM3)
  • Useful Linux commands (Port Forwarding, SUID)
  • RSS Feed (Exploit DB, Cisco Security Advisories, CXSECURITY)
  • CVE Search Engine
  • Various methods of data exfiltration and download from a remote machine
XSS Detection
Reverse shell

For Chromium Based Browser

The download Google Chrome Extension

For Firefox Browser

To download Firefox browser add-ons

For Safari

Create a Safari web extension project using the command below. This is to be run once.

xcrun safari-web-extension-coverter [path_to_dist_folder]

Follow the instructions to create the project. The default language should be Swift.

  • Build project.
  • Open Safari and enable unsigned extensions; Develop → Allow Unsigned Extensions.
  • Open Safari → Preferences → Extensions and enable Hack-Tools
  • Click on the extension icon and switch to full-screen mode.

Please consider following and supporting us to stay updated with the latest information.

Linumonk

Recent Posts

Pystinger : Bypass Firewall For Traffic Forwarding Using Webshell

Pystinger is a Python-based tool that enables SOCKS4 proxying and port mapping through webshells. It…

6 days ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

6 days ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

6 days ago

How to Bash Append to File: A Simple Guide for Beginners

If you are working with Linux or writing bash scripts, one of the most common…

6 days ago

Mastering the Bash Case Statement with Simple Examples

What is a bash case statement? A bash case statement is a way to control…

6 days ago

How to Check if a File Exists in Bash – Simply Explained

Why Do We Check Files in Bash? When writing a Bash script, you often work…

1 week ago