Cyber security

HackTools – All-in-one Red Team Browser Extension For Web Pentesters

The primary responsibility of red teaming is to assess malicious actors and attempt to breach the system genuinely.

Red teaming’s motto is to mitigate cognitive errors such as groupthink and confirmation bias, which can impede an organization’s or individual’s decision-making ability.

Red teaming is a cybersecurity training approach commonly utilized by private and public sectors.

The primary role of the red team is to identify the risks in your organization through conventional penetration testing.

Red Team Browser Extension – HackTools

HackTools is a red team web extension developed by Ludovic COULON & Riadh BOUCHAHOUA. The tool simplifies web application penetration testing by providing cheat sheets.

Also, it offers a variety of tools commonly used during a test, including XSS payloads, reverse shells, and other resources.

The extension eliminates the need to search for payloads on various websites or your local storage, as most tools are conveniently accessible with a single click.

You can access HackTools in either pop-up mode or a separate tab in the DevTools section of your browser using F12.

Functions:

  • Dynamic Reverse Shell generator (PHP, Bash, Ruby, Python, Perl, Netcat)
  • Shell Spawning (TTY Shell Spawning)
  • MSF Venom Builder
  • XSS Payloads
  • Basic SQLi payloads
  • Local file inclusion payloads (LFI)
  • Data Encoding
  • Obfuscated Files or Information
  • Hash Generator (MD5, SHA1, SHA256, SHA512, SM3)
  • Useful Linux commands (Port Forwarding, SUID)
  • RSS Feed (Exploit DB, Cisco Security Advisories, CXSECURITY)
  • CVE Search Engine
  • Various methods of data exfiltration and download from a remote machine
XSS Detection
Reverse shell

For Chromium Based Browser

The download Google Chrome Extension

For Firefox Browser

To download Firefox browser add-ons

For Safari

Create a Safari web extension project using the command below. This is to be run once.

xcrun safari-web-extension-coverter [path_to_dist_folder]

Follow the instructions to create the project. The default language should be Swift.

  • Build project.
  • Open Safari and enable unsigned extensions; Develop → Allow Unsigned Extensions.
  • Open Safari → Preferences → Extensions and enable Hack-Tools
  • Click on the extension icon and switch to full-screen mode.

Please consider following and supporting us to stay updated with the latest information.

Linumonk

Recent Posts

cp Command: Copy Files and Directories in Linux

The cp command, short for "copy," is the main Linux utility for duplicating files and directories. Whether…

6 days ago

Image OSINT

Introduction In digital investigations, images often hold more information than meets the eye. With the…

6 days ago

cat Command: Read and Combine File Contents in Linux

The cat command short for concatenate, It is a fast and versatile tool for viewing and merging…

6 days ago

Port In Networking

What is a Port? A port in networking acts like a gateway that directs data…

6 days ago

ls Command: List Directory Contents in Linux

The ls command is fundamental for anyone working with Linux. It’s used to display the files and…

6 days ago

pwd Command: Find Your Location in Linux

The pwd (Print Working Directory) command is essential for navigating the Linux filesystem. It instantly shows your…

7 days ago