Cross-Platform Archives - Kali Linux Tutorials

Wireshark-Forensics-Plugin : A cross-platform Wireshark plugin that correlates network traffic data

Wireshark-Forensics-Plugin is the most widely used network traffic analyzer. It is an important tool for both live traffic analysis & forensic analysis for forensic/malware analysts. Even though Wireshark provides incredibly powerful functionalities for protocol parsing & filtering, it does not provide any contextual information about network endpoints. For a typical analyst, who has to comb …

Continue reading “Wireshark-Forensics-Plugin : A cross-platform Wireshark plugin that correlates network traffic data”

Registry-Spy : Cross-platform Registry Browser For Raw Windows Registry Files

https://blogger.googleusercontent.com/img/a/AVvXsEhAviw-wU15OnHs0D7g_WJ34WVHsZgYIu_2mKBz2rKS05ZZdfX3jqJaSEsfuaki7tg-7_iR2_A6ktyKwi7Ro8k_yg564swXjntcigZVObnYNtWzXrwbON3uwqqzyTlp0vLlC3xoJs93MIF7wAegt7mprhd4sNmHhpHBoxid38g3UEE0ixt9ZJOmgkqW=s728

Registry-Spy is a free, open-source cross-platform Windows Registry viewer. It is a fast, modern, and versatile explorer for raw registry files. Features include: Fast, on-the-fly parsing means no upfront overhead Open multiple hives at a time Searching Hex viewer Modification timestamps Requirements Python 3.8+ Installation Download the latest version from the releases page. Alternatively, use one …

Continue reading “Registry-Spy : Cross-platform Registry Browser For Raw Windows Registry Files”

Hyenae Ng : An Advanced Cross-Platform Network Packet Generator And The Successor Of Hyenae

Hyenae Ng (Next Generation) is a re-write of the original Hyenae tool which was originally published back in the year 2010. Besides switching from C to C++, using modern design concepts, Hyenae NG was (just like the original Hyenae) written with maximum portability in mind. Since the original Hyenae had a very complex command line …

Continue reading “Hyenae Ng : An Advanced Cross-Platform Network Packet Generator And The Successor Of Hyenae”

Fapro : Free, Cross-platform, Single-file mass network protocol server simulator

FaPro is a Fake Protocol Server tool, Can easily start or stop multiple network services. The goal is to support as many protocols as possible, and support as many deep interactions as possible for each protocol. Demo Site Features Supported Running Modes: Local Machine Virtual Network Supported Protocols: DNS DCE/RPC EIP Elasticsearch FTP HTTP IEC …

Continue reading “Fapro : Free, Cross-platform, Single-file mass network protocol server simulator”

Nimplant : A Cross-Platform Implant Written In Nim

RFCpwn : An Enumeration & Exploitation Toolkit Using RFC Calls To SAP

Nimplant is a cross-platform (Linux & Windows) implant written in Nim as a fun project to learn about Nim and see what it can bring to the table for red team tool development. Currently, Nimplant lacks extensive evasive tradecraft; however, overtime Nimplant will become much more sophisticated. Installation To install Nimplant, you’ll need Mythic installed …

Continue reading “Nimplant : A Cross-Platform Implant Written In Nim”