Nautilus – A Grammar Based Feedback Fuzzer
Nautilus is a coverage guided, grammar based fuzzer. You can use it to improve your test coverage and find more...
hacking
SharpChromium – .NET 4.0 CLR Project To Retrieve Chromium Data, Such As Cookies, History And Saved Logins
SharpChromium is a .NET 4.0+ CLR project to retrieve data from Google Chrome, Microsoft Edge, and Microsoft Edge Beta. Currently,...
Patch Tuesday – August 2020
120 Vulnerabilities Patched in Microsoft's August 2020 Update Tuesday (2020-Aug Patch Tuesday)August 2020 brings along patches for 120 vulnerabilities within...
SkyArk – Helps To Discover, Assess And Secure The Most Privileged Entities In Azure And AWS
3. SkyArk includes more small sub-modules for playing around in the cloud security fieldAn example for such a sub-module is...
PE Tree – Python Module For Viewing Portable Executable (PE) Files In A Tree-View
Python module for viewing Portable Executable (PE) files in a tree-view using pefile and PyQt5. Can also be used with...
Rapid7 Named a Leader in the 2020 Forrester Wave™ for Midsize Managed Security Services Providers, Q3 2020
Rapid7 is thrilled to be named a Leader in The Forrester Wave™: Midsize Managed Security Services Providers, Q3 2020! The...
Flask-Session-Cookie-Manager – Flask Session Cookie Decoder/Encoder
Flask Session Cookie Decoder/EncoderDepencenciesPython 2 or Python 3itsdangerousFlaskInstallationBlackArch Linux# pacman -S flask-session-cookie-manager{3,2}GitArchLinuxBoth python3 etn python2:$ git clone https://github.com/noraj/flask-session-cookie-manager.git && cd...
Arcane – A Simple Script Designed To Backdoor iOS Packages (Iphone-Arm) And Create The Necessary Resources For APT Repositories
Arcane is a simple script designed to backdoor iOS packages (iphone-arm) and create the necessar y resources for APT repositories....
What’s New in InsightVM: H1 2020 in Review
Throughout the first half of the year, we released updates and features to help security teams work more effectively and...
IRFuzz – Simple Scanner with Yara Rule
IRFuzz is a simple scanner with yara rules for document archives or any files.Install1. PrerequisitesLinux or OS XYara: just use...
Evine – Interactive CLI Web Crawler
Evine is a simple, fast, and interactive web crawler and web scraper written in Golang. Evine is useful for a...
SharpAppLocker – C# Port Of The Get-AppLockerPolicy PS Cmdlet
C# port of the Get-AppLockerPolicy PS cmdlet _____ _ ___ _ _/ ___| | / _ | | | |...
PhishingKitTracker – Let’s Track Phishing Kits To Give To Research Community Raw Material To Stud
An extensible and freshly updated collection of phishingkits for forensics and future analysis topped with simple statsDisclaimerThis repository holds a...
FestIn – S3 Bucket Weakness Discovery
FestIn is a tool for discovering open S3 Buckets starting from a domains.It perform a lot of test and collects...
Chalumeau – Automated, Extendable And Customizable Credential Dumping Tool
Chalumeau is automated,extendable and customizable credential dumping tool based on powershell and python.Main FeaturesWrite your own PayloadsIn-Memory executionExtract Password ListDashboard...
Virtual Black Hat: Rapid7 Experts Share Key Takeaways from Day 2 Sessions
This blog post is part 2 of a two-part blog series recapping Rapid7’s Black Hat debriefs as part of Virtual...
ProctorU – 444,453 breached accounts
In June 2020, the online exam service ProctorU suffered a data breach which was subsequently shared extensively across online...
TA551 (Shathak) Word docs push IcedID (Bokbot)
Introduction I've been tracking malicious Word documents from the TA551 (Shathak) campaign This year, we've seen a lot of Valak...
A Fork of the FTCode Powershell Ransomware, (Thu, Aug 6th)
Yesterday, I found a new malicious Powershell script that deserved to be analyzed due to the way it was dropped...
Gtunnel – A Robust Tunelling Solution Written In Golang
A TCP tunneling suite built with golang and gRPC. gTunnel can manage multiple forward and reverse tunnels that are all...
Taowu – A CobaltStrike Toolkit
TaoWu(檮杌) is a CobaltStrike toolkit. All the scripts are gathered on the Internet and slightly modified by myself. You can...
Virtual Black Hat: Rapid7 Experts Share Key Takeaways from Day 1 Sessions
Boy, oh boy, has Black Hat changed. Where we once looked up at the neon lights of Las Vegas, we...
Metasploit 6 Now Under Active Development
Today the Metasploit team is pleased to announce active development of Metasploit Framework 6.0, available now for testing and community...
UEFI_RETool – A Tool For UEFI Firmware Reverse Engineering
A tool for UEFI firmware reverse engineering.UEFI firmware analysis with uefi_retool.py scriptUsage:Copy ida_plugin/uefi_analyser.py script and ida_plugin/uefi_analyser directory to IDA plugins...
