Oralyzer – Tool To Identify Open Redirection
Oralyzer, a simple python script, capable of identifying the open redirection vulnerability in a website. It does that by fuzzing...
hacking
Kubebox – Terminal And Web Console For Kubernetes
Terminal and Web console for KubernetesFeatures Configuration from kubeconfig files (KUBECONFIG environment variable or $HOME/.kube) Switch contexts interactively Authentication support...
Commit Stream – OSINT Tool For Finding Github Repositories By Extracting Commit Logs In Real Time From The Github Event API
commit-stream drinks commit logs from the Github event firehose exposing the author details (name and email address) associated with Github...
Remote Code Execution Risks in Secomea, Moxa, and HMS eWon ICS VPN Vulnerabilities: What You Need to Know
On Wednesday, July 28, 2020, researchers at Claroty released information on a number of critical remote code execution vulnerabilities across...
Rapid7 statement on privacy and status of EU-US data transfers post-Schrems II
SummaryContext: The Court of Justice of the European Union (CJEU) struck down the EU-US Privacy Shield (Privacy Shield) as a...
Joe FitzPatrick on the Future of Hardware Security Training Sessions
This week Rapid7 welcomes Joe FitzPatrick, a lead researcher at securinghardware.com, as he discusses what it takes to run a...
SNOWCRASH – A Polyglot Payload Generator
A polyglot payload generator IntroductionSNOWCRASH creates a script that can be launched on both Linux and Windows machines. Payload selected...
Intelspy – Perform Automated Network Reconnaissance Scans
Perform automated network reconnaissance scans to gather network intelligence.IntelSpy is a multi-threaded network intelligence spy tool which performs automated enumeration...
Plugin Development Made Easy With Rapid7
"I've built plugins for four SOAR vendors, and your model was the most mature. You had the best code quality...
TrustJack – Yet Another PoC For Hijacking DLLs in Windows
Yet another PoC for https://www.wietzebeukema.nl/blog/hijacking-dlls-in-windowsBlogpost: https://redteamer.tips/?p=108To be used with a cmd that does whatever the F you want, for a...
HawkScan – Security Tool For Reconnaissance And Information Gathering On A Website
Security Tool for Reconnaissance and Information Gathering on a website. (python 2.x & 3.x)This script use "WafW00f" to detect the...
Hear from Your Peers: Advice for Your First 90 Days Using a Vulnerability Management Solution
Modern environments today are, well, complex. They often include a concoction of on-premises, cloud, container, and virtualization services. There’s a...
Sitedorks – Search Google/Bing/DuckDuckGo/Yandex/Yahoo For A Search Term With Different Websites
Search Google, Bing, Yahoo or Yandex for a search term with different websites. A default list is already provided, which...
reNgine – An Automated Reconnaissance Framework Meant For Gathering Information During Penetration Testing Of Web Applications
reNgine is an automated reconnaissance framework meant for gathering information during penetration testing of web applications. reNgine has customizable scan...
Autoenum – Automatic Service Enumeration Script
Autoenum is a recon tool which performs automatic enumeration of services discovered. I built this to save some time during...
AuthMatrix – A Burp Suite Extension That Provides A Simple Way To Test Authorization
AuthMatrix is an extension to Burp Suite that provides a simple way to test authorization in web applications and web...
Permission Manager – A Project That Brings Sanity To Kubernetes RBAC And Users Management, Web UI FTW
Welcome to the Permission Manager!Permission Manager is an application developed by SIGHUP that enables a super-easy and user-friendly RBAC management...
Quiver – Tool To Manage All Of Your Tools For Bug Bounty Hunting And Penetration Testing
Quiver is the tool to manage all of your tools. It's an opinionated and curated collection of commands, notes and...
Onex – A Library Of Hacking Tools For Termux And Other Linux Distributions
"onex a hacking tools library." Onex is a kali linux hacking tools installer for termux and other linux distribution. It's...
Kali-Linux-Tools-Interface – Graphical Web Interface Developed To Facilitate The Use Of Security Information Tools
A graphical interface to use information security tools by the browser. Getting StartedKali Linux Tools Interface is a graphical interface...
CVE-2020-3452 Cisco ASA / Firepower Read-Only Path Traversal Vulnerability: What You Need to Know
On July 22, Cisco released a patch for a high-severity read-only patch traversal vulnerability in its Cisco Adaptive Security Appliance...
What’s New in InsightIDR: H1 2020 in Review
We’ve continued to make enhancements around our Custom Parsing Tool. Most recently, we’ve made it easier for customers to define...
Lazybee – Wordlist Generator Tool for Termux
Lazybee tool is a python based script from which you can generate random wordlist for brutefocre attacks. This tool has...
Q&A from June 2020 Customer Webcast on InsightVM Custom Policy Builder
This blog was co-authored by Naveen Bibinagar, Greg Wiseman, and Joel Kinzel.During our most recent “Seeing 20/20 with InsightVM” customer...
