Extended-SSRF-Search – Smart SSRF Scanner Using Different Methods Like Parameter Brute Forcing In Post And Get…
This tool search for SSRF using predefined settings in different parts of a request (path, host, headers, post and get...
hacking
IoTGoat – A Deliberately Insecure Firmware Based On OpenWrt
The IoTGoat Project is a deliberately insecure firmware based on OpenWrt. The project’s goal is to teach users about the...
Polyshell – A Bash/Batch/PowerShell Polyglot!
PolyShell is a script that's simultaneously valid in Bash, Windows Batch, and PowerShell (i.e. a polyglot).This makes PolyShell a useful...
Mouse Framework – An iOS And macOS Post Exploitation Surveillance Framework That Gives You A Command Line Session With Extra Functionality Between You And A Target Machine Using Only A Simple Mouse Payload
About Mouse FrameworkMouse Framework is an iOS and macOS post exploitation surveillance framework that gives you a command line session...
Multi-Juicer – Run Capture The Flags And Security Trainings With OWASP Juice Shop
Running CTFs and Security Trainings with OWASP Juice Shop is usually quite tricky, Juice Shop just isn't intended to be...
Progress-Burp – Burp Suite Extension To Track Vulnerability Assessment Progress
Burp Suite extension to track vulnerability assessment progress.Features Capture items (unique requests) from the Burp Suite tools (Proxy, Repeater, Target)....
How to Define Business Value for Security Programs
One prominent area where security programs often struggle is when the security team must demonstrate the business outcomes achieved for...
ABD – Course Materials For Advanced Binary Deobfuscation
Advanced Binary DeobfuscationThis repository contains the course materials of Advanced Binary Deobfuscation at the Global Cybersecurity Camp (GCC) Tokyo in...
Wifi-Hacker – Shell Script For Attacking Wireless Connections Using Built-In Kali Tools
Shell Script For Attacking Wireless Connections Using Built-In Kali Tools. Supports All Securities (WEP, WPS, WPA, WPA2)Download Wifi-Hacker Original Source
How MDR SOC Customer Tony Hamil Leverages the Automation of InsightConnect
Using the right managed detection and response (MDR) solution can help defend against threats and is a valuable tool in...
get_Team_Pass – Get Teamviewer’s ID And Password From A Remote Computer In The LAN
Get teamviewer's ID and password from a remote computer in the LANThis program gets teamviewer's ID and password from a...
Welcome to Rapid7’s Extension Forum
Rapid7 is excited to announce the launch of Rapid7 Discuss, a forum and community intended to serve as a home...
Faraday presents the latest version of their Security Platform for Vulnerability Management Automation
Miami, February 19, 2020 - Faraday is opening 2020 by strengthening their releases using the featured cybersecurity worldwide events calendar,...
Dnssearch – A Subdomain Enumeration Tool
This software is a subdomain enumeration tool.Purposednssearch takes an input domain ( -domain parameter ) and a wordlist ( -wordlist...
Liffy – Local File Inclusion Exploitation Tool
LFI Exploitation toolA little python tool to perform Local file inclusion.Liffy v2.0 is the improved version of liffy which was...
Securing Cloud-Native Apps Requires Partnership
This blog was coauthored by Bria Grangard and Justin Buchanan.Every business is becoming a software business, and web applications are...
DLLPasswordFilterImplant – DLL Password Filter Implant With Exfiltration Capabilities
DLLPasswordFilterImplant is a custom password filter DLL that allows the capture of a user's credentials. Each password change event on...
Ohmybackup – Scan Victim Backup Directories & Backup Files
ohmybackup - Scan Victim's Backup Directories & Backup FilesohmybackupScans backup folders on target sites. Searches archived files in the folders...
Gadgetinspector – A Byte Code Analyzer For Finding Deserialization Gadget Chains In Java Applications
This project inspects Java libraries and classpaths for gadget chains. Gadgets chains are used to construct exploits for deserialization vulnerabilities....
OWASP D4N155 – Intelligent And Dynamic Wordlist Using OSINT
It's an information security audit tool that creates intelligent wordlists based on the content of the target page.Help usSee some...
TaskManager-Button-Disabler – Simple Way To Disable/Rename Buttons From A Task Manager
Simple way to disable/rename buttons from a task manager.Installationgit clone https://github.com/Mrakovic-ORG/TaskManager-Button-Disablercd TaskManager-Button-DisablerTaskManager Button Disablerdotnet buildFeaturesRename kill proccess buttonDisable kill proccess...
SUDO_KILLER – A Tool To Identify And Exploit Sudo Rules’ Misconfigurations And Vulnerabilities Within Sudo
Linux Privilege Escalation through SUDO abuse.If you like the tool and for my personal motivation so as to develop other...
Rapid7 Named 2019 Global SOAR Company of the Year by Frost & Sullivan
We are thrilled to announce that global research and consulting firm Frost & Sullivan has named Rapid7 as the Global...
Adama – Searches For Threat Hunting And Security Analytics
AdamaSearches For Threat Hunting and Security AnalyticsA collection of known log and / or event data searches for threat hunting...
