Asnap – Tool To Render Recon Phase Easier By Providing Updated Data About Which Companies Owns Which Ipv4 Or Ipv6 Addresses
Asnap aims to render recon phase easier by providing regularly updated data about which companies owns which ipv4 or ipv6...
tools
uriDeep – Unicode Encoding Attacks With Machine Learning
Unicode encoding attacks with machine learning. Tool based on machine learning to create amazing fake domains using confusables. Some domains...
smbAutoRelay – Provides The Automation Of SMB/NTLM Relay Technique For Pentesting And Red Teaming Exercises In Active Directory Environments
SMB AutoRelay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environments. Usage...
Powerglot – Encodes Offensive Powershell Scripts Using Polyglots
Powerglot encodes several kind of scripts using polyglots, for example, offensive powershell scripts. It is not needed a loader to...
Pastego – Scrape/Parse Pastebin Using GO And Expression Grammar (PEG)
Scrape/Parse Pastebin using GO and grammar expression (PEG). Installation$ go get -u github.com/notdodo/pastego UsageSearch keywords are case sensitive pastego -s...
Rapid7 Introduces “Active Response” for End-to-End Detection and Response
We know your cybersecurity team is facing unprecedented challenges, including new and complex attacks that exploit your remote workforce and...
H2Csmuggler – HTTP Request Smuggling Over HTTP/2 Cleartext (H2C)
h2cSmuggler smuggles HTTP traffic past insecure edge-server proxy_pass configurations by establishing HTTP/2 cleartext (h2c) communications with h2c-compatible back-end servers, allowing...
mapCIDR – Small Utility Program To Perform Multiple Operations For A Given subnet/CIDR Ranges
Small utility program to perform multiple operations for a given subnet/CIDR ranges. The tool was developed to ease load distribution...
Exploitability Analysis: Smash the Ref Bug Class
In April 2020, security researcher Gil Dabah published a paper on a set of vulnerabilities he had discovered within the...
Lil-Pwny – Auditing Active Directory Passwords Using Multiprocessing In Python
A multiprocessing approach to auditing Active Directory passwords using Python. About Lil PwnyLil Pwny is a Python application to perform...
Polypyus – Learns To Locate Functions In Raw Binaries By Extracting Known Functions From Similar Binaries
Polypyus learns to locate functions in raw binaries by extracting known functions from similar binaries. Thus, it is a firmware...
Microsoft Exchange 2010 End of Support and Overall Patching Study
Today's topic is Exchange 2010, which reaches end of support (EoS) on Oct. 13, 2020, as well as a survey...
2021 Detection and Response Planning, Part 1: Rapid7’s Jeffrey Gardner Breaks Down How CISOs Should Approach Security Planning for the New Year
In this four-part series, we’ll explore key considerations and strategies for 2021 detection and response planning, and ways InsightIDR, Managed...
NERVE – Network Exploitation, Reconnaissance & Vulnerability Engine
NERVE is a vulnerability scanner tailored to find low-hanging fruit level vulnerabilities, in specific application configurations, network services, and unpatched...
Cooolis-ms – A Server That Supports The Metasploit Framework RPC
Cooolis-ms is a server that supports Metasploit Framework RPC. It is used to work for Shellcode and PE loader, bypassing...
PwnedPasswordsChecker – Search (Offline) If Your Password (NTLM Or SHA1 Format) Has Been Leaked (HIBP Passwords List V5)
PwnedPasswordsChecker is a tool that checks if the hash of a known password (in SHA1 or NTLM format) is present...
Wacker – A WPA3 Dictionary Cracker
A set of scripts to help perform an online dictionary attack against a WPA3 access point. Wacker leverages the wpa_supplicant...
SharpSecDump – .Net Port Of The Remote SAM + LSA Secrets Dumping Functionality Of Impacket’S Secretsdump.Py
.Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py. By default runs in the context...
Velociraptor – Endpoint Visibility and Collection Tool
Velociraptor is a tool for collecting host based state information using Velocidex Query Language (VQL) queries. To learn more about...
Go-Dork – The Fastest Dork Scanner Written In Go
The fastest dork scanner written in Go. There are also various search engines supported by go-dork, including Google, Shodan, Bing,...
PwnXSS – Vulnerability XSS Scanner Exploit
A powerful XSS scanner made in python 3.7InstallingRequirements: BeautifulSoup4 pip install bs4 requests pip install requests python 3.7 Commands: git...
PSMDATP – PowerShell Module For Managing Microsoft Defender Advanced Threat Protection
Welcome to the Microsoft Defender Advanced Threat Protection PowerShell module! This module is a collection of easy-to-use cmdlets and functions...
SitRep – Extensible, Configurable Host Triage
SitRep is intended to provide a lightweight, extensible host triage alternative. Checks are loaded dynamically at runtime from stand-alone files....
Enum4Linux – A Linux Alternative To Enum.Exe For Enumerating Data From Windows And Samba Hosts
A Linux alternative to enum.exe for enumerating data from Windows and Samba hosts. Enum4linux is a tool for enumerating information...
