Clik here to view.
SQLMap – Automatic SQL Injection And Database Takeover Tool
sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection...
View ArticleClik here to view.
PeerTweet — DHT Decentralized feeds
BitTorrent’s DHT is probably one of the most resilient and censorship-resistant networks on the internet. PeerTweet uses this network to allow users to broadcast tweets to anyone who is listening....
View ArticleClik here to view.
iPipeTo — Interactive CLI Workflow
ipt (pronounced iPipeTo) introduces the missing cli interactive workflow. It takes any kind of list as an input and uses that list to build an interactive interface to let you select an element from...
View ArticleAudit CouchDB – The Simple, Clear, CouchDB Security Assessment
Audit CouchDB is a simple tool with a powerful message. Given an Apache CouchDB URL, it will tell you everything you ever wanted to know about its security. ▼Advertisements Objective Audit CouchDB will...
View ArticlePentestly — Python And Powershell Internal Penetration Testing Framework Tool
Pentestly is a tool for penetration tests. It is a combination of expanding Python tools. The main aim of the Pentestly tool is to utilize the familiar user interface. With the power of Python, the...
View ArticleClik here to view.
ATSCAN v6.2 – Search / Site / Server Scanner
Description: SEARCH engine XSS scanner. Sqlmap. LFI scanner. Filter wordpress and Joomla sites in the server. Find Admin page. Decode / Encode MD5 + Base64. Ports scan. Scan E-mails in sites. Use...
View ArticleAppie v3 – Android Pentesting Portable Integrated Environment
Appie is a software package that has been pre-configured to function as an Android Pentesting Environment on any windows based machine without the need of a Virtual Machine(VM) or dualboot. It is...
View ArticleIIS Short Name Scanner – Scanner For IIS Short File Name Disclosure...
Scanner for IIS short file name (8.3) disclosure vulnerability by using the tilde (~) character. ▼Advertisements Description Microsoft IIS contains a flaw that may lead to an unauthorized information...
View ArticleVeil Framework – Antivirus Evasion Framework
The Veil-Framework is a collection of red team security tools that implement various attack methods focused on antivirus evasion and evading detection. Antivirus ‘solutions’ don’t often catch the bad...
View ArticleClik here to view.
Sonar — Cross Platform DNS Recon Tool
Sonar is a reconnaissance tool for enumerating sub domains. It was modeled after Knock and DNSReconthough explicitly not written in Python to avoid the limitations of threading and dependencies. Sonar...
View ArticleClik here to view.
FIRMADYNE — Linux Embedded Firmware Dynamic Analysis
FIRMADYNE is an automated and scalable system for performing emulation and dynamic analysis of Linux-based embedded firmware. It includes the following components: modified kernels (MIPS: v2.6.32, ARM:...
View ArticleClik here to view.
twtxt — Decentralised Microblogging Service
twtxt is a decentralised, minimalist microblogging service for hackers. You want to get some thoughts out on the internet in a convenient and slick way while also following the gibberish of others?...
View ArticleFirmwalker — Simple Bash Script for searching the extracted or mounted...
Definition: A FirmWalker is a simple bash script. FirmWalker is used for searching the extracted or mounted firmware file system. The extracted firmware file system includes the things of interest...
View ArticleClik here to view.
Faraday 1.0.17 – Collaborative Penetration Test and Vulnerability Management...
Faraday introduces a new concept – IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distribution, indexation and analysis of the generated data during the...
View ArticleWireshark New Version 2.0.2 Available With Resolved Major Security Issues
There is an official announcement from the Wireshark Company that here is another major version of Wireshark available now. The new version is known as Wireshark 2.0.2. As you all aware that the...
View ArticleClik here to view.
SFTPfuzzer – Simple FTP Fuzzer
SFTPfuzzer (Simple FTP Fuzzer) is a very simple software written in Python 2.7 (by 0x8b30cc), that allows you to easily fuzz username and password field in an FTP Server, looking for a buffer overflow...
View ArticleClik here to view.
Libcrafter — High Level Network Packet Sniffing
C++ High Level Network Packet Sniffing and Crafting Library Libcrafter is a high level library for C++ designed to create and decode network packets. It is able to craft or decode packets of most...
View ArticleClik here to view.
htcap — Recursive Web Application Scanner
Recursive Web Application Scanner htcap is a web application scanner able to crawl single page application (SPA) in a recursive manner by intercepting ajax calls and DOM changes. Htcap is not just...
View ArticleLumify — Open Source Big Data Analytics and Visualization
Lumify is an open source project to create a big data fusion, analysis, and visualization platform designed for anyone to use. Its intuitive web-based interface helps users discover connections and...
View ArticleClik here to view.
Fenrir — Bash IOC Scanner
Fenrir is a simple IOC scanner bash script. It scans Linux/Unix/OSX systems for the following Indicators of Compromise (IOCs): Hashes MD5, SHA1 and SHA256 (using md5sum, sha1sum, sha -a 256) File Names...
View Article