Clik here to view.
Stormspotter - Azure Red Team tool for graphing Azure and Azure Active...
Stormspotter creates an “attack graph” of the resources in an Azure subscription. It enables red teams and pentesters to visualize the attack surface and pivot opportunities within a tenant, and...
View ArticleClik here to view.
Pi Sniffer is a Wi-Fi sniffer built on the Raspberry Pi Zero W
Pi Sniffer is a Wi-Fi sniffer built on the Raspberry Pi Zero W. While there are many excellent sniffing platforms out there, Pi Sniffer is unique for its small size, real-time display of captured data,...
View ArticleClik here to view.
Shotlooter - a recon tool that finds sensitive data inside the screenshots...
Shotlooter tool is developed to find sensitive data inside the screenshots which are uploaded to https://prnt.sc/ (via the LightShot software) by applying OCR and image processing methods....
View ArticleClik here to view.
Ligolo: Reverse Tunneling made easy for pentesters, by pentesters
Ligolo is a simple and lightweight tool for establishing SOCKS5 or TCP tunnels from a reverse connection in complete safety (TLS certificate with elliptical curve). It is comparable to Meterpreter with...
View ArticleClik here to view.
Voltron - an extensible debugger UI toolkit written in Python
Voltron is an extensible debugger UI toolkit written in Python. It aims to improve the user experience of various debuggers (LLDB, GDB, VDB and WinDbg) by enabling the attachment of utility views that...
View ArticleClik here to view.
PhoneInfoga - Advanced information gathering & OSINT framework for phone numbers
PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier, and line...
View ArticleClik here to view.
Pivotnacci - A tool to make socks connections through HTTP agents
Pivot into the internal network by deploying HTTP agents. Pivotnacci allows you to create a socks server which communicates with HTTP agents. The architecture looks like the following: This tool was...
View ArticleADCollector - A lightweight tool to quickly extract valuable information from...
ADCollector is a lightweight tool that enumerates the Active Directory environment to identify possible attack vectors. It will give you a basic understanding of the configuration/deployment of the...
View ArticleList of Free Python Resources [Updated June 2020]
Python is considered as a beginner-friendly programming language and its community provides many free resources for beginners and more advanced users. Our team had gathered the most helpful free...
View ArticleClik here to view.
Enumy - Linux post exploitation privilege escalation enumeration
Enumy is an ultra-fast portable executable that you drop on target Linux machine during a pentest or CTF in the post-exploitation phase. Running enumy will enumerate the box for common security...
View ArticleAndroguard - Python tool to play with Android files
Androguard is a full python tool to play with Android files. It is designed to work with Python 3 only. DEX, ODEX APK Android’s binary XML Android resources Disassemble DEX/ODEX bytecodes Decompiler...
View ArticleFrance's COVID-19 contact tracing app is now tested by 15,000+ ethical hackers
Second step for France’s COVID-19 contact tracing app which goes on a public Bug Bounty programme. Paris – June, 3rd,2020 - YesWeHack, Europe’s Bug Bounty leader, announced the beginning of a public...
View ArticleSudomy - Subdomain Enumeration and Analysis Tool
Sudomy is a subdomain enumeration tool, created using a bash script, to analyze domains and collect subdomains in a fast and comprehensive way. Features For a recent time, Sudomy has these 13 features:...
View ArticleClik here to view.
Flash Framework - a high performance, open source web application framework...
Flash is a high performance, open-source web application framework. Flash web framework follows the MVT (Model-View-Template) architectural pattern or you can say MVC (Model-View-Controller) pattern...
View ArticleBypassing WAFs with WAFNinja [FREE COURSE CONTENT]
In this video from our Bypassing Web Application Firewall course your instructor, Thomas Sermpinis, shows how to install and use a popular WAFNinja tool. You can use it for automating web application...
View ArticleClik here to view.
Photon - Incredibly fast crawler designed for OSINT
Photon is a relatively fast crawler designed for automating OSINT (Open Source Intelligence) with a simple interface and tons of customization options. It’s written in Python. Photon essentially acts...
View ArticleClik here to view.
wslu - A collection of utilities for Windows 10 Linux Subsystems
wslu - is a collection of utilities for Windows 10 Linux Subsystem, such as retrieving Windows 10 environment variables or creating your favorite Linux GUI application shortcuts on Windows 10 Desktop....
View ArticleClik here to view.
pwncat - netcat on steroids with Firewall, IDS/IPS evasion, and its fully...
Pwncat is a sophisticated bind and reverses shell handler with many features as well as a drop-in replacement or compatible complement to netcat, ncat or socat. Motivation Ever accidentally hit Ctrl+c...
View ArticleDocker-OSX - Run Mac in a Docker container
Run Mac in a Docker container! Run near-native OSX-KVM in Docker! X11 Forwarding! Author: Sick.Codes https://sick.codes/ Credits: OSX-KVM project among many others:...
View ArticleClik here to view.
Git Scanner: A tool for targeting websites that have open .git repositories...
Git Scanner Framework is a tool can scan websites with open .git repositories for Bug Hunting/ Pentesting Purposes and can dump the content of the .git repositories from webservers that found from the...
View Article