Clik here to view.
The Penetration Testers Framework (PTF) v1.10 codename: Tool Time.
Changelog ptf v1.10: * allow use modules within other modules – no longer need to use back * add pipal (spoonman) * fix credcrack (bustedsec) * add spoopy-ng (bustedsec) * add nessus-parser (spoonman)...
View ArticleClik here to view.
Nishang v0.7.0 – PowerShell for penetration testing and offensive security.
Changelog Nishang v0.7.0: – Added Invoke-SSIDExfil to the Gather directory. – Gupt-Backdoor can now receive commands from SSID names on targets having PowerShellv3 and above. – Added ConverTo-ROT13 to...
View ArticleClik here to view.
Domain Password Audit Tools (DPAT).
dpat is a python script that will generate password use statistics from password hashes dumped from a domain controller and a password crack file such as oclHashcat.pot generated from the oclHashcat...
View ArticleClik here to view.
Mobile Security Framework – MobSF v0.9.3 Beta.
Changelog MobSF v0.9.3-Beta: * Features or Enhancements ++ Added Docker File ++ Clipboard Monitor for Android Dynamic Analysis ++ Windows APPX Static Analysis Support ++ Added Support for Kali Linux ++...
View ArticleClik here to view.
idb v2.9.1 – iOS App Security Assessment Tool and research.
Roadmap and Changelog idb v2.9.1: + adding pry-byebug as build dep + liv; version bump idb v2.9.0: + excluding ABC cop for lib/gui directory idb start console idb is a tool to simplify some common...
View ArticleClik here to view.
Shellcode compiler – assembly and shellcode generator.
Shellcode Compiler is a program that compiles C/C++ style code into a small, position-independent and NULL-free shellcode for Windows. It is possible to call any Windows API function in a user-friendly...
View ArticleClik here to view.
WiFi-Pumpkin v0.8.3 – Framework for Rogue Wi-Fi Access Point Attack.
Changelog WiFi-Pumpkin v0.8.3: * added new design main tool * added new column VendorMac in man Table * added set sorted in all Tablewidget * added new plugins options and description * added more...
View ArticleClik here to view.
Datasploit updates – A tool to perform various OSINT techniques.
Latest changelog datasploit 26/11/2016: * File permissions update * code change for emailOsint * google cse api help added. old steps updated * Corrected points for google cse api generation datasploit...
View ArticleClik here to view.
hemingway is a simple and easy to use spear phishing helper.
hemingway is a tool was built to allow simpler campaigns of phishing. It does not try to resolve issues with SMTP relaying or reputation but rather to allow a penetration tester or red team member to...
View ArticleClik here to view.
PytheM – Penetration Testing Framework v0.5.7.
Latest Changelog PytheM v0.5.7-git: + Modules: pforensic – pcap analyzer v0.3 + core: fix sniffer.py + DHCP ACK Injection spoofing. pforensic PytheM is a Python penetration testing framework. ARPspoof...
View ArticleClik here to view.
ChromeBackdoor v3.0 – The Botnet Browser backdoor.
LEGAL DISCLAMER: The author does not hold any responsibility about the bad use of this script, remmember that attacking targets without prior concent its ilegal and punish by law, this script was build...
View ArticleClik here to view.
usploit v2.0-alpha – Framework penetration testing.
Changelog usploit VERSION 2.0-alpha: + rewritten uSploit + added new feature: you can now force to keep µSploit running when facing fatal error + changed bcolors module name to colors + fixed minor...
View ArticleClik here to view.
backdoor-apk v0.1.7 is a shell script that simplifies the process of adding a...
Changelog backdoor-apk v0.1.7 (2016-11-30): * Improvements ++ Automatic generation of Metasploit resource script to handle selected payload (credit to John Troony for the suggestion) * Bug Fixes ++...
View ArticleClik here to view.
nus is a tool for analyzing malware and test the security of networks.
nus is a tool for analyzing malware and test the security of networks. Dependencies: + Python 3.5.x nus framework Modules: + fake_sandbox: This module starts fake sandbox processes that some malware...
View ArticleClik here to view.
wpsik – wifi gathering information and pwn tools.
pwnsik is a simple tool (written in Python) that does information gathering using WPS information elements and pwn tools. The following information can be obtained using this method: * Device Name *...
View ArticleClik here to view.
user hunter v03b – user hunter using WinAPI calls only.
What is it: The (l)user hunter tool is a small program written in C/C++ that uses WinAPI calls only to: * Retrieves current configuration information for the specified server (via list of hosts or...
View ArticleClik here to view.
Droidsinia – mobile security platform tool.
DroidSinia is a CLIENT-SEVER platform for do attacks in second layer. The dinamic mobile interface (client) can control a Raspberry (server) to send params and that the server execute this request for...
View ArticleClik here to view.
mitmAP is A python script to create a fake AP and sniff data.
mitmAP is A python script to create a fake AP and sniff data. Changelog new in 2.0, 4/12/2016: * SSLstrip2 for HSTS bypass * Image capture with Driftnet * TShark for command line .pcap capture mitmAP...
View ArticleClik here to view.
DKMC – Malicious payload evasion tool.
LEGAL DISCLAMER: The author does not hold any responsibility about the bad use of this script, remmember that attacking targets without prior concent its ilegal and punish by law, this script was build...
View ArticleClik here to view.
filebuster – An extremely fast and flexible web fuzzer.
Why another fuzzer? My main motivation was to write a script that would allow me to fuzz a website based on a dictionary but that allowed me to filter words on that dictionary based on regex patterns....
View Article