Clik here to view.
pyJenkinsToolkit is a jenkins penetration test Toolkit.
pyJenkinsToolkit is a A Jenkins Pentest/Security Toolkit written in Python with The main function Specifies the Toolkit Mode Info: Gather Infos of Jenkins Host via Script Console Shell: Deloys a bind...
View ArticleClik here to view.
urlfuzzing – Advance URL Fuzzing & Whois Domain.
urlfuzzing is a tool will allow you to catagories all the common servers, cms and extensions of domains that you want to check over. to discover hidden folders and backups that might contain valuable...
View ArticleClik here to view.
Weeman v1.7.1 – HTTP Server for phishing.
Changelog weeman v1.7 to 1.7.1: * Version 1.7.1 (Final): + Framework removed. + bs4 updated. + this is the last version of weeman. * Version 1.7 (Scratch) 25-03-2016: + Added profiles + Added module...
View ArticleClik here to view.
Fluxion v0.23 (rev.108) is the future of MITM WPA attacks.
Changelog fluxion v0.23 (rev.108): + fluxion: fix for multiple handshakes with aircrack-ng. + make arch installer executable. + Fix Menu + Delete unnecessary stuff FLUX 0.23 (rev. 108) Fluxion is a...
View ArticleClik here to view.
ps-inject is a Inject shellcode on linux pid.
ps-inject is a Inject shellcode on linux pid. supported architectures: + x86_64 + x86 + arm ps-inject System & Dependencies: + All Linux OS support. + gcc compiler + git Latest change 27/12/206: +...
View ArticleClik here to view.
The Social-Engineer Toolkit (SET) v7.4.4 Codename: ‘recharged’.
Changelog Social-Engineering-Toolkit v7.4.4: * fixed /usr/bin/msfconsole not showing appropriate metasploit path * fixed using hostname in powershell injector (when using http/https) payloads * added...
View ArticleClik here to view.
Hakku Framework penetration test tools.
Hakku is simple framework that has been made for penetration testing tools. Hakku framework offers simple structure, basic CLI, and useful features for penetration testing tools developing. Hakku is on...
View ArticleClik here to view.
commix v1.6 – command injection exploiters.
Changelog commix v1.6: + Fixed: Improvement regarding json-formated POST data, where whitespace before (and/or after) the “:” exists. + Fixed: Minor fix regarding empty value(s) in provided...
View ArticleClik here to view.
format string attack payload generator.
LEGAL DISCLAMER The author does not hold any responsibility about the bad use of this script, remember that attacking targets without prior concent its ilegal and punish by law, this script was build...
View ArticleClik here to view.
Adhrit is an open source Android APK ripping tool.
Adhrit is an open source Android APK ripping tool that does a basic recon on the provided APK file and extracts important imformation. Pre-requisites : + Linux Machine + Java JDK + PYTHON 2.7.x Adhrit...
View ArticleClik here to view.
Copernicus – Osint tool get info about peoples.
LEGAL DISCLAMER The author does not hold any responsibility about the bad use of this script, remember that attacking targets without prior concent its ilegal and punish by law, this script was build...
View ArticleClik here to view.
Quack – Automatic Ducky Payload Generator.
Introduction Quack a Rubber ducky is a great suite for penetration testing. However, I tend to find it a hassle to create a payload, and created this project in order to automate that process. Quack...
View Articlewifi_jacker – script for steals WPA keys.
LEGAL DISCLAMER The author does not hold any responsibility about the bad use of this script, remmember that attacking targets without prior concent its ilegal and punish by law, this script was build...
View ArticleClik here to view.
sqlmap v1.1 – Automatic SQL injection and database takeover tool.
Changelog sqlmap v1.1.1.3: + Adding new option –param-exclude on private request + Plugin: Minor refactoring. + extra: Minor update. + New version preparation. Bug Fixes: + Unhandled exception. #2328...
View ArticleClik here to view.
YAWAST v0.5.0.beta2 – The YAWAST Antecedent Web Application Security Toolkit
Changelog yawast v0.5.0 – In Development: + #75 – Use internal SSL scanner for non-standard ports + #84 – Improve the display of ct_precert_scts + #86 – Add check for Tomcat Manager & common...
View ArticleClik here to view.
Operative – The Fingerprint Framework.
LEGAL DISCLAIMER: This is only for testing purposes and can only be used where strict consent has been given. Do not use this for illegal purposes, period. operative is a framework based on fingerprint...
View ArticleClik here to view.
wifijammer – Continuously jam all wifi clients/router.
Latest changelog 4/1/2016: + allow to specify multiple target accesspoints (by bssid or essid) + added handling for multiple –accesspoint filters --accesspoint now takes essid or bssid track bssid’s...
View ArticleClik here to view.
hexinject v1.6 – Hexadecimal and raw packet injector and sniffer.
HexInject is a very versatile packet injector and sniffer, that provide a command-line framework for raw network access. It’s designed to work together with others command-line utilities, and for this...
View ArticleClik here to view.
FeatherDuster is a tool for brushing away magical crypto fairy dust.
FeatherDuster is a tool for breaking crypto which tries to make the process of identifying and exploiting weak cryptosystems as easy as possible. Cryptanalib is the moving parts behind FeatherDuster,...
View ArticleClik here to view.
dork-cli ~ Command line Google dork tool.
dork-cli performs searches against a Google custom search engine and returns a list of all the unique page results it finds, optionally filtered by a set of dynamic page extensions. Any number of...
View Article