Clik here to view.
Magic Unicorn Attack Vector v2.4.
Changelog unicorn v2.4 : * added better handling if msf or shellcode didn’t get formatted properly * added a new technique for obfsucation that should not get picked up anymore and removes the need for...
View ArticleClik here to view.
smith – a very quick and very dirty client/server tool for testing firewall.
smith is a A client/server style agent meant for testing connectivity to and from a machine on a network, with Protocol support TCP/IP and UDP. two function: + Initiate a port-specific ping against a...
View ArticleClik here to view.
HERCULES v3.0.5 is a customizable payload generator that can bypass antivirus...
Changelog HERCULES v3.0.5: + Setup.go + Golang Version + Changed entire setup model + Final fixes on new install mechanism Hercules v3.0.5 HERCULES is a customizable payload generator that can bypass...
View ArticleClik here to view.
wpscan v3 beta – is a black box WordPress vulnerability scanner.
Changelog wpscan v3 Beta Released 2017-1-27: * All Prerequisites Changes: + Ruby >= 2.3.3 + Curl >= 7.21 – Recommended: latest – FYI the 7.29 has a segfault + RubyGems – Recommended: latest...
View ArticleClik here to view.
TheFatRat v1.8 – Backdoor Creator For Remote Access.
Changelog TheFatRat v1.8 codename;sparta : – add file pumper in TFR – Backdoor with c program for meterpreter reverse_tcp – Metasploit staging protocol ( c program ) – add new features andd update...
View ArticleClik here to view.
socketfuzz – Simple socket fuzzer.
socketfuzz is a python script for create a growing buffer to send to the service using: * Maximum size buffer 2000 * a single Alphabetic character to be used as the character to fill the buffer with –...
View ArticleClik here to view.
PenTestKit – Useful tools for Penetration Testing.
PenTestKit is a python script for Penetration Testing. Requirements + Tested on Debian 8.x + Python 2.x + termcolor + requests Contents * secure-headers-checker.py – Test OWASP HTTP Secure Headers. *...
View ArticleClik here to view.
Insanity-Framework ~ payload generator and remote control machines.
With the dynamics of persuasion that prove effective in a pentest, several painstaking means of making a payload has emerged, Insanity Framework provides speed and effectiveness in a single tool to...
View ArticleClik here to view.
bambomb.py – BAM file fuzzer.
bambomb.py is a tool allows you to make BAM files which may or may not have unexpected conequences for programs that do not handle gzipped data properly. Was used recently to find a DoS bug in...
View ArticleClik here to view.
Bash Kit – Multitool : Bash script for system enumeration, vulnerability...
Bash Kit – Multitool aims to be a comprehensive assistant for operations and utilities related to system enumeration, vulnerability identification, exploitation and privilege escalation. with two main...
View ArticleClik here to view.
PRET – Printer Exploitation Toolkit.
The Printer Exploitation Toolkit (PRET) is a Python tool developed at the University of Bochum to automate most attacks presented in this wiki. It connects to a printing device via network or USB and...
View ArticleClik here to view.
Net Zapper is a vulnerability assessment and password cracking tool.
Net-Zapper is a vulnerability assessment and brute force password cracking tool written in python v2.7. Net-Zapper can be used for host discovery, ports scanning, os detection and brute force password...
View ArticleClik here to view.
Netzob v1.0 – Inferring Communications Protocols.
Netzob is an open source tool for reverse engineering, traffic generation and fuzzing of communication protocols. It can be used to infer the message format and the state machine of a protocol through...
View ArticleClik here to view.
Sipvicious v0.2.8 – Tools for auditing SIP based VoIP systems.
Latest change SIPVicious v2.8 4/1/2017: + ADDED Setuptools and pip Compatibility + Fixed metadata + setup.py: Update setup.py SIPVicious suite is a set of tools that can be used to audit SIP based VoIP...
View ArticleClik here to view.
shootback – a reverse TCP tunnel let you access target behind NAT or firewall.
Shootback is a reverse TCP tunnel let you access target behind NAT or firewall Reverse TCP tunnel, so that after the NAT or firewall network machines can be accessed by external networks. Consumes less...
View ArticleClik here to view.
iis Short name scanner v2.3.9 – scanners for IIS short filename disclosure...
Changelog IIS-ShortName-Scanner v2.3.9: + Server Side Request Forgery) +-+ added a new option called “useProvidedURLWithoutChange”. IIS Short Name Scanner v2.3.9 Microsoft IIS contains a flaw that may...
View ArticleClik here to view.
wild horde is a useful tool for investigate bugs and to find out...
DISCLAIMER: This code has been posted for information and educational purposes. The execution of a Denial Of Service (DOS) attack in systems and services without the owner’s authorisation is illegal....
View ArticleClik here to view.
venom v1.0.13 Codename: the beast – metasploit Shellcode generator/compiller.
[ DISCLAMER ] The author does not hold any responsibility for the bad use of this tool, remember that attacking targets without prior consent is illegal and punished by law. changelog venom v1.0.13 –...
View ArticleClik here to view.
numberGenerator – a python script for Generates Valid Phone Numbers to...
numberGenerator is a python Script for Generates Valid Phone Numbers to PenTest WiFi Access Points. Dependencies: – Python 3.x – Git & Internet Access – All Linux/Unix Operating System/OS Support....
View ArticleClik here to view.
basicRAT – python remote access trojan.
Disclaimer: This RAT is for research purposes only, and should only be used on authorized systems. Accessing a computer system or network without authorization or explicit permission is illegal. This...
View Article