NTLMRawUnhide.py is a Python3 script designed to parse network packet capture files and extract NTLMv2 hashes in a crackable format....
Here at Rapid7, we’ve been quite busy continuously improving, expanding functionality, and testing new features for feedback with our customers...
Malware Source Code Collection!!! DISCLAIMER !!! We do not take any responsibility for any damage done by the code in...
PwnDoc is a pentest reporting application making it simple and easy to write your findings and generate a customizable Docx...
Each year, Rapid7 penetration testers complete hundreds of internally and externally based penetration testing service engagements. This post is part...
The HUD is new interface that provides the functionality of ZAP directly in the browser. Learn more: Blog: Hacking with...
This is the code base for the service running on: https://patchchecker.com. In short, PatchChecker is a web application (running on...
Today, we're announcing a coordinated vulnerability disclosure publication with our longtime mobile hacker friend, Rafay Baloch. If you'd like to...
Apk-medit is a memory search and patch tool for debuggable apk without root & ndk. It was created for mobile...
SSJ is s silly little script that relies on docker installed on your everyday Linux distribution (Ubuntu, Debian, etc.) and...
Windows Server 2008 and 2008 R2 reached their end of life (EOL) on Jan. 14, 2020. What does that mean...
Welcome to the NICER Protocol Deep Dive blog series! When we started researching what all was out on the internet...
RmiTaste allows security professionals to detect, enumerate, interact and attack RMI services by calling remote methods with gadgets from ysoserial....
Takeover AWS ips and have a working POC for Subdomain Takeover. Idea is simple Get subdomains. Do reverse lookups to...
How it works?1- Build server 2- Connect with admin and client to server 3- To collect information, send the request...
TheCl0n3r will allow you to download and manage your git repositories. PrefaceAbout 90% of the penetration testing tools used in...
Project Eagle is a plugin based vulnerabilities scanner with threading support used for detection of low-hanging bugs on mass scale...
hack-browser-data is an open-source tool that could help you decrypt data (passwords / bookmarks / cookies / history) from the...
Mail Swipe is a python script that helps you to create temporary email addresses and receive emails at that address....
Zracker is a Zip File Password BruteForcing Utility Tool based on CPU-Power. Yet available for Linux only ... Supports WordList...
Let’s talk about false positives. They’re frustrating and faulty, but also about as certain as death and taxes for anyone...
Rapid7 detection and response customers have access to, and insights from, our experts and research driving the industry forward. This...
mikrot8over: Fast exploitation tool for Mikrotik RouterOS up to 6.38.4 This is reworked original Mikrotik Exploit. Added Python 2 compatibility...
"MEDUZA" ("медуза") means "jellyfish" in Ukrainian What is MEDUZA?It's a Frida-based tool, my replacement for SSLKillSwitch. I created it for...
