AgentSmith-HIDS – Open Source Host-based Intrusion Detection System (HIDS)
Technically, AgentSmith-HIDS is not a Host-based Intrusion Detection System (HIDS) due to lack of rule engine and detection function. However,...
tools
Hershell – Multiplatform Reverse Shell Generator
Simple TCP reverse shell written in Go.It uses TLS to secure the communications, and provide a certificate public key fingerprint...
Check-LocalAdminHash – A PowerShell Tool That Attempts To Authenticate To Multiple Hosts Over Either WMI Or SMB Using A Password Hash To Determine If The Provided Credential Is A Local Administrator
Check-LocalAdminHash is a PowerShell tool that attempts to authenticate to multiple hosts over either WMI or SMB using a password...
SharpStat – C# Utility That Uses WMI To Run “cmd.exe /c netstat -n”, Save The Output To A File, Then Use SMB To Read And Delete The File Remotely
C# utility that uses WMI to run "cmd.exe /c netstat -n", save the output to a file, then use SMB...
KsDumper – Dumping Processes Using The Power Of Kernel Space
I always had an interest in reverse engineering. A few days ago I wanted to look at some game internals...
Discover the New BMC Remedy ITSM Plugin for InsightConnect
In any IT environment, documentation of work performed by IT is critical and necessary to maintain order when providing resolutions...
YARASAFE – Automatic Binary Function Similarity Checks with Yara
SAFE is a tool developed to create Binary Functions Embedding developed by Massarelli L., Di Luna G.A., Petroni F., Querzoni...
AlertResponder – Automatic Security Alert Response Framework By AWS Serverless Application Model
AlertResponder is a serverless framework for automatic response of security alert.OverviewAlertResponder receives an alert that is event of interest from...
Vulnerability Management in the Cloud: Addressing the AWS Shared Responsibility Model
If you’re operating in the cloud, you may be familiar with the shared responsibility model. We often hear people say...
TAS – A Tiny Framework For Easily Manipulate The Tty And Create Fake Binaries
A tiny framework for easily manipulate the tty and create fake binaries.How it works?The framework has three main functions, tas_execv,...
Corsy v1.0 – CORS Misconfiguration Scanner
Corsy is a lightweight program that scans for all known misconfigurations in CORS implementations.RequirementsCorsy only works with Python 3 and...
Better Together: How to Collaborate to Drive Vulnerability Remediation Among Security, IT, and DevOps Teams
If you feel anxious about the amount of time it takes your organization to remediate vulnerabilities or find yourself spending...
TeleGram-Scraper – Telegram Group Scraper Tool (Fetch All Information About Group Members)
Telegram Group Scraper Tool. Fetch All Information About Group Members• How To Install & Setup API ( Termux )• API...
Grouper2 – Find Vulnerabilities In AD Group Policy
What is it for?Grouper2 is a tool for pentesters to help find security-related misconfigurations in Active Directory Group Policy.It might...
Gophish – Open-Source Phishing Toolkit
Gophish is an open-source phishing toolkit designed for businesses and penetration testers. It provides the ability to quickly and easily...
Aaia – AWS Identity And Access Management Visualizer And Anomaly Finder
Aaia (pronounced as shown here ) helps in visualizing AWS IAM and Organizations in a graph format with help of...
Scallion – GPU-based Onion Addresses Hash Generator
Scallion lets you create vanity GPG keys and .onion addresses (for Tor's hidden services) using OpenCL.Scallion runs on Mono (tested...
Bluewall – A Firewall Framework Designed For Offensive And Defensive Cyber Professionals
Bluewall is a firewall framework designed for offensive and defensive cyber professionals. This framework allows Cybersecurity professionals to quickly setup...
AntiCheat-Testing-Framework – Framework To Test Any Anti-Cheat
Framework to test any Anti-Cheat on the market. This can be used as Template or Code Base to test any...
Gowitness – A Golang, Web Screenshot Utility Using Chrome Headless
gowitness is a website screenshot utility written in Golang, that uses Chrome Headless to generate screenshots of web interfaces using...
Active Exploitation of Citrix NetScaler (CVE-2019-19781): What You Need to Know
On Dec. 17, 2019, a directory traversal vulnerability was announced in the Citrix Application Discovery Controller and Citrix Gateway, which...
Lsassy – Extract Credentials From Lsass Remotely
Python library to remotely extract credentials. This blog post explains how it works.You can check the wikiThis library uses impacket...
LOLBITS – C# Reverse Shell Using Background Intelligent Transfer Service (BITS) As Communication Protocol
LOLBITS is a C# reverse shell that uses Microsoft's Background Intelligent Transfer Service (BITS) to communicate with the Command and...
Windows CryptoAPI Spoofing Vulnerability (CVE-2020-0601): What You Need to Know
What is the CryptoAPI Spoofing Vulnerability? Who is impacted?A flaw (CVE-2020-0601) has recently been found in the way the Microsoft...
