CertWatcher – A Tool For Capture And Tracking Certificate Transparency Logs, Using YAML Templates Based DSL
CertWatcher is a tool for capture and tracking certificate transparency logs, using YAML templates. The tool helps to detect and...
tools
Kali Linux 2023.1 – Penetration Testing and Ethical Hacking Linux Distribution
Time for another Kali Linux release! – Kali Linux 2023.1. This release has various impressive updates. he changelog summary since...
CertVerify – A Scanner That Files With Compromised Or Untrusted Code Signing Certificates
The CertVerify is a tool designed to detect executable files (exe, dll, sys) that have been signed with untrusted or...
Graphicator – A GraphQL Enumeration And Extraction Tool
Graphicator is a GraphQL "scraper" / extractor. The tool iterates over the introspection document returned by the targeted GraphQL endpoint,...
MacOSThreatTrack – Bash Tool Used For Proactive Detection Of Malicious Activity On macOS Systems
The tool is being tested in the beta phase, and it only gathers MacOS system information at this time. The...
X-force – IBM Security Utilitary Library In Python. Search And Query All Sources: Threat_Activities And Groups, Malware_Analysis, Industries
IBM Security X-FORCE Exchange library in Python 3. Search: threat_activities, threat_groups, malware_analysis, collector and industries.Install pip3 install XForce Use Using you API_KEY...
APKHunt – Comprehensive Static Code Analysis Tool For Android Apps That Is Based On The OWASP MASVS Framework
APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although...
Thunderstorm – Modular Framework To Exploit UPS Devices
Thunderstorm is a modular framework to exploit UPS devices. For now, only the CS-141 and NetMan 204 exploits will be...
DataSurgeon – Quickly Extracts IP’s, Email Addresses, Hashes, Files, Credit Cards, Social Secuirty Numbers And More From Text
DataSurgeon (ds) is a versatile tool designed for incident response, penetration testing, and CTF challenges. It allows for the extraction...
Cortex-XDR-Config-Extractor – Cortex XDR Config Extractor
This tool is meant to be used during Red Team Assessments and to audit the XDR Settings. With this tool...
IpGeo – Tool To Extract IP Addresses From Captured Network Traffic File
IpGeo is a python tool to extract IP addresses from captured network traffic file (pcap/pcapng) and generate csv report containing...
C-99-Shell-PHP7 – PHP 7 And Safe-Build Update Of The Popular C-99 Variant Of PHP Shell
C-99-Shell-PHP7 PHP 7 and safe-build Update of the popular C-99 variant of PHP Shell. c-99-shell.php v.2.0 (PHP...
Heap_Detective – The Simple Way To Detect Heap Memory Pitfalls In C++ And C
This tool uses the taint analysis technique for static analysis and aims to identify points of heap memory usage vulnerabilities...
Aws-Security-Assessment-Solution – An AWS Tool To Help You Create A Point In Time Assessment Of Your AWS Account Using Prowler And Scout As Well As Optional AWS Developed Ransomware Checks
Self-Service Security Assessment too l Cybersecurity remains a very important topic and point of concern for many CIOs, CISOs, and...
Suborner – The Invisible Account Forger
What's this? A simple program to create a Windows account you will only know about :) Create invisible local accounts...
Monomorph – MD5-Monomorphic Shellcode Packer – All Payloads Have The Same MD5 Hash
════════════════════════════════════╦═══ ╔═╦═╗ ╔═╗ ╔═╗ ╔═╗ ╔═╦═╗ ╔═╗ ╔══╔═╗ ╠═╗ ═╩ ╩ ╩═╚═╝═╩ ╩═╚═╝═╩ ╩ ╩═╚═╝═╩ ╠═╝═╩ ╩═ ════════════════════════════════╩═══════ By Retr0id...
Winevt_Logs_Analysis – Searching .Evtx Logs For Remote Connections
Simple script for the purpose of finding remote connections to Windows machine and ideally some public IPs. It checks for...
EAST – Extensible Azure Security Tool – Documentation
Extensible Azure Security Tool (Later referred as E.A.S.T) is tool for assessing Azure and to some extent Azure AD security...
Sandfly-Entropyscan – Tool To Detect Packed Or Encrypt ed Binaries Related To Malware, Finds Malicious Files And Linux Processes And Gives Output With Cryptographic Hashes
What is sandfly-entropyscan? sandfly-entropyscan is a utility to quickly scan files or running processes and report on their entropy (measure...
DFShell – The Best Forwarded Shell
██████╗ ███████╗███████╗██╗ ██╗███████╗██╗ ██╗ ██╔══██╗██╔════╝██╔════╝██║ ██║███╔═══╝██║ ██║ ██║ ██║█████╗ ███████╗███████║█████╗ ██║ ██║ ██║ ██║██╔══╝ ╚════██║██╔══██║██╔══╝ ██║ ██║ ██████╔╝██║ ███████║██║ ██║███████╗████████╗███████╗╚═════╝...
SSTImap – Automatic SSTI Detection Tool With Interactive Interface
SSTImap is a penetration testing software that can check websites for Code Injection and Server-Side Template Injection vulnerabilities and...
BlueHound – Tool That Helps Blue Teams Pinpoint The Security Issues That Actually Matter
BlueHound is an open-source tool that helps blue teams pinpoint the security issues that actually matter. By combining information about...
Yaralyzer – Visually Inspect And Force Decode YARA And Regex Matches Found In Both Binary And Text Data, With Colors
Visually inspect all of the regex matches (and their sexier, more cloak and dagger cousins, the YARA matches) found in...
GUAC – Aggregates Software Security Metadata Into A High Fidelity Graph Database
Note: GUAC is under active development - if you are interested in contributing, please look at contributor guide and the...
