0x0mar

557 Flips | 1 Magazine | 5 Followers | @0x0mar |

FakeNet-NG – Next Generation Dynamic Network Analysis Tool.

<b>FakeNet-NG</b> is a next generation dynamic network analysis tool for malware analysts and penetration testers. It is open source and designed for the …

Florid – a ctf active scanner.

<b>Florid</b> is an python scripting for ctf active scanner. <b><br>Dependencies:</b><br>+ Pyhon 2.7.x<br>+ All Operating System SupportFlorid – an active scanner.<b>Notes:</b><br>– After …

shellcoder – Create shellcode from executable or assembly code.

<b>shellcoder</b> is a perl application which creates c source shellcodes starting from assembly sources or executables, it can create both windows and …

DBShield – Database firewall.

<b>DBShield</b> a Protects your data by inspecting incoming queries from your application server and rejecting abnormal ones. <b><br>Databases Support:</b><br>+ DB2<br>+ …

WPForce – WordPress Attack Suite.

<b>WPForce</b> is a suite of WordPress Attack tools. Currently this contains 2 modules – WPForce, which brute forces logins via the API, and Yertle, which …

malgazer – A malware analysis library.

<b>Malgazer</b> is python2 script for calculates the entropy of a file and malware analysis library. <b><br>Dependencies:</b><br>+ Python 2.7.x<br>+ Python Module:<br>+-+ …

ccsiege – Security audit utility for PAN candidate generation.

<b>ccsiege</b> is provided to the community to help defend online merchant infrastructure. Please do not abuse it. <b><br>Notes:</b><br>The quality of the results are …

DHCPig initiates an advanced DHCP exhaustion attack.

<b>DISCLAIMER:</b><i>All information and software available on this site are for educational purposes only. The author is no way responsible for any misuse of</i> …

break fast serial ~ A poc that demonstrates asynchronous scanning for Java deserialization bugs.

<b>Break Fast Serial</b> is a A proof of concept that demonstrates asynchronous scanning of deserialization bugs. It repackages well known exploits with a …

netattack – Python script to scan and attack wireless networks.

<b>DISCLAIMER AND LICENSE:</b> <i><br>THE OWNER AND PRODUCER OF THIS SOFTWARE IS NOT LIABLE FOR ANY DAMAGE OR ANY LAW VIOLATIONS CAUSED BY THE SOFTWARE.</i>The</b> …

logdissect is a tool for gaining insight into syslog files.

<b>logdissect</b> is a tool for gaining insight into syslog files. It can merge multiple log files together and sort by timestamp, and filter the results by …

giant_backdoor – windows backdoor diagnostic tool.

<b>giant_backdoor</b> is a tool to Detect and uninstall a sticky keys or utility manager backdoor, which allows unauthorized access to a system level …

Seth – Perform a MitM attack & extract clear text credentials from RDP connections.

<b>Disclaimer:</b> <i><br>Use at your own risk. Do not use without full consent of everyone involved. For educational purposes only</i>.<b>Seth</b> is a tool written in Python …

pwdlyser – Password analysis & reporting tool.

The ‘<b>pwdlyser</b>‘ tool is a Python-based CLI script that automates the arduous process of manually reviewing cracked passwords during password audits …

BAF – Blind Attacking Framework.

<b>what is BAF ?</b><br>– it’s a framework written in python [2.7] that is being made specially for blind attacking , ie : attacking random targets with common …

EaST v2.0 – Exploits and Security Tools Framework.

<b>Changelog EaST v2.0:</b><br>1) Changed core messages communication<br>2) API available from every module<br>3) REQUEST/RESPONSE system via websockets for GUI<br>4) New …

SQL Nightmare – SQL SERVER Exploitation tools.

<b>Disclaimer:</b><br>+ This software was written for educational purposes only.<br>+ Don’t use it on any site without prior permission of site owner.<b>SQL Nightmare</b> …

passivedns – A tool to collect DNS records passively to aid Network Security Monitoring (NSM) & general digital forensics.

<b>PassiveDNS</b> is A tool to collect DNS records passively to aid Incident handling, Network Security Monitoring (NSM) and general digital</b> …

Tabi – BGP Hijacking Detection Tool.

<b>TaBi is a framework that ease the detection of BGP IP prefixes conflicts</b>, and their classification into BGP hijacking events. The term prefix …

CrabStick – A tool for automatic local and remote file inclusion exploits.

<b>CrabStick</b> is an Automatic remote/local file inclusion vulnerablity analysis and exploit tool . <b><br>Dependencies:</b><br>+ Python 3.x<br>+ BeutifulSoup4 & …

plinplanplum – a framework for auditing tools Cable modem.

<b>plinplanplum</b> is python script framework for auditing tools Cable modem with test method snmp, http or all. <b><br>Support Cable Modem:</b><br>+ CABLEMODEM: MODEL …

Theseus – a tool to pwn web sessions.

<b>Theseus</b> is a python2 script for Control A Victims Web Sessions. <b><br>Dependencies:</b><br>+ Python 2.7.x<br>+ All Linux Operating System SupportTheseus<b>TODO:</b><br>– Configure …

SpiderFoot v2.9.0 – is an open source intelligence automation tool.

<b>Changelog spiderfoot v2.9.0 New Modules / Data Sources:</b> <b><br>+ This release introduces five new modules and an update to sfp_sharedip to include an</b> …

shARP – a tool to detect any ARP spoofing/MiTM incident.

<b>shARP</b> is an anti-ARP-spoofing application software and uses active scanning method to detect any ARP-spoofing incidents.<b>Description:</b><br>ARP spoofing …

Mercure is a tool for security managers who want to train their colleague to phishing.

<b>Mercure</b> is a tool for security managers who want to teach their colleagues about phishing. <b><br>What Mercure can do:</b><br>* Create email templates<br>* Create target …

inquisitor – OSINT Gathering Tool for Companies and Organizations.

<b>Inquisitor</b> is a simple for gathering information on companies and organizations through the use of Open Source Intelligence (OSINT) sources.<b>The key</b> …

PoshCiphers – Powershell module for enciphering & deciphering common Caesar (Rotation) cipher.

<b>PoshCiphers</b> is an PowerShell module for enciphering and deciphering common Caesar (Rotation) and Vigenere ciphers. The module will also brute force …

simplify – Generic Android Deobfuscator.

<b>Simplify</b> virtually executes an app to understand its behavior and then tries to optimize the code so that it behaves identically but is easier for a …

Cansina is a Web Content Discovery Application.

<b>Latest Changelog 13/3/2017:</b><br>+ added reaped entries from robots.txt<br>+ New option: -R autoscan robots.txt and use it as a payload<br>+ added vscode …

HatCloud – cloudflare bypass.

<b>HatCloud</b> build in Ruby. It makes bypass in CloudFlare for discover real IP. This can be useful if you need test your server and website. Testing your …