convoC2 Command and Control infrastructure that allows Red Teamers to execute system commands on compromised hosts through Microsoft Teams. It infiltrates data into hidden span tags in Microsoft Teams messages and exfiltrates command outputs...
The post convoC2: execute system commands on compromised hosts through Microsoft Teams appeared first on Penetration Testing Tools.
checksec Checksec is a bash script to check the properties of executables (like PIE, RELRO, PaX, Canaries, ASLR, Fortify Source). It was originally written by Tobias Klein. The checksec tool can be used...
The post checksec: check the properties of executables appeared first on Penetration Testing Tools.
libgoblin libgoblin is a cross-platform trifecta of binary parsing and loading fun. It supports: An ELF32/64 parser, and raw C structs A 32/64-bit, zero-copy, endian aware, Mach-o parser, and raw C structs A PE32/PE32+...
The post goblin: cross-platform binary parsing crate, written in Rust appeared first on Penetration Testing Tools.
Kernel Callback Tables for Process Injection The Kernel Callback Table in the Process Environment Block (PEB) can be hijacked by attackers to redirect a process’s execution flow, enabling them to execute malicious payloads. This...
The post Kernel Callback Tables for Process Injection: perform process injection and hijack execution flow appeared first on Penetration Testing Tools.
Inveigh Inveigh is a cross-platform .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers. This repo contains the primary C# version as well as the legacy PowerShell version. Overview Inveigh conducts spoofing attacks and hash/credential captures...
The post Inveigh: .NET IPv4/IPv6 machine-in-the-middle tool appeared first on Penetration Testing Tools.
UEFI Firmware Parser The UEFI firmware parser is a simple module and set of scripts for parsing, extracting, and recreating UEFI firmware volumes. This includes parsing modules for BIOS, OptionROM, Intel ME and other...
The post UEFI Firmware Parser: Parse BIOS/Intel ME/UEFI firmware related structures appeared first on Penetration Testing Tools.
Cable Cable is a simple post-exploitation tool used for enumeration and further exploitation of Active Directory environments. This tool was primarily created to learn more about .NET offensive development in an Active Directory context,...
The post Cable: .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation appeared first on Penetration Testing Tools.
BOAST The BOAST Outpost for AppSec Testing BOAST is a server built to receive and report Out-of-Band Application Security Testing reactions. Some application security tests will only cause out-of-band reactions from the tested...
The post BOAST: The BOAST Outpost for AppSec Testing appeared first on Penetration Testing Tools.
Zeek Network Security Monitor Zeek is a powerful framework for network analysis and security monitoring. It is a powerful system that on top of the functionality it provides out of the box, also offers...
The post Zeek Network Security Monitor: powerful network analysis framework appeared first on Penetration Testing Tools.
Cloud Offensive Breach and Risk Assessment (COBRA) Tool Cloud Offensive Breach and Risk Assessment (COBRA) is an open-source tool designed to empower users to simulate attacks within multi-cloud environments, offering a comprehensive evaluation of...
The post COBRA: Cloud Offensive Breach and Risk Assessment Tool appeared first on Penetration Testing Tools.
Stratosphere Linux IPS This is the Linux version of the Stratosphere IPS, a behavioral-based intrusion detection and prevention system that uses machine learning algorithms to detect malicious behaviors. It is part of a larger...
The post StratosphereLinuxIPS: Stratosphere IPS for Linux appeared first on Penetration Testing Tools.
Slither, the Solidity source analyzer Slither is a Solidity static analysis framework written in Python 3. It runs a suite of vulnerability detectors, prints visual information about contract details, and provides an API to...
The post slither: Static Analyzer for Solidity appeared first on Penetration Testing Tools.
defender2yara defender2yara is a Python tool that converts Microsoft Defender Antivirus Signatures (VDM) into YARA rules. This tool facilitates the creation of custom YARA rules from the latest signature databases or manually provided .vdm...
The post defender2yara: Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules appeared first on Penetration Testing Tools.
Cacti Cacti is a complete network graphing solution designed to harness the power of RRDTool‘s data storage and graphing functionality. Cacti provide a fast poller, advanced graph templating, multiple data acquisition methods, and user...
The post Cacti: Network traffic graphics monitoring and analysis tools appeared first on Penetration Testing Tools.
hate_crack A tool for automating cracking methodologies through Hashcat from the TrustedSec team. Installation Get the latest hashcat binaries OSX Install mkdir -p hashcat/deps git clone https://github.com/KhronosGroup/OpenCL-Headers.git hashcat/deps/OpenCL cd hashcat/ make make install Download...
The post hate_crack: automating cracking methodologies through Hashcat appeared first on Penetration Testing Tools.
Tabby Tabby has been recognized by the academic community and accepted for publication in The 53rd Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2023). Tabby is a Java Code Analysis Tool...
The post tabby: A Java Code Analysis Tool appeared first on Penetration Testing Tools.
NETworkManager Connect and manage remote systems with Remote Desktop, PowerShell, PuTTY, TigerVNC or AWS (Systems Manager) Session Manager. Analyze and troubleshoot your network and systems with features such as the WiFi Analyzer, IP Scanner,...
The post NETworkManager: managing networks/troubleshoot network problems appeared first on Penetration Testing Tools.
saferwall – Collaborative and Streamlined Threat Analysis at Scale Saferwall allows you to analyze, triage, and classify threats in just minutes. ⭐ Collaborative – Built for security teams and researchers to streamline analysis, identification, and sharing of malware samples....
The post saferwall: Collaborative and Streamlined Threat Analysis at Scale appeared first on Penetration Testing Tools.
Halberd: Multi-Cloud Security Testing Tool Halberd is a powerful, multi-cloud security testing tool. Born out of the need for a unified, easy-to-use tool, Halberd enables you to proactively assess your cloud defenses by executing...
The post Halberd: Multi-Cloud Attack Tool appeared first on Penetration Testing Tools.
What is Impacket? Impacket is a collection of Python classes for working with network protocols. Impacket is focused on providing low-level programmatic access to the packets and for some protocols (e.g. SMB1-3 and MSRPC)...
The post Impacket: collection of Python classes for working with network protocols appeared first on Penetration Testing Tools.
