KnowsMore KnowsMore is a Swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS, and DCSync). Main features Import NTLM Hashes from .ntds output txt file (generated by CrackMapExec or secretsdump.py)...
The post KnowsMore: swiss army knife tool for pentesting Microsoft Active Directory appeared first on Penetration Testing Tools.
kernel hardening checker There are plenty of Linux kernel hardening config options. A lot of them are not enabled by the major distros. We have to enable these options ourselves to make our systems...
The post kernel hardening checker: checking the hardening options in the Linux kernel config appeared first on Penetration Testing Tools.
dnstwist See what sort of trouble users can get in trying to type your domain name. Find lookalike domains that adversaries can use to attack you. Can detect typosquatters, phishing attacks, fraud, and brand...
The post dnstwist: Domain name permutation engine appeared first on Penetration Testing Tools.
Cameradar Cameradar allows you to Detect open RTSP hosts on any accessible target host Detect which device model is streaming Launch automated dictionary attacks to get their stream route (e.g.: /live.sdp) Launch automated dictionary attacks to...
The post Cameradar: Hacking RTSP CCTV Cameras appeared first on Penetration Testing Tools.
Gatekeeper What is Gatekeeper? Gatekeeper is the first open-source DoS protection system. It is designed to scale to any peak bandwidth, so it can withstand DoS attacks both today and tomorrow. In spite of...
The post gatekeeper: open source DoS protection system appeared first on Penetration Testing Tools.
Overview This is a tool used to exploit CRED-1 over a SOCKS5 connection (with UDP support). How CRED-1 Attack Works CRED-1 can be broken down into the following steps: Send a DHCP Request for...
The post cred1py: A tool used to exploit CRED-1 over a SOCKS5 connection appeared first on Penetration Testing Tools.
Velociraptor – Endpoint visibility and collection tool. Velociraptor is a unique, advanced open-source endpoint monitoring, digital forensic, and cyber response platform. It was originally developed by DFIR professionals who needed a powerful and efficient...
The post velociraptor: Endpoint visibility and collection tool appeared first on Penetration Testing Tools.
IVRE IVRE is an open-source framework for network recon. It relies on open-source well-known tools (Nmap, Zmap, Masscan, Bro, and p0f) to gather data (network intelligence), stores it in a database (MongoDB), and provides tools to analyze it....
The post ivre: open source network recon framework appeared first on Penetration Testing Tools.
Locksmith A tool built to find and fix common misconfigurations in Active Directory Certificate Services. Installation Module Install module from the PowerShell Gallery (preferred): Open a PowerShell prompt and run Install-Module -Name...
The post Locksmith: find and fix common misconfigurations in Active Directory Certificate Services appeared first on Penetration Testing Tools.
ActivityWatch The goal of ActivityWatch is simple: Enable the collection of as many valuable lifedata as possible without compromising user privacy. What ActivityWatch is A set of watchers that record relevant information about what you...
The post activitywatch: Log what you do on your computer appeared first on Penetration Testing Tools.
The Firmware Analysis and Comparison Tool (FACT) Firmware analysis is a tough challenge with a lot of tasks. Many of these tasks can be automated (either with new approaches or incorporation of existing tools)...
The post FACT_core: Firmware Analysis and Comparison Tool appeared first on Penetration Testing Tools.
Slhasher – Bulk VirusTotal Hash Lookups Slhasher is a collaborative tool designed to perform bulk SHA256 hash lookups through a graphical user interface. It integrates with VirusTotal to fetch hash metadata and supports exporting...
The post Slhasher: Bulk VirusTotal Hash Lookups appeared first on Penetration Testing Tools.
gosec – Golang Security Checker Inspects source code for security problems by scanning the Go AST. Usage Gosec can be configured to only run a subset of rules, exclude certain file paths, and...
The post gosec: Golang Security Checker appeared first on Penetration Testing Tools.
FireEye Labs Obfuscated String Solver The FLARE Obfuscated String Solver (FLOSS, formerly FireEye Labs Obfuscated String Solver) uses advanced static analysis techniques to automatically extract and deobfuscate all strings from malware binaries. You can...
The post flare-floss: Automatically extract obfuscated strings from malware appeared first on Penetration Testing Tools.
GBounty GBounty is a multi-step website vulnerability scanner developed in Golang designed to help companies, pentesters, and bug hunters identify potential vulnerabilities in web applications. It takes a target URL, list of URL, raw...
The post GBounty: Multi-step website vulnerability scanner appeared first on Penetration Testing Tools.
VulnerableCode VulnerableCode is a free and open database of FOSS software package vulnerabilities and the tools to create and keep the data current. It is made by the FOSS community to improve and secure...
The post VulnerableCode: free and open vulnerabilities database and the packages they impact appeared first on Penetration Testing Tools.
Mobile Security Framework Mobile Security Framework (MobSF) is an intelligent, all-in-one open-source mobile application (Android/iOS/Windows) automated pen-testing framework capable of performing static and dynamic analysis. It can be used for effective and fast security...
The post Mobile Security Framework (MobSF): Automated mobile application pen-testing framework appeared first on Penetration Testing Tools.
Extract VMK of BitLocker volume with TPMAndPIN protector and knowing PIN Technic to extract VMK from the bitlocker volume that TPM protects are already documented in different publications. This GitHub repo gives a toolset...
The post Extract VMK of BitLocker volume with TPMAndPIN protector and knowing PIN appeared first on Penetration Testing Tools.
EAPHammer EAPHammer is a toolkit for performing targeted evil twin attacks against WPA2-Enterprise networks. It is designed to be used in full scope wireless assessments and red team engagements. As such, the focus is...
The post eaphammer: evil twin attacks against WPA2-Enterprise networks appeared first on Penetration Testing Tools.
Slack Watchman Slack Watchman is an application that uses the Slack API to look for potentially sensitive data exposed in your Slack workspaces. Features It searches for, and reports back on: Externally shared...
The post slack watchman: Monitoring you Slack workspaces for sensitive information appeared first on Penetration Testing Tools.
