June 22, 2024XMGoat - Composed of XM Cyber terraform templates that help you learn about common Azure security issues

XM Goat is composed of XM Cyber terraform templates that help you learn about common Azure security issues. Each template is a vulnerable environment, with some significant misconfigurations. Your...

by KitPloit in Terraform, Vulnerable, XMGoat
June 21, 2024Extrude - Analyse Binaries For Missing Security Features, Information Disclosure And More...

Analyse binaries for missing security features, information disclosure and more. Extrude is in the early stages of development, and currently only supports ELF and MachO binaries. PE (Windows) binaries...

by KitPloit in Extrude, Nx, Portable Executable, Relro
June 20, 2024BokuLoader - A Proof-Of-Concept Cobalt Strike Reflective Loader Which Aims To Recreate, Integrate, And Enhance Cobalt Strike's Evasion Features!

A proof-of-concept User-Defined Reflective Loader (UDRL) which aims to recreate, integrate, and enhance Cobalt Strike's evasion features! Contributors: Contributor Twitter Notable Contributions ...

by KitPloit in Advsim, Boku, BokuLoader, CobaltStrike, Redteam, Reflectiveloader, Spoofing, Syscalls, UserLAnd, Windows
June 19, 2024Volana - Shell Command Obfuscation To Avoid Detection Systems

Shell command obfuscation to avoid SIEM/detection system During pentest, an important aspect is to be stealth. For this reason you should clear your tracks after your...

by KitPloit in Exploitation, Infosec, Obfuscator, Pentest, Pentest Tool, Redteam, Shell Obfuscate, Volana
June 18, 2024CyberChef - The Cyber Swiss Army Knife - A Web App For Encryption, Encoding, Compression And Data Analysis

CyberChef is a simple, intuitive web app for carrying out all manner of "cyber" operations within a web browser. These operations include simple encoding like XOR and Base64, more...

by KitPloit in CyberChef, Data Analysis, Data Manipulation, Hashing, Parsing
June 16, 2024NativeDump - Dump Lsass Using Only Native APIs By Hand-Crafting Minidump Files (Without MinidumpWriteDump!)

NativeDump allows to dump the lsass process using only NTAPIs generating a Minidump file with only the streams needed to be parsed by tools like Mimikatz or Pypykatz...

by KitPloit in Lsass Dump, mimikatz, NativeDump, Pypykatz, Redteam Tools, Security Tools, Undocumented, Windows
June 8, 2024Sttr - Cross-Platform, Cli App To Perform Various Operations On String

sttr is command line software that allows you to quickly run various transformation operations on the string. // With input promptsttr// Direct inputsttr md5 "Hello World"// File...

by KitPloit in Cli Tool, Devutils, Encrypt, Encryption Decryption, Sttr, Termux, Termux Tool, Tui App, Zeropad
June 7, 2024PIP-INTEL - OSINT and Cyber Intelligence Tool

 Pip-Intel is a powerful tool designed for OSINT (Open Source Intelligence) and cyber intelligence gathering activities. It consolidates various open-source tools into a single user-friendly interface simplifying the data...

by KitPloit in Cyberintelligence, Information Gathering, Osint Tools, PIP-INTEL, Socmint
June 6, 2024Thief Raccoon - Login Phishing Tool

Thief Raccoon is a tool designed for educational purposes to demonstrate how phishing attacks can be conducted on various operating systems. This tool is intended to raise awareness...

by KitPloit in Flask, Python, Python3, Raccoon, Simulation, Thief_Raccoon, Windows, Windows 11
June 5, 2024X-Recon - A Utility For Detecting Webpage Inputs And Conducting XSS Scans

A utility for identifying web page inputs and conducting XSS scanning. Features: Subdomain Discovery: Retrieves relevant subdomains...

by KitPloit in Bugbounty, Bughunting, Hunt, X-Recon, XSS, XSS scanner, Xssscan
Archives
Categories
Tags
Bugbounty Cybersecurity Devsecops Dfir Distribution golang Information Gathering Infosec Kali Kali Linux Kerberos Linux Malware Analysis Malware Detection Microsoft mimikatz msfvenom NTLM OSINT Payload Penetration Testing Pentest Tool Pentesting Post Exploitation PowerShell Privilege Escalation Processes Python Python3 Recon Reconnaissance Red Team Red Teaming Redteam Redteam Tools Remote Research Reverse Engineering Scan Scanner Scanning Scripts Security Security Tools Shellcode SMB Spoofing SSH Static Analysis Subdomain Syscalls Testing Threat Hunting Threat Intelligence Toolkit Traffic Username vulnerabilities Vulnerability Vulnerability Scanners Vulnerable Win32 Windows Windows 10 Wireshark Wordlist XSS Yara Blueteam Subdomains Windows Defender Wrapper Redteaming Techniques