August 13, 2023NixImports - A .NET Malware Loader, Using API-Hashing To Evade Static Analysis

A .NET malware loader, using API-Hashing and dynamic invoking to evade static analysis How does it work? NixImports uses my managed API-Hashing implementation HInvoke, to dynamically...

by KitPloit in Detection Engineering, Dynamic, Hashes, Malware, NixImports, Payload, Yara
August 12, 2023Columbus-Server - API first subdomain discovery service, blazingly fast subdomain enumeration service with advanced features

Columbus Project is an API first subdomain discovery service, blazingly fast subdomain enumeration service with advanced features. Columbus returned 638 subdomains of tesla.com in 0.231 sec. ...

by KitPloit in Columbus-Server, Subdomain, Subdomain Enumeration, Subdomain Finder, Subdomains, Up-to-date
August 11, 2023Xcrawl3R - A CLI Utility To Recursively Crawl Webpages

xcrawl3r is a command-line interface (CLI) utility to recursively crawl webpages i.e systematically browse webpages' URLs and follow links to discover linked webpages' URLs. Features ...

by KitPloit in Bug Bounty Tools, Contentdiscovery, Ethical Hacking Tools, Penetration Testing Tools, Red Teaming, Red Teaming Tools, Xcrawl3R
August 10, 2023Chaos - Origin IP Scanning Utility Developed With ChatGPT

chaos is an 'origin' IP scanner developed by RST in collaboration with ChatGPT. It is a niche utility with an intended audience of mostly penetration testers and...

by KitPloit in Attack Surface Management, Chatgpt, Information Gathering, Origin Ip, Reconnaissance
August 9, 2023Xurlfind3R - A CLI Utility To Find Domain'S Known URLs From Curated Passive Online Sources

xurlfind3r is a command-line interface (CLI) utility to find domain's known URLs from curated passive online sources. Features Fetches URLs from curated passive sources...

by KitPloit in Bug Bounty Tools, Contentdiscovery, Ethical Hacking, Ethical Hacking Tools, Osint Tools, Penetration Testing Tools, Reconnaissance, Red Teaming, Red Teaming Tools, Xurlfind3R
August 8, 2023Nac_Bypass_Agent - This Function Combines All The Above Functions And Takes Necessary Information From The User To Change The IP And MAC Address, Start The Responder And Tcpdump Tools, And Run The Nbtscan Tool

Nac Bypass Agent This piece of code is a script written in Python and designed to run on Kali Linux. Here is a summary explaining what each function does:...

by KitPloit in Nac_Bypass_Agent, Responder, SIP, Tcpdump, Traffic, VoIP, Wireshark
August 7, 2023Browser-password-stealer - Get All The Saved Passwords, Credit Cards And Bookmarks From Chromium Based Browsers Supports Chromium 80 And Above!

This python program gets all the saved passwords, credit cards and bookmarks from chromium based browsers supports chromium 80 and above!Modules Required To install all the required...

by KitPloit in Brave Browser, Browser-password-stealer, Chrome Password Grabber, Password Stealer
August 6, 2023AiCEF - An AI-assisted cyber exercise content generation framework using named entity recognition

AiCEF is a tool implementing the accompanying framework [1] in order to harness the intelligence that is available from online resources, as well as threat groups' activities, arsenal...

by KitPloit in AiCEF, Openai, Openai Api, Parsing, Python, Up-to-date
August 5, 2023Upload_Bypass - File Upload Restrictions Bypass, By Using Different Bug Bounty Techniques Covered In Hacktricks

Upload_Bypass is a powerful tool designed to assist Pentesters and Bug Hunters in testing file upload mechanisms. It leverages various bug bounty techniques to simplify the process of...

by KitPloit in Simplify, Taken, Techniques, Testing, Upload_Bypass, vulnerabilities
August 4, 2023IMDShift - Automates Migration Process Of Workloads To IMDSv2 To Avoid SSRF Attacks

AWS workloads that rely on the metadata endpoint are vulnerable to Server-Side Request Forgery (SSRF) attacks. IMDShift automates the migration process of all workloads to IMDSv2 with extensive...

by KitPloit in IMDShift, Scan, Vulnerable
Archives
Categories
Tags
Bugbounty Cybersecurity Devsecops Dfir Distribution golang Information Gathering Infosec Kali Kali Linux Kerberos Linux Malware Analysis Malware Detection Microsoft mimikatz msfvenom NTLM OSINT Payload Penetration Testing Pentest Tool Pentesting Post Exploitation PowerShell Privilege Escalation Processes Python Python3 Recon Reconnaissance Red Team Red Teaming Redteam Redteam Tools Remote Research Reverse Engineering Scan Scanner Scanning Scripts Security Security Tools Shellcode SMB Spoofing SSH Static Analysis Subdomain Syscalls Testing Threat Hunting Threat Intelligence Toolkit Traffic Username vulnerabilities Vulnerability Vulnerability Scanners Vulnerable Win32 Windows Windows 10 Wireshark Wordlist XSS Yara Blueteam Subdomains Windows Defender Wrapper Redteaming Techniques