July 5, 2022Cspparse - A Tool To Evaluate Content Security Policies

cspparse is a tool to evaluate Content Security Policies. It uses Google's API to retrieve the CSP Headers and returns them in ReconJSON format. Not only does it...

by KitPloit in Cspparse, Headers
July 3, 2022Aiodnsbrute - DNS Asynchronous Brute Force Utility

A Python 3.5+ tool that uses asyncio to brute force domain names asynchronously. Speed It's fast. Benchmarks on small VPS hosts put around 100k DNS resoultions...

by KitPloit in Aiodnsbrute, Async, Bruteforcing, Enumeration, OSINT, OSINT Resources, Pentesting, Recon, Red Team, Security Tools, Subdomin Enumeration
July 2, 2022DeepTraffic - Deep Learning Models For Network Traffic Classification

For more information please read our papers. Wei Wang's Google Scholar Homepage Wei Wang, Xuewen Zeng, Xiaozhou Ye, Yiqiang Sheng...

by KitPloit in Cnn Model, Deep Learning, DeepTraffic, Encrypted Traffic, Lstm Model, Malware Analysis, Traffic Analysis, Traffic Classification
July 2, 2022Microsoft-365-Extractor-Suite - A Set Of PowerShell Scripts That Allow For Complete And Reliable Acquisition Of The Microsoft 365 Unified Audit Log

This suite of scripts contains two different scripts that can be used to acquire the Microsoft 365 Unified Audit Log Read the accompanying blog post...

by KitPloit in Microsoft-365-Extractor-Suite, Microsoft365, Windows, WinRM
July 2, 2022Dlinject - Inject A Shared Library (I.E. Arbitrary Code) Into A Live Linux Process, Without Ptrace

Inject a shared library (i.e. arbitrary code) into a live linux process, without ptrace. Inspired by Cexigua and linux-inject, among other things. Usage ...

by KitPloit in Assembly, Dlinject, Ld Preload, Procfs, Ptrace, Python3, Shared Library, Shellcode, Shellcode Injection, X86 64
July 1, 2022awsEnum - Enumerate AWS Cloud Resources Based On Provided Credential

Enumrate AWS services! with no nosies awsEnum is a python script enumrate AWS services through the provided credential. ▄▄▄▄▄▄ ▄ ...

by KitPloit in awsEnum, Bugbounty, Enumeration, Security Tools
June 30, 2022SharpWSUS - CSharp tool for lateral movement through WSUS

SharpWSUS is a CSharp tool for lateral movement through WSUS. There is a corresponding blog (https://labs.nettitude.com/blog/introducing-sharpwsus/) which has more detailed information about the tooling, use case and detection....

by KitPloit in SharpWSUS, Windows
June 29, 2022Gallia - Extendable Pentesting Framework

Gallia is an extendable pentesting framework with the focus on the automotive domain. The scope of gallia is conducting penetration tests from a single ECU up to...

by KitPloit in Automotive, Gallia, Python
June 29, 2022Jwtear - Modular Command-Line Tool To Parse, Create And Manipulate JWT Tokens For Hackers

A modular command-line tool to parse, create and manipulate JSON Web Token(JWT) tokens for security testing purposes. Features Complete modularity. All...

by KitPloit in Jwe, JWT, JWT Authentication, JWT Token, JWT Tokens, Jwtear, Token
June 29, 2022Nimc2 - A C2 Fully Written In Nim

nimc2 is a very lightweight C2 written fully in nim (implant & server). If you want to give it a try check out the wiki to learn how...

by KitPloit in Command And Control, Infosec, Nimc2, Redteam, Security Tools
Archives
Categories
Tags
Bugbounty Cybersecurity Devsecops Dfir Distribution golang Information Gathering Infosec Kali Kali Linux Kerberos Linux Malware Analysis Malware Detection Microsoft mimikatz msfvenom NTLM OSINT Payload Penetration Testing Pentest Tool Pentesting Post Exploitation PowerShell Privilege Escalation Processes Python Python3 Recon Reconnaissance Red Team Red Teaming Redteam Redteam Tools Remote Research Reverse Engineering Scan Scanner Scanning Scripts Security Security Tools Shellcode SMB Spoofing SSH Static Analysis Subdomain Syscalls Testing Threat Hunting Threat Intelligence Toolkit Traffic Username vulnerabilities Vulnerability Vulnerability Scanners Vulnerable Win32 Windows Windows 10 Wireshark Wordlist XSS Yara Blueteam Subdomains Windows Defender Wrapper Redteaming Techniques