Red team operations involve miscellaneous skills, last several months and are politically sensitive; they require a lot of monitoring, consolidating and caution. Wavestone?s red team operations management software, Abaddon, has...

by KitPloit in Red Team, Reporting, SSH, Abaddo, Phishing, PostgreSQL, RedELK, Reverse, SILENTTRINITY

Furious Beaver is a distributed tool for capturing IRPs sent to any Windows driver. It operates in 2 parts:the "Broker" combines both a user-land agent and a self-extractable driver (IrpDumper.sys)...

by KitPloit in Canadian Furious Beaver, CFB, IRP, IRP Monitor, Vulnerability Research

Event Trace Log file reader in pure Python etl-parser is a pure Python 3 parser library for ETL Windows log files. ETL is the default format for...

by KitPloit in Forensics, Etl-Parser, Reverse Engineering

ChopChop is a command-line tool for dynamic application security testing on web applications, initially written by the Michelin CERT.Its goal is to scan several endpoints and identify exposition of services/files/folders...

by KitPloit in Devsecops, ChopChop, Threading

A Powershell module to run threat hunting playbooks on data from Azure and O365 for Cloud Forensics purposes.Getting Started1. Check that you have the right O365 PermissionsThe following roles are...

by KitPloit in Azforensics, AzureHunter, Azuresearcher, ThreatHunting, Unifiedauditlog

Deploy a small, intentionally insecure, vulnerable Windows Domain for RDP Honeypot fully automatically.Runs on self-hosted virtualization using libvirtwith QEMU/KVM (but it can be customized easily for cloud-based solutions).Used for painlessly...

by KitPloit in Ad-Honeypot-Autodeploy, Virtual Machine, Virtualization, WinRM

  Cumulus is a service that helps you monitor and fix security weakness in realtime. The issues will be reported on web dashboard. It's very simple and powerful.             Key features   Just install SDK...

by KitPloit in Vulnerability, Cumulus, Weakness, Weakness Reporting

  EXOCET is superior to Metasploit's "Evasive Payloads" modules as EXOCET uses AES-256 in GCM Mode (Galois/Counter Mode). Metasploit's Evasion Payloads uses a easy to detect RC4 encryption. While RC4 can...

by KitPloit in msfvenom, EXOCET-AV-Evasion

This project is born with the aim to develop a lightweight, but useful tool. The reason is that the existing hex editors have some different limitations (e.g. too many dependencies,...

by KitPloit in Reverse Engineering, Assembler, Cplusplus 11, Disassembler, Fhex, Hexeditor, Keystone, Qt5

Gotanda is OSINT(Open Source Intelligence) Web Extension for Firefox/Chrome.This Web Extension could search OSINT information from some IOC in web page.(IP,Domain,URL,SNS...etc)This Repository partly the studying and JavaScript practice.Download link below.FireFoxChromeUsageRight...

by KitPloit in Information Gathering, Firefox Addon, Javascript Applications