affine-cipher ~ An implementation of the historycal affine cipher and a Brute...
affine-chiper is An implementation of the historycal affine chiper written in C and a Brute Force Attack written in Python. “The affine cipher is a type of monoalphabetic substitution cipher, wherein...
View ArticleSonar is a reconnaissance tool for enumerating sub domains.
Sonar is a reconnaissance tool for enumerating sub domains. It was modeled after Knock and DNSRecon though explicitly not written in Python to avoid the limitations of threading and dependencies. Sonar...
View Articleagainst.py – mass scanning and brute-forcing script for ssh.
‘against.py‘ is a very fast ssh attacking script which includes a multithreaded port scanning module (tcp connect) for discovering possible targets and a multithreaded brute-forcing module which...
View ArticleNosecleaner is a suite of toolz for wireless security.
Nosecleaner is a suite of toolz for wireless security. Because wireless security has many avenues of attack, there are different handy scripts to cover different cases. Inside foler: + Listening :...
View ArticleODAT v2.1 released – Oracle Database Attacking Tool.
Changelog Version 2.1 (2016/03/04) : + A new module (cve) for exploiting some CVE (Common Vulnerabilities and Exposures). CVE-2012-3137 (perhaps this number, I’m not sure…) implemented at the moment: A...
View ArticlePentestDB updates – Penetration test database.
Latest change 7/3/2016: + Scipt: update exploit; coder.py & exploit.py. + Exploit: cms_qibo_splitword_php_backdoor.py & cms_qibo_fenlei_1_0_rce.py. pentesdb-exploit Penetration test database...
View ArticlePipeline is a tool to Designed to aid in targeted brute force password...
Pipeline is a tool to Designed to aid in targeted brute force password cracking attacks. Pipeline is built on top of CForce and it’s more or less a “simpler” version of Matt Weir’s middlechild since...
View Articlethc-ipv6 v3.1dev update – IPv6 attack toolkit.
changelog v3.1-dev: * dnssecwalk: added TCP mode (-t) * dnsrevenum6: added TCP mode (-t) * re-enabled raw mode, works now with modern kernels it seems * fake_advertise6: a second packet always was sent...
View Articlesubsearch is a command line tool designed to brute force subdomain names.
subsearch is a command line tool designed to brute force subdomain names. It is aimed at penetration testers and bug bounty hunters and has been built with a focus on speed, stealth and reporting. The...
View ArticleHT-Bruteforcer ~ Simple bruteforcer for EDA2/HiddenTear based ransomware.
Notice: This Code/Post just for Education/Learning Purpose. hidden-tear-bruteforcer is a Simple bruteforcer for EDA2/HiddenTear based ransomware. Requires a small PNG to verify successful decryption...
View Articlesipbrute is A utility to perform dictionary attacks against the VoIP SIP...
sipbrute is A utility to perform dictionary attacks against the VoIP SIP Register hash. requirements: + golang attack Options: – dict=””: the dictionary wordlist – path=””: the SIP register UAC...
View ArticleODAT v2.2 – Oracle Database Attacking Tool.
Changelog Version 2.2 (25/03/2016): + A new module (tnspoison) for exploiting the TNS listener poisoning attack (CVE-2012-1675). Big thanks to Joxean Koret and donctl. + Some bug fixes + Better help...
View ArticlePenBox v1.3 – A Penetration Testing Framework.
THIS TOOL IS ONLY FOR EDUCATIONAL PURPOSES ONLY! Changelog Version v1.3 : + removed windows and linux bugs + fixes non working tools on private submenu + added new tools : Shell and Directory Finder +...
View Articleosueta – A simple Python script to exploit the OpenSSH User Enumeration...
Osueta it’s a simple Python2 script to exploit the OpenSSH User Enumeration Timing Attack, present in OpenSSH versions 5.* and 6.*. The script has the ability to make variations of the username...
View ArticleATSCAN v7.4 stable – perl script for vulnerable Server, Site and dork scanner.
Latest Change v7.4 3/4/2016: + Colors to bash+fix bugs + facebook login brute force atscan v7.4 Description: ATSCAN SEARCH engine XSS scanner. Sqlmap. LFI scanner. Filter wordpress and Joomla sites in...
View ArticleSmall Linux utils and penetration testing utils.
linux-pentest-util is an Small Linux utils and penetration testing utils. Requirements: + Nmap + Python 2.7.x Collection of Utilities Most notable util: + smalictrace.py — trace what methods can...
View ArticleATSCAN v8.1 stable – perl script for vulnerable Server, Site and dork scanner.
Changelog 8.1: + Bugfix: Add ports scan info, Optimize code, Rebuild url scan process. + Logo Banner Change. atscan v7.4 Description: ATSCAN SEARCH engine XSS scanner. Sqlmap. LFI scanner. Filter...
View Articlewifi hacking script v1.3 supported securities: WEP, WPS, WPA, WPA2.
Shell Script For Attacking Wireless Connections Using Built-In Kali Tools. Supports All Securities (WEP, WPS, WPA, WPA2) Menu Options: 0) Full Automatic Mode (Applies To All Encryption Types) 1) WEP...
View ArticleATSCAN v8.5 stable – perl script for vulnerable Server, Site and dork scanner.
Changelog 8.1: + Added google bing ask search engine. + More regex to filter cms type. + Added option to set scan timeout ATSCAN v8.5 Description: ATSCAN SEARCH engine XSS scanner. Sqlmap. LFI scanner....
View ArticleInveigh v1.1.1 is a Windows PowerShell LLMNR/NBNS spoofer.
Changelog v1.1.1: Contains a few rounds of code cleanup and the following changes: Parameters Added to Invoke-Inveigh: + ConsoleUnique – Enable/Disable displaying challenge/response hashes for only...
View Article