In this section we will see the most powerful and used tools.
NoobSecToolkit is a Python Based Tool kit that brings together powerful security and anonymity tools and scripts with predefined security configurations and modifications. Making it very simple for students to get started with security! – Leo Edge Install Instructions (1) CTRL + ALT + T (Open Terminal) (2) git clone Read more…
Stealth post-exploitation framework PhpSploit is a remote control framework, aiming to provide a stealth interactive shell-like connection over HTTP between client and web server. It is a post-exploitation tool capable to maintain access to a compromised web server for privilege escalation purposes. Overview The obfuscated communication is accomplished Read more…
Brute-Forcing from Nmap output BruteSpray takes nmap GNMAP/XML output and automatically brute-forces services with default credentials using Medusa. BruteSpray can even find non-standard ports by using the -sV inside Nmap. Installation git clone https://github.com/x90skysn3k/brutespray.git Usage First do an nmap scan with -oG nmap.gnmap or -oX nmap.xml. Command: python brutespray.py -h Command: python brutespray.py Read more…
A simple phishing toolkit created by Jordan Wright. That is a framework that allows the easy management of phishing campaigns. It even handles the malicious web pages that you create. This is available for all OS types and you can grab this tool from github.com. Tutorial Once you have the server Read more…
pythem is a multi-purpose pentest framework written in the Python programming language. It has been developed to be used by security researchers and security professionals. The tool intended to be used only for acts within the law. I am not liable for any undue and unlawful act practiced by this Read more…
NXcrypt NXcrypt is a polymorphic ‘python backdoors’ crypter written in python by Hadi Mene (h4d3s) . The output is fully undetectable. NXcrypt can inject malicious python file into a normal file with multi-threading system. Run it with superuser’s permissions. NXcrypt output is Fully undetectable. How it work ? Encryption module: Read more…
Vulnerability Scanner Install Install ruby, bundler and rails. https://gorails.com/setup/ubuntu/16.04 Install redis-server and nmap. sudo apt-get update sudo apt-get install redis-server nmap Install the foreman gem. gem install foreman Clone HellRaiser repository, change to hellraiser web app directory and run bundle install and bundle exec rake db:migrate. git clone Read more…
A Telecom Signaling Exploitation Framework – SS7, GTP, Diameter And SIP SiGploit a signaling security testing framework dedicated to Telecom Security professionals and researchers to pentest and exploit vulnerabilities in the signaling protocols used in mobile operators regardless of the generation being in use. SiGploit aims to cover Read more…
Brutesploit BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and can be used in CTF for manipulation,combine,transform and permutation some words or file text :p i wrote this just for fun and Read more…
Hacking, which was once considered the exclusive domain of the “experts” has become very common phenomenon with the rise of technology and advancements in the mobile field. Android phones are most popular because of the availability of millions of apps in market. But is it possible to hack Wi-Fi using Read more…