Tools Category

PuTTY 0.71 Released

SSH Client Updated To Fix a Large Number of Security Vulnerabilities The free and open-source SSH client updated with the fix for a number of Security Vulnerabilities including the one in RSA key exchange and the latest version is PuTTY 0.71. PuTTY is an SSH and telnet client for the Read more…

Loading

Tools Category

MITMsmtp v0.0.2 released

Evil SMTP Server for pentesting SMTP clients MITMsmtp MITMsmtp is an Evil SMTP Server for pentesting SMTP clients to catch login credentials and mails sent over plain or SSL/TLS encrypted connections. The idea is to catch sensitive emails sent by clients which are not correctly verifying the SMTP servers identity Read more…

Loading

Tools Category

conjur v1.4.0 releases

Secures secrets used by privileged users and machine identities Conjur provides secrets management and machine identity for modern infrastructure: Machine Authorization Markup Language (“MAML”), a role-based access policy language to define system components & their roles, privileges, and metadata A REST web service to: manage identity life cycles for humans and machines Read more…

Loading

Tools Category

testssl.sh v3.0 rc5 releases

Testing TLS/SSL encryption anywhere on any port testssl.sh is a free command line tool which checks a server’s service on any port for the support of TLS/SSLcyphers, protocols as well as some cryptographic flaws. Key features Clear output: you can tell easily whether anything is good or bad Ease of installation: It Read more…

Loading

Tools Category

AWS Security tools: Scripts and tools for AWS Pentest

AWS Security tools Bunch of scripts for AWS Pentest lambda/lambda_dumper.py – Script to Dump AWS Lambda functions lambda/lambda_backdoor.py – Backdoor AWS users iam/iam_user_enum – Bruteforce IAM usernames iam/assume_role_enum – Enumerate and Assume IAM Roles for privilege escalation eks/k8s_secrets_dumper.py – Kubernetes Secrets Dumper eks/pod_to_node_escape – Escape form k8s pod to the underlying container Read more…

Loading

Tools Category

mitm6 v0.2.2 Releases

mitm6 v0.2.2 releases: pwning IPv4 via IPv6 mitm6 is a pentesting tool that exploits the default configuration of Windows to take over the default DNS server. It does this by replying to DHCPv6 messages, providing victims with a link-local IPv6 address and setting the attackers host as default DNS server. As DNS Read more…

Loading

Tools Category

Interlace v1.3.3 Releases

Interlace Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support. Install git clone https://github.com/codingo/Interlace.gitpython3 setup.py install Usage ARGUMENT DESCRIPTION (stdin) Pipe target lists from another application in comma-delimited format, CIDR notation, or as an individual host -t Specify a target or domain name either in Read more…

Loading