BurpSuite Asset Discover – Burp Suite Extension to Discover Assets From HTTP Response
Burp Suite extension to discover assets from HTTP response using passive scanning. Passively parses HTTP response of the URLs in scope and identifies different type assets such as domain, subdomain, IP, S3 bucket etc.
Read more »
Vulnx – Tool To Detect Vulnerabilities in Multiple Types of CMS and Automatic Exploit
Vulnx is An Intelligent Bot Auto Shell Injector that detect vulnerabilities in multiple types of CMS, informations gathering and vulnerabilitie Scanning.
Read more »
Local/Remote File Inclution (LFI/RFI) Payload List
I’ll give list of example code in PHP format to protecting your website and most importantly your code from a file inclusion (RFI/LFI) exploit.
Read more »
Evil-WinRM – The ultimate Windows Remote Management Shell for Hacking/Pentesting
Evil WinRM is The ultimate WinRM shell for hacking/pentesting. WinRM (Windows Remote Management) is the Microsoft implementation of WS-Management Protocol.
Read more »
Sojobo – A Binary Analysis Framework
Sojobo is an emulator for the B2R2 framework. It was created to easier the analysis of potentially malicious files.
Read more »
EyeWitness – Tool To Take Screenshots of Websites, Provide Server Header Info
EyeWitness is designed to take screenshots of websites provide some server header info, and identify default credentials if known.
Read more »
Eaphammer – Targeted Evil Twin Attacks Against WPA2-Enterprise Networks
EAPHammer is a toolkit for performing targeted evil twin attacks against WPA2-Enterprise networks. It is designed to be used in full scope wireless assessments
Read more »