TLS Attacker TLS-Attacker is a Java-based framework for analyzing TLS libraries. It can send arbitrary protocol messages in an arbitrary order to the TLS peer, and define their modifications using a provided interface. This...
The post TLS-Attacker: Java-based framework for analyzing TLS libraries appeared first on Penetration Testing Tools.
Segugio Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extracting the malware’s final stage configuration. Segugio was created to address the need for...
The post Segugio: Tracking Malware from Click to Configuration appeared first on Penetration Testing Tools.
msldap LDAP library for auditing MS AD Feature Comes with a built-in console LDAP client All parameters can be controlled via a convenient URL Supports integrated windows authentication (SSPI) both with NTLM and...
The post msldap: LDAP library for auditing MS AD appeared first on Penetration Testing Tools.
sn0int sn0int is an OSINT framework and package manager. It was built for IT security professionals and bug hunters to gather intelligence about a given target or about yourself. It is an enumerating attack...
The post sn0int: OSINT framework and package manager appeared first on Penetration Testing Tools.
NyxInvoke NyxInvoke is a versatile Rust-based tool designed for executing .NET assemblies, PowerShell commands/scripts, and Beacon Object Files (BOFs) with built-in patchless AMSI and ETW bypass capabilities. It can be compiled as either a...
The post NyxInvoke: The Rust-Based Tool Bypassing AMSI & ETW appeared first on Penetration Testing Tools.
nmap This library aims at providing idiomatic nmap bindings for go developers, to make it easier to write security audit tools using golang. What is nmap Nmap (Network Mapper) is a free and open-source network scanner...
The post nmap: Idiomatic nmap bindings for go developers appeared first on Penetration Testing Tools.
snuffleupagus Security module for php7 and php8 – Killing bugclasses and virtual-patching the rest! Snuffleupagus is a PHP 7+ and 8+ module designed to drastically raise the cost of attacks against websites, by killing entire...
The post snuffleupagus: Security module for php7 and php8 appeared first on Penetration Testing Tools.
cloudkicker self-hosted Azure OSINT tool It is very similar to what @DrAzureAD’s OSINT tool does (https://aadinternals.com/osint/). While this version lacks a few of the extra features, it is self-contained, requires no account, and can...
The post cloudkicker: self-hosted Azure OSINT tool appeared first on Penetration Testing Tools.
The Update Framework (TUF) The Update Framework (TUF) is written in Python and intended to conform to version 1.0 of the TUF specification. This implementation is in use in production systems but is also...
The post tuf: A Framework for Securing Software Update Systems appeared first on Penetration Testing Tools.
authelia Authelia is an open-source authentication and authorization server providing 2-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion of reverse proxies like nginx, Traefik or HAProxy to let them...
The post authelia: The Single Sign-On Multi-Factor portal for web apps appeared first on Penetration Testing Tools.
BEAR-C2 Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of encryption methods, including AES, XOR, DES, TLS, RC4, RSA and...
The post Bear C2 Exposed: Russian APT’s Advanced Encryption Tactics appeared first on Penetration Testing Tools.
Conjur Conjur provides secrets management and machine identity for modern infrastructure: Machine Authorization Markup Language (“MAML”), a role-based access policy language to define system components & their roles, privileges, and metadata A REST web...
The post conjur: secures secrets used by privileged users and machine identities appeared first on Penetration Testing Tools.
Rubeus Rubeus is a C# toolset for raw Kerberos interaction and abuses. It is heavily adapted from Benjamin Delpy’s Kekeo project (CC BY-NC-SA 4.0 license) and Vincent LE TOUX‘s MakeMeEnterpriseAdmin project (GPL v3.0 license). Full credit goes to Benjamin and Vincent for...
The post Rubeus: C# toolset for raw Kerberos interaction and abuses appeared first on Penetration Testing Tools.
HexForge IDA plugin This IDA plugin extends the functionality of the assembly and hex view. With this plugin, you can conveniently decode/decrypt/alter data directly from the IDA Pro interface. The following actions include: Copying...
The post HexForge IDA plugin: extends the functionality of the assembly and hex view appeared first on Penetration Testing Tools.
What is Suricata The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry but...
The post Suricata: network IDS, IPS and NSM engine appeared first on Penetration Testing Tools.
pypykatz Mimikatz implementation in pure Python Why do I need these dumps files? To create mimikatz in Python, one would have to create structure definitions of a gazillion different structures (check the original code)...
The post pypykatz: Mimikatz implementation in pure Python appeared first on Penetration Testing Tools.
Disconnected GPO Editor Disconnected GPO Editor is a launcher for the official Group Policy Manager to bypass the domain joined requirement that is needed when using the official MMC snap-in. The tool works by...
The post Bypass Domain Requirements with Disconnected GPO Editor appeared first on Penetration Testing Tools.
Adversarial Robustness Toolbox Adversarial Robustness 360 Toolbox (ART) is a Python library supporting developers and researchers in defending Machine Learning models (Deep Neural Networks, Gradient Boosted Decision Trees, Support Vector Machines, Random Forests, Logistic...
The post Adversarial Robustness Toolbox: crafting and analysis of attacks and defense methods for machine learning models appeared first on Penetration Testing Tools.
The Memory Process File System: The Memory Process File System (MemProcFS) is an easy and convenient way of accessing physical memory as files a virtual file system. Easy trivial point-and-click memory analysis without the...
The post MemProcFS: The Memory Process File System appeared first on Penetration Testing Tools.
PoC – EXE or DLL or ShellCode This is just a simple silly PoC demonstrating an executable “exe” file that can be used like exe, DLL, or shellcode… Steps Create an “exe” which has...
The post Beyond EXE: A PoC Exploring Code Execution Flexibility appeared first on Penetration Testing Tools.
