WiFi Passview is an open-source batch script-based program that can recover your WiFi Password easily in seconds. This is for Windows OS only. Basically, this scripted program has the same function as other passview software such as webpassview and mailpassview. Visit WikiDisclaimer: WiFi Passview is NOT designed for malicious use! Please use this program responsibly!HowRead More
FinDOM-XSS is a tool that allows you to finding for possible and/ potential DOM based XSS vulnerability in a fast manner.Installation $ git clone https://github.com/dwisiswant0/findom-xss.git Dependencies: LinkFinder ConfigurationChange the value of LINKFINDER variable (on line 3) with your main LinkFinder file. UsageTo run the tool on a target, just use the following command. $ ./findom-xss.shRead More
Enumerate a target Based off of Nmap Results Features The purpose of O.G. Auto-Recon is to automate the initial information gathering phase and then enumerate based off those results as much as possible. This tool is intended for CTF’s and can be fairly noisy. (Not the most stealth conscious tool…) All tools in this projectRead More
Selenium based web scraper to generate passwords list. Installation # Download Firefox webdriver from https://github.com/mozilla/geckodriver/releases$ tar xzf geckodriver-v{VERSION-HERE}.tar.gz$ sudo mv geckodriver /usr/local/bin # Make sure it is in your PATH$ geckodriver –version # Make sure webdriver is properly installed$ git clone https://github.com/dariusztytko/words-scraper$ sudo pip3 install -r words-scraper/requirements.txt Use cases Scraping words from the target’s pagesRead More
A JavaScript components vulnrability scanner, based on RetireJS. Why use JShole instead of RetireJS?By default, RetireJS only searches one page, but JShole tries to crawl all pages.How it works? Get Started Requirements requests Install git clone https://github.com/callforpapers-source/jshole.git cd jshole pip3 install -r requirements python3 jshole.py usage: jshole [-h] -u URL [-d] [-l LIMIT] [-t THREAT]optionalRead More
GitMonitor is a Github scanning system to look for leaked sensitive information based on rules. I know that there are a lot of very good other tools for finding sensitive information leaked on Github right now, I myself currently still use some of them. However, I think they still lack some features like: A scanningRead More
Finder Of XSS, and Dal is the Korean pronunciation of moon. What is DalFoxJust, XSS Scanning and Parameter Analysis tool. I previously developed XSpear, a ruby-based XSS tool, and this time, a full change occurred during the process of porting with golang!!! and created it as a new project. The basic concept is to analyzeRead More
Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.Nuclei is used to send requests across targets based on a template leading to zero false positives and providing effective scanning for known paths. Main use cases for nuclei are during initial reconnaissance phase to quickly checkRead More
Get chromium browsers: passwords, credit cards, history, cookies, bookmarks.Chrome 80 > is supported!Examples: Get passwords from browsers: Stealer.exe PASSWORDS Get credit cards from browsers: Stealer.exe CREDIT_CARDS Get history from browsers: Stealer.exe HISTORY Get bookmarks from browsers: Stealer.exe BOOKMARKS Get cookies from browsers: Stealer.exe COOKIES Browsers list: Google Chrome Opera Chromium Brave-Browser Epic Privacy Browser AmigoRead More
Crescendo is a swift based, real time event viewer for macOS. It utilizes Apple’s Endpoint Security Framework.Getting StartedApple has introduced some new security mechanisms that we need to enable to get Crescendo running. 1.- Ensure that you have moved the app to your /Applications director or the system extension will fail to load. 2.- ForRead More
