FinalRecon – The Last Web Recon Tool You’ll Need

FinalRecon is a fast and simple python script for web reconnaissance. It follows a modular structure so in future new modules can be added with ease.Featured NullByte https://null-byte.wonderhowto.com/how-to/conduct-recon-web-target-with-python-tools-0198114/ https://www.youtube.com/watch?v=F9lwzMPGIgo Hakin9 https://hakin9.org/final-recon-osint-tool-for-all-in-one-web-reconnaissance/ FeaturesFinalRecon provides detailed information such as : Header Information Whois SSL Certificate Information Crawler html CSS Javascripts Internal Links External Links Images robots sitemapsRead More

Spray – A Password Spraying Tool For Active Directory Credentials By Jacob Wilkin(Greenwolf)

A Password Spraying tool for Active Directory Credentials by Jacob Wilkin(Greenwolf) Getting StartedThese instructions will show you the requirements for and how to use Spray. PrerequisitesAll requirements come preinstalled on Kali Linux, to run on other flavors or Mac just make sure curl(owa & lync) and rpcclient(smb) are installed using apt-get or brew. rpcclientcurl UsingRead More

Open Sesame – A Tool Which Runs To Display Random Publicly Disclosed Hackerone Reports When Bored

A python tool which runs to display random publicly disclosed Hackerone reports when bored. Automatically opens the report in browser. Contains Over 8k Publicly disclosed Hackerone reports and addtl. wordlist of ~700 bug bounty writeups. This is a productivity tool for security enthusiasts and bug bounty hunters. I have written a blog here giving myRead More

Sharingan – Offensive Security Recon Tool

Sharingan is a recon multitool for offensive security / bug bountyThis is very much a work in progress and I’m relatively new to offensive security in general so if you see something that can be improved please open an issue or PR with suggested changes.Cloning for developmentOutside of your gopath git clone https://github.com/leobeosab/sharingan Installinggo getRead More

URLBrute – Tool To Brute Website Sub-Domains And Dirs

What is thisURLBrute is a tool to help you brute forcing website sub-domains and dirs.Can be used with python3 and python2.Dependencies urlbrute.py requests >= 2.21.0 bs4 >= 0.0.1 datetime >= 4.3 How to installIn Linux: chmod +x install.shsudo ./install.sh In Windows, install python 3.7, then run cmd as administrator: install.bat CreditsCredits to danTaler who createdRead More

DiscordRAT – Discord Remote Administration Tool Fully Written In Python

Discord Remote Administration Tool fully written in Python3.This is a RAT controlled over Discord with over 20 post exploitation modules. Disclaimer:This tool is for educational use only, the author will not be held responsible for any misuse of this tool.This is my first project on github as such this project is far from perfect ,Read More

Lockphish – A Tool For Phishing Attacks On The Lock Screen, Designed To Grab Windows Credentials, Android PIN And iPhone Passcode

Lockphish it’s the first tool (05/13/2020) for phishing attacks on the lock screen, designed to grab Windows credentials, Android PIN and iPhone Passcode using a https link. Features: Lockscreen phishing page for Windows, Android and iPhone Auto detect device Port Forwarding by Ngrok IP Tracker Legal disclaimer:Usage of Lockphish for attacking targets without prior mutualRead More

DalFox (Finder Of XSS) – Parameter Analysis And XSS Scanning Tool Based On Golang

Finder Of XSS, and Dal is the Korean pronunciation of moon. What is DalFoxJust, XSS Scanning and Parameter Analysis tool. I previously developed XSpear, a ruby-based XSS tool, and this time, a full change occurred during the process of porting with golang!!! and created it as a new project. The basic concept is to analyzeRead More

Threadtear – Multifunctional Java Deobfuscation Tool Suite

Threadtear is a multifunctional deobfuscation tool for java. Suitable for easier code analysis without worrying too much about obfuscation. Even the most expensive obfuscators like ZKM or Stringer are included. It also contains older deobfuscation tools from my github account, but it can also be useful for other stuff. Insert debug line numbers to betterRead More

Shellerator – Simple CLI Tool For The Generation Of Bind And Reverse Shells In Multiple Languages

Shellerator is a simple command-line tool aimed to help pentesters quickly generate one-liner reverse/bind shells in multiple languages (Bash, Powershell, Java, Python…). This project is inspired by Print-My-Shell. I just rewrote it and added some options and glitter to it. The lists of reverse and bind shells are not perfect yet. I’ll work on thisRead More

X