Clik here to view.
Privesc is a Windows batch script that finds misconfiguration issues which...
Privesc is a Windows batch script that finds misconfiguration issues which can lead to privilege escalation. Privesc is a Windows batch script that finds misconfiguration issues which can lead to...
View ArticleClik here to view.
SCANNER-INURLBR v2.1.0 codename Subversive released.
The INURLBR tool was developed aiming to meet the need of Hacking community. Purpose: Make advanced searches to find potential vulnerabilities in web applications known as Google Hacking with various...
View ArticleClik here to view.
Yosuo v-2.0 released : is A ruby script that scans for vulnerable &...
Changelog v-2.0: + Added signature for Symantec Endpoint Protection Manager + Added signature for Arecont Vision Mega Pixel Panoramic Camera + login form brute force – minor bug fixes – Updated...
View ArticleClik here to view.
JSQL Injection v-0.7 released : a java tool for automatic database injection.
Changelog JSQL-Injection v0.7 This version includes : + Batch scan + Github issue reporter + Support 16 db engines + Optimized GUI jSQL Injection is a lightweight application used to find database...
View ArticleClik here to view.
SQLi login payload Scanner v.2 released.
SQLi login payload Scanner v.2. System requrements : WIndows 7/Vista/8.1/10, Ubuntu 14.04, Kali Linux 2.0 Black Arch Linux. SQLi login payload Scanner v.2. Requirements (you can install manually using...
View ArticleClik here to view.
JoomlaVS – A black box, Ruby powered, Joomla vulnerability scanner.
Latest Change 24/11/2015: + Add Real Estate Manager and core system vulns + Fix crash caused by invalid version strings JoomlaVS is a Ruby application that can help automate assessing how vulnerable a...
View ArticleClik here to view.
Async IP-Scanner for PowerShell.
Scan Network Async and return PSObject (IPv4Address, Hostname, FQDN, Status) Currently the first 3 quads of the IP-Address must be the same… you can only scan a range of /24. PowerShell-Async-IPScanner...
View ArticleClik here to view.
ATSCAN-v2 is a perl script for vulnerable Server, Site and dork scanner.
Changelog v-2: + Add option to scan from list: xss lfi rfi admin page (Mass Scan) + Add lists verification + Add input verification. + Optimize results. ATSCAN-v-2 ATSCAN is a perl script with function...
View ArticleClik here to view.
Automate blind RCE for Joomla vulnerability.
Joomla 1.5 – 3.4.5 Object Injection RCE – CVE-2015-856, is a PoC for CVE-2015-8562 to spawn a reverse shell or automate RCE.Requirements: – python 2.7.x – all Linux system Support. Usage – Automate...
View ArticleClik here to view.
ATSCAN-v3.1 – perl script for vulnerable Server, Site and dork scanner.
ATSCAN is a perl script with function Dork scanner. XSS scanner. LFI scanner. Filter wordpress and Joomla sites in the server. Find Admin page. Decode / Encode MD5 + Base64. Changelog v3.1: Correct...
View ArticleClik here to view.
Crawlic is a web reconnaissance tool.
Crawlic is a Web recon tool (find temporary files, parse robots.txt, search folders, google dorks and search domains hosted on same server) Automatic GIT/SVN clone (using dvcs-ripper) if .git or .svn...
View ArticleClik here to view.
Updates REXT v0.0 – Router Exploitation Toolkit.
Latest Changelog 23/12/2015: – requirements.txt : requests==2.9.1 from requests==2.5.1 – Added default host value to Exploit.py – exploit module: Dlink DIR-300 and DIR-600 exec noauth. Router...
View ArticleClik here to view.
Nishang v-0.6.2 – PowerShell for penetration testing and offensive security.
Changelog v0.6.2: + Added support for dumping cleartext credentials from RDP sessions for Invoke-MimikatzWfigestDowngrade. – fix issues #29.DESCRIPTION This script uses MJPEG to stream a target’s...
View ArticleClik here to view.
Updates ATSCAN – perl script for vulnerable Server, Site and dork scanner.
whats new in 2016: + header changes. + Perl version + Script path + OS/Platform Version Print + and more usability.. ATSCAN is a perl script with function Dork scanner. XSS scanner. LFI scanner. Filter...
View ArticleClik here to view.
PenBox v1.1 ~ Pentesting tools auto downloader Script.
Penbox ~ Pentesting tools auto downloader Script. Requirements : python2.7 Changelog v1.1: + Privat Tool: 1) Get all websites 2) Get joomla websites 3) Get wordpress websites 4) Find control panel 5)...
View ArticleClik here to view.
V3n0m v4.0.1 – A tool to automate mass SQLi d0rk scanner.
Changelog v4.0.1: – Removed a couple broken dorks + Update setup.py + Create PKGBUILD + Update v3n0m.py V3n0M runs on Python3 [Live Project – Readding old features back in and improved for Python3]...
View ArticleClik here to view.
PenBox v1.2 ~ Pentesting tools auto downloader Script.
Penbox ~ Pentesting tools auto downloader Script. Requirements : python2.7 Changelog Version v1.2 : + All Os Compatible : Windows , Linux , OSX + pixiewps + commix + Web Hacking + Drupal Hacking +...
View ArticleClik here to view.
Updates NoSQLMap – Automated Mongo database and NoSQL web application...
Latest Change 11/1/2016: + nosqlmap.py : Added web connectivity debugging output & Fixed crash setting options. NoSQLMap is an open source Python tool designed to audit for as well as automate...
View ArticleClik here to view.
PyScan-Scanner ~ Vulnerability scanner with custom payload.
PyScan is a simple web vulnerability scanner you can start scan with python script : – python PyScan.py -u “http://site.com” –all (All payload scan) – python PyScan.py -u...
View ArticleClik here to view.
doork is an open-source passive vulnerability auditor tool.
doork is a open-source passive vulnerability auditor tool that automates the process of searching on Google information about specific website based on dorks. doork can update his own database from...
View Article