The Latest Infosec News, Tools, and Exploits – Got Root?
Installing As with any backdoor type tool, there are two components – the bot that is run on the machine you want to control, and a command and control console where the backdoor connects to. […]
Installation git clone https://github.com/edoardottt/longtongue.git cd longtongue python3 longtongue.py Usage Download: https://github.com/edoardottt/longtongue
Both TCP and UDP protocols have 0 to 65535 ports. These 65535 ports can be divided into the following three ranges:- System or reserved ports: from 0 to 1023 User or registered ports: from 1024 […]
Deploy to target # Copy base64 data to clipboard from where you have internet access curl https://raw.githubusercontent.com/cytopia/pwncat/master/bin/pwncat | base64 # Paste it on the target machine echo “<BASE64 STRING>” | base64 -d > pwncat chmod […]
This project includes tools to build portable images of a Python shell (powered by xonsh and with xxh support) destinated to be used for pentesting and bug bounties (among others, ethical, hacking purposes). It includes […]
What is this? HuntKit is a collection of penetration testing, bug bounty hunting, capture the flag, red teaming tools in a single Docker image. Simply run the image and start using the tools. Why? I […]
BruteSpray takes nmap GNMAP/XML output or newline separated JSONS and automatically brute-forces services with default credentials using Medusa. BruteSpray can even find non-standard ports by using the -sV inside Nmap. Installation pip install -r requirements.txt […]
CloudFail is a tactical reconnaissance tool which aims to gather enough information about a target protected by Cloudflare in the hopes of discovering the location of the server. Using Tor to mask all requests, the […]
Key features Mode: url sxss pipe file server Class Key Feature Description Discovery Parameter analysis – Find reflected param– Find alive/bad special chars, event handler and attack code– Identification of injection points(HTML/JS/Attribute)inHTML-none inJS-none inJS-double inJS-single […]
Installation Download a prebuilt binary from releases page, unpack and run! or If you have recent go compiler installed: go get -u github.com/ffuf/ffuf (the same command works for updating) or git clone https://github.com/ffuf/ffuf ; cd […]
