Tools Archives — Page 22 of 26

Ruler

June 26, 2020September 29, 2020 Admin

Introduction Ruler is a tool that allows you to interact with Exchange servers remotely, through either the MAPI/HTTP or RPC/HTTP protocol. The main aim is abuse the client-side Outlook features and gain a shell remotely. […]

RPCScan

June 26, 2020September 29, 2020 Admin

Tool to communicate with RPC services and check misconfigurations on NFS shares This tool currently has the following features: Listing RPC services using portmap Listing mountpoints on hosts using mount service Perform recursive listing on […]

EagleShell

June 26, 2020September 29, 2020 Admin

About: EagleShell is a high-quality tool that aims to improve YOUR pentest. Each and one of the scripts are helpful during a pentest. It comes filled with scripts that will improve your pentest and make […]

CrackMapExec – Automate Post Exploitation In Active Directory

June 26, 2020June 30, 2021 Admin

CrackMapExec (a.k.a CME) is a post-exploitation tool that helps automate assessing the security of large Active Directory networks. Built with stealth in mind, CME follows the concept of “Living off the Land”: abusing built-in Active […]

Kaboom – Automatic Pentest Bash Script

May 15, 2019September 29, 2020 Admin

Kaboom is a bash script that automates the first two phases of a penetration test. All informations collected are saved into a directory hierarchy very simple to browser (also in the case of multiple targets). […]

Archery – A Security Tool

March 8, 2019September 29, 2020 Admin

Archery is an opensource vulnerability assessment and management tool which helps developers and pentesters to perform scans and manage vulnerabilities. Archery uses popular opensource tools to perform comprehensive scanning for web application and network. It […]

Commix – Automated All-in-One OS command injection and exploitation tool

November 30, 2018September 29, 2020 Admin

Commix (short for [comm]and [i]njection e[x]ploiter) is an automated tool written by Anastasios Stasinopoulos (@ancst) that can be used from web developers, penetration testers or even security researchers in order to test web-based applications with […]

RouterSploit – Exploitation Framework for Embedded Devices

November 30, 2018September 29, 2020 Admin

The RouterSploit Framework is an open-source exploitation framework dedicated to embedded devices. It consists of various modules that aids penetration testing operations: [*]exploits – modules that take advantage of identified vulnerabilities [*]creds – modules designed […]

0xWPBF – WordPress Users Enumerate and Brute Force Attack

November 27, 2018September 29, 2020 Admin

0xWPBF is an enumeration and bruteforce attack tool against WordPress Installation: [su_quote] 1) git clone https://github.com/0xAbdullah/0xWPBF.git 2) pip2 install mechanicalsoup 3) pip2 install PrettyTable [/su_quote] Usage: [su_quote] python 0xwpbf.py -s http://example.com [E] Quick scan of […]

LazyRecon – Automate Reconnaissance Process

November 27, 2018September 29, 2020 Admin

About: This script is intended to automate your reconnaissance process in an organized fashion by performing the following: [*]Create a dated folder with recon notes [*]Grab subdomains using Sublist3r and certspotter [*]Grab a screenshot of […]