Tsunami Tsunami is a general-purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence. Why Tsunami? When security vulnerabilities or misconfigurations are actively exploited by attackers, organizations...
The post tsunami-security-scanner: general purpose network security scanner appeared first on Penetration Testing Tools.
pwndbg pwndbg (/poʊndbæg/) is a GDB plug-in that makes debugging with GDB suck less, with a focus on features needed by low-level software developers, hardware hackers, reverse-engineers and exploit developers. Pwndbg has a lot of...
The post pwndbg: Exploit Development and Reverse Engineering with GDB appeared first on Penetration Testing Tools.
MSSprinkler MSSprinkler is a password-spraying utility for organizations to test their M365 accounts from an external perspective. It employs a ‘low-and-slow’ approach to avoid locking out accounts and provides verbose information related to accounts...
The post MSSprinkler: A Non-Disruptive Password Spraying Tool for M365 appeared first on Penetration Testing Tools.
IPBan Service IPBan is a simple yet powerful solution for Windows and Linux to prevent botnets and hackers from breaching your computers. Protecting your security is the primary goal, but there are also performance...
The post IPBan: Free security software to block hackers and botnets appeared first on Penetration Testing Tools.
gitleaks – Check git repos for secrets and keys Gitleaks provides a way for you to find unencrypted secrets and other unwanted data types in git source code repositories. As part of its core...
The post gitleaks: Searches full repo history for secrets and keys appeared first on Penetration Testing Tools.
Ntoseye Windows kernel debugger for Linux hosts running Windows under KVM/QEMU. Features Command line interface WinDbg style commands Kernel debugging PDB fetching Breakpointing Scripting API (Lua) Supported Windows ntoseye currently only supports Windows 10...
The post Ntoseye: Windows kernel debugger for Linux hosts running Windows under KVM/QEMU appeared first on Penetration Testing Tools.
GetAltName GetAltName (or GAN) is a tool that can extract Subject Alternative Names found in SSL Certificates directly from HTTPS websites which can provide you with DNS names (subdomains) or virtual servers. This code extracts subdomain names from https sites...
The post getaltname: Extract subdomains from SSL certificates in HTTPS sites appeared first on Penetration Testing Tools.
TLS Attacker TLS-Attacker is a Java-based framework for analyzing TLS libraries. It can send arbitrary protocol messages in an arbitrary order to the TLS peer, and define their modifications using a provided interface. This...
The post TLS-Attacker: Java-based framework for analyzing TLS libraries appeared first on Penetration Testing Tools.
Segugio Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extracting the malware’s final stage configuration. Segugio was created to address the need for...
The post Segugio: Tracking Malware from Click to Configuration appeared first on Penetration Testing Tools.
msldap LDAP library for auditing MS AD Feature Comes with a built-in console LDAP client All parameters can be controlled via a convenient URL Supports integrated windows authentication (SSPI) both with NTLM and...
The post msldap: LDAP library for auditing MS AD appeared first on Penetration Testing Tools.
sn0int sn0int is an OSINT framework and package manager. It was built for IT security professionals and bug hunters to gather intelligence about a given target or about yourself. It is an enumerating attack...
The post sn0int: OSINT framework and package manager appeared first on Penetration Testing Tools.
NyxInvoke NyxInvoke is a versatile Rust-based tool designed for executing .NET assemblies, PowerShell commands/scripts, and Beacon Object Files (BOFs) with built-in patchless AMSI and ETW bypass capabilities. It can be compiled as either a...
The post NyxInvoke: The Rust-Based Tool Bypassing AMSI & ETW appeared first on Penetration Testing Tools.
nmap This library aims at providing idiomatic nmap bindings for go developers, to make it easier to write security audit tools using golang. What is nmap Nmap (Network Mapper) is a free and open-source network scanner...
The post nmap: Idiomatic nmap bindings for go developers appeared first on Penetration Testing Tools.
snuffleupagus Security module for php7 and php8 – Killing bugclasses and virtual-patching the rest! Snuffleupagus is a PHP 7+ and 8+ module designed to drastically raise the cost of attacks against websites, by killing entire...
The post snuffleupagus: Security module for php7 and php8 appeared first on Penetration Testing Tools.
cloudkicker self-hosted Azure OSINT tool It is very similar to what @DrAzureAD’s OSINT tool does (https://aadinternals.com/osint/). While this version lacks a few of the extra features, it is self-contained, requires no account, and can...
The post cloudkicker: self-hosted Azure OSINT tool appeared first on Penetration Testing Tools.
The Update Framework (TUF) The Update Framework (TUF) is written in Python and intended to conform to version 1.0 of the TUF specification. This implementation is in use in production systems but is also...
The post tuf: A Framework for Securing Software Update Systems appeared first on Penetration Testing Tools.
authelia Authelia is an open-source authentication and authorization server providing 2-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion of reverse proxies like nginx, Traefik or HAProxy to let them...
The post authelia: The Single Sign-On Multi-Factor portal for web apps appeared first on Penetration Testing Tools.
BEAR-C2 Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of encryption methods, including AES, XOR, DES, TLS, RC4, RSA and...
The post Bear C2 Exposed: Russian APT’s Advanced Encryption Tactics appeared first on Penetration Testing Tools.
Conjur Conjur provides secrets management and machine identity for modern infrastructure: Machine Authorization Markup Language (“MAML”), a role-based access policy language to define system components & their roles, privileges, and metadata A REST web...
The post conjur: secures secrets used by privileged users and machine identities appeared first on Penetration Testing Tools.
Rubeus Rubeus is a C# toolset for raw Kerberos interaction and abuses. It is heavily adapted from Benjamin Delpy’s Kekeo project (CC BY-NC-SA 4.0 license) and Vincent LE TOUX‘s MakeMeEnterpriseAdmin project (GPL v3.0 license). Full credit goes to Benjamin and Vincent for...
The post Rubeus: C# toolset for raw Kerberos interaction and abuses appeared first on Penetration Testing Tools.
