Penetration Testing • Information Security

Penetration Testing Blog

May 23, 2019

ezXSS v3.9 releases: test Blind Cross Site Scripting

ezXSS ezXSS is an easy way to test (blind) Cross-Site Scripting. Current features Easy to use dashboard with statics, payloads, view/share/search reports and more Payload generator Instant email alert on the payload Custom javascript...

Reporting

October 23, 2020

bulwark: organizational asset and vulnerability management tool

bulwark An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports. Changelog v6.1 Features email validate with prime ng (b40f588) forgot password with prime ng (36e1d10) login with...

Web Information Gathering

October 8, 2020

feroxbuster v1.1.1 releases: fast, simple, recursive content discovery tool written in Rust

What the heck is a ferox anyway? Ferox is short for Ferric Oxide. Ferric Oxide, simply put, is rust. The name rustbuster was taken, so I decided on a variation. What’s it do tho?...

Vulnerability Analysis

December 1, 2019

tfsec v0.34 releases: Static analysis powered security scanner for your terraform code

tfsec tfsec uses static analysis of your terraforms templates to spot potential security issues. Now with terraform v0.12+ support. Features Checks for sensitive data inclusion across all providers Checks for violations of AWS, Azure,...

Defense

September 11, 2019

PHP Antimalware Scanner v0.7.0.110 releases: php antimalware/antivirus scanner console script

AMWSCAN – PHP Antimalware Scanner PHP Antimalware Scanner, written in php, can scan PHP files and analyze your project to find malicious code inside it. It provides a text terminal console interface to scan...

WebApp PenTest

November 28, 2019

pown-cdb v2.5 releases: Chrome Debug Protocol tasks to help debug web applications

Pown CDB Pown CDB is a Chrome Debug Protocol utility. The main goal of the tool is to automate common tasks to help debug web applications from the command-line and actively monitor and intercept...

Programming

July 19, 2019

PHPStan v0.12.51 releases: PHP Static Analysis Tool

PHPStan focuses on finding errors in your code without actually running it. It catches whole classes of bugs even before you write tests for the code. It moves PHP closer to compiled languages in...

Information Gathering / Vulnerability Analysis

August 21, 2018

scantron v1.38 releases: A distributed nmap scanning framework

Scantron Scantron is a distributed nmap scanner comprised of two components. The first is a master node that consists of a web front end used for scheduling scans and storing nmap scan targets and...

Malware Analysis / Reverse Engineering

July 20, 2020

capa v1.4.1 releases: identify capabilities in executable files

capa capa detects capabilities in executable files. You run it against a PE file or shellcode and it tells you what it thinks the program can do. For example, it might suggest that the...

Defense

July 17, 2020

crowdsec v0.3.6 releases: open-source and lightweight software

About the crowdsec project Crowdsec is an open-source and lightweight software that allows you to detect peers with malevolent behaviors and block them from accessing your systems at various levels (infrastructural, system, applicative). To...

Penetration Testing Blog

ezXSS v3.9 releases: test Blind Cross Site Scripting

bulwark: organizational asset and vulnerability management tool

feroxbuster v1.1.1 releases: fast, simple, recursive content discovery tool written in Rust

tfsec v0.34 releases: Static analysis powered security scanner for your terraform code

PHP Antimalware Scanner v0.7.0.110 releases: php antimalware/antivirus scanner console script

pown-cdb v2.5 releases: Chrome Debug Protocol tasks to help debug web applications

PHPStan v0.12.51 releases: PHP Static Analysis Tool

scantron v1.38 releases: A distributed nmap scanning framework

capa v1.4.1 releases: identify capabilities in executable files

crowdsec v0.3.6 releases: open-source and lightweight software

Search

Suggested Reading