AutomatedProfiler: Automated forensics
AutomatedProfiler will parse an image utilizing RegRipper, RECmd, and various PowerShell cmdlets. The output of the script will be in a text file called ‘profiler.txt’ and will contain information about...
Category: Forensics
Modern Honey Network (MHN)
Modern Honey Network MHN is a centralized server for management and data collection of honeypots. MHN allows you to deploy sensors quickly and to collect data immediately, viewable from a...
iOS SandBox Dumper: exact locations of the application sandbox, application bundle
iOS SandBox Dumper SandBox-Dumper makes use of multiple private libraries to provide exact locations of the application sandbox, application bundle, and some other interesting information. During an iOS pentesting gig...
MTPot: Open Source Telnet Honeypot
CymmetriaResearch MTPot is a simple open source honeypot, released under the MIT license for the use of the community. Cymmetria Research, 2016. http://www.cymmetria.com/ Please consider trying out the MazeRunner Community Edition, the...
Rekall Memory Forensic Framework
The Rekall Forensic and Incident Response Framework The Rekall Framework is a completely open collection of tools, implemented in Python under the Apache and GNU General Public License, for the...
telnet iot honeypot: Python telnet honeypot for catching botnet binaries
Telnet IoT honeypot ‘Python telnet honeypot for catching botnet binaries’ This project implements a python telnet server trying to act as a honeypot for IoT Malware which spreads over horribly...
DumpsterFire: “Security Incidents In A Box!” for “Blue Team” & “Red Teams”
DumpsterFire Toolset DumpsterFire Toolset – “Security Incidents In A Box!” The DumpsterFire Toolset is a modular, menu-driven, cross-platform tool for building repeatable, time-delayed, distributed security events. Easily create custom event...
aumfor: Automated Memory Forensic
##AUMFOR (AUTOMATIC MEMORY FORENSIC) ##About AUMFOR AUMFOR is Automated Memory Forensic is GUI based Tool for helping Forensic Investigator by performing all complex and tedious work automatically, it also analyzes...
hontel: Telnet Honeypot
HonTel HonTel is a Honeypot for Telnet service. Basically, it is a Python v2.x application emulating the service inside the chroot environment. Originally it has been designed to be run inside the Ubuntu...
pcap2curl: Read a packet capture, extract HTTP requests
pcap2curl Read a packet capture, extract HTTP requests and turn them into cURL commands for replay. This is a simple (too simple?) Python script that will read a pcap, find...
Black Hat Arsenal Europe 2017 Tool List
On September 30th, 2017 @toolswatch announced the tools selected for Black Hat Arsenal Europe 2017. Most of the selected tools are already present on GitHub and some are yet to be uploaded. This article contains...
Code Pulse: a real-time code coverage tool for penetration testing activities
Code Pulse Code Pulse is a code coverage tool that works on running programs in real time. It uses the bytefrog tracing framework to monitor your Java applications and displays its findings...
Web Exploit Detector: detect possible infections, malicious code and suspicious files in web hosting environments
Web Exploit Detector The Web Exploit Detector is a Node.js application (and NPM module) used to detect possible infections, malicious code and suspicious files in web hosting environments. This application...
reversemap: Analyse SQL injection attempts in web server logs
reversemap Analyse SQL injection attempts in web server logs The program can either be run in batch mode or interactive mode. In batch mode, the program will accept Apache web...
antipwny: host based IDS for detecting meterpreter session
antipwny Authors: Rohan Vazarkar, David Bitner A host-based IDS/IPS written in C#, targeted at Metasploit Payloads. Current Features Scans Registry for Meterpreter Persistence/MetSvc Active Memory Scans to detect Meterpreter IDS/IPS...
