Security Training Share
BloodHound is a single page Javascript web application, built on top of Linkurious, compiled with Electron, with a Neo4jdatabase fed by a PowerShell ingestor. BloodHound uses graph theory to reveal the hidden and often unintended relationships within...
sdrtrunk A cross-platform Java application for decoding, monitoring, recording and streaming trunked mobile and related radio protocols using Software Defined Radios (SDR). SDRtrunk is an integrated application for demodulating radio signals and decoding trunked...
EvilOSX A pure python, post-exploitation, remote administration tool (RAT) for macOS/OS X. Feature Emulate a terminal instance Simple extendable module system No bot dependencies (pure python) Undetected by anti-virus (OpenSSL AES-256 encrypted payloads) Persistent GUI and CLI support...
bettercap is the Swiss army knife for network attacks and monitoring. Bettercap v2.8 released. Changelog New Features single https certificate / authority fields can now be customized via dedicated module parameters ( http.server, https.proxy and api.rest ) implemented http.proxy.injectjs and https.proxy.injectjs parameters to...
ASTo – Apparatus Software Tool An IoT network security analysis tool and visualizer ASTo is security analysis tool for IoT networks. It is developed to support the Apparatus security framework. ASTo is based on electron and cytoscape.js....
Mimikatz is an open source gadget written in C, launched in April 2014. It is very powerful, support from the Windows system memory to extract clear text password, hash, PIN code and Kerberos credentials,...
BloodHound.py BloodHound.py is a Python-based ingestor for BloodHound, based on Impacket. This tool is currently in Beta and should not be considered feature-complete or fully stable. Limitations BloodHound.py currently has the following limitations: Currently only single...
Enumdb is brute force and post exploitation tool for MySQL and MSSQL databases. When provided a list of usernames and/or passwords, it will cycle through each looking for valid credentials. By default enumdb will...
CatMyPhish Search for a categorized domain that can be used during the red teaming engagement. Perfect to setup whitelisted domain for your Cobalt Strike beacon C&C. It relies on expireddomains.net to obtain a list...
airgeddon This is a multi-use bash script for Linux systems to audit wireless networks. Features Interface mode switcher (Monitor-Managed) keeping selection even on interface name changing DoS over wireless networks using different methods Assisted...
multitun – Tunnel everything over a harmless looking WebSocket! Multitun tunnels IPv4 over a WebSocket (RFC 6455), allowing bulk tunneling through one connection on, for example, port 80. One use for this is to...
ACLight A script for an advanced discovery of Privileged Accounts – includes Shadow Admins. The tool was published as part of the “Shadow Admins” research – more details on “Shadow Admins” are in the...
THRecon -Threat Hunting Reconnaissance Toolkit- Collect endpoint information for use in incident response, threat hunting, live forensics, baseline monitoring, etc. Host Info Processes* Services Autoruns Drivers ARP DLLs* EnvVars Hosts File ADS DNS Strings*...
FireShodanMap is a Real-time map that integrates Firebase, Google Maps, and Shodan. A search is carried out using Shodan searching for vulnerable devices and they are shown on the map for analysis. All data...
