Defense / Information Gathering / Web Information Gathering
by do son · Published March 29, 2022 · Last modified August 23, 2023
GitGuardian Shield: protect your secrets with GitGuardian GitGuardian shield (ggshield) is a CLI application that runs in your local environment or in a CI environment to help you detect more than 300 types of secrets,...
Information Gathering / Vulnerability Analysis
by do son · Published February 4, 2020 · Last modified August 20, 2023
naabu naabu is a fast port scanner tool written in Go that allows you to enumerate valid ports for hosts in a fast and reliable manner. It is a really simple tool that does...
Information Gathering / Web Information Gathering
by do son · Published June 14, 2019 · Last modified August 17, 2023
PhoneInfoga Information gathering & OSINT reconnaissance tool for phone numbers. One of the most advanced tools to scan phone numbers using only free resources. The goal is to first gather basic information such as...
Information Gathering / Post Exploitation
by do son · Published December 4, 2021 · Last modified August 10, 2023
SQLRecon Description A C# MS-SQL toolkit designed for offensive reconnaissance and post-exploitation. Mandatory Arguments The mandatory arguments consist of an authentication type (either Windows, Local or Azure), connection parameters and a module. -a – Authentication...
Information Gathering / Vulnerability Analysis
by do son · Published June 18, 2019 · Last modified August 8, 2023
Pacu Pacu is an open-source AWS exploitation framework, designed for offensive security testing against cloud environments. Created and maintained by Rhino Security Labs, Pacu allows penetration testers to exploit configuration flaws within an AWS...
Code Credential Scanner This script is intended to scan a large, diverse codebase for hard-coded credentials, or credentials present in configuration files. These represent a serious security issue and can be extremely hard to...
ADCSKiller – An ADCS Exploitation Automation Tool ADCSKiller is a Python-based tool designed to automate the process of discovering and exploiting Active Directory Certificate Services (ADCS) vulnerabilities. It leverages features of Certipy and Coercer...
Information Gathering / Web Information Gathering
by do son · Published July 6, 2019 · Last modified July 13, 2023
AIL framework AIL framework – Framework for Analysis of Information Leaks AIL is a modular framework to analyze potential information leaks from unstructured data sources like pastes from Pastebin or similar services or unstructured...
Information Gathering / Web Information Gathering
by do son · Published September 21, 2021 · Last modified June 29, 2023
XMap: The Internet Scanner XMap is a fast network scanner designed for performing Internet-wide IPv6 & IPv4 network research scanning. XMap is reimplemented and improved thoroughly from ZMap and is fully compatible with ZMap,...
Information Gathering / Web Information Gathering
by do son · Published June 20, 2022 · Last modified June 27, 2023
Fofa Viewer A simple FOFA client written in JavaFX Features Support tabs Feature-rich Context Menu on items Export query result into Excel spreadsheet Manually set max query count pre-query for non-premium users (Change the...
