Information Security
LDAPPER This tool was written to address a lot of the issues I was experiencing with ldapsearch and AD interaction in general. In particular, this tool addresses the following problems that I’ve experienced: Inability...
Shodanfy.py Get ports, vulnerabilities, information, banners,..etc for any IP with Shodan (no apikey! no rate limit!) Download git clone https://github.com/m4ll0k/Shodanfy.py.git Use python3 shodanfy.py Usage: python3 shodanfy.py <ip> [OPTIONS] –stdin Get ips from stdin (required)...
Inou Inou (pronounced as “I know you”) is a tool to discover the service behind a specific unknown port. It performs an active scan trying to communicate with the service using multiple protocols (even...
Angry IP scanner is a very fast IP address and port scanner. It can scan IP addresses in any range as well as any their ports. It is cross-platform and lightweight. Not requiring any...
LDAPDomainDump Active Directory information dumper via LDAP In an Active Directory domain, a lot of interesting information can be retrieved via LDAP by any authenticated user (or machine). This makes LDAP an interesting protocol...
ADE – ActiveDirectoryEnum Enumerate AD through LDAP with a collection of helpful scripts being bundled Included attacks/vectors ASREPRoasting Kerberoasting Dump AD as BloodHound JSON files Searching GPOs in SYSVOL for cpassword and decrypting Run...
Seeker Introduction Seeker utilizes HTML5, Javascript, JQuery and PHP to grab Device Information and GeoLocation with High Accuracy. Seeker Hosts a fake website on Apache Server and uses Ngrok to generate an SSL link which asks for Location Permission and if the user allows...
RidRelay A quick and easy way to get domain usernames while on an internal network. How it works RidRelay combines the SMB Relay attack, common lsarpc based queries and RID cycling to get a...
netsniff-ng is a free, performant Linux network analyzer and networking toolkit. If you will, the Swiss army knife for network packets. The gain of performance is reached by built-in zero-copy mechanisms, so that on...
intrigue-core Intrigue-core is a framework for external attack surface discovery and automated OSINT. There are a number of use cases: Application and Infrastructure (Asset) Discovery Security Research and Vulnerability Discovery Malware Campaign Research &...
Suggested Reading