zizzania: Automated DeAuth attack
zizzania sniffs wireless traffic listening for WPA handshakes and dumping only those frames suitable to be decrypted (one beacon + EAPOL frames + data). In order to speed up the process, zizzania sends IEEE...
Category: Sniffing & Spoofing
bettercap v2.8 releases: Swiss army knife for network attacks and monitoring
bettercap is the Swiss army knife for network attacks and monitoring. Bettercap v2.8 released. Changelog New Features single https certificate / authority fields can now be customized via dedicated module parameters ( http.server, https.proxy and api.rest ) implemented http.proxy.injectjs and https.proxy.injectjs parameters to...
PenTesters Framework(PTF) v2.1.3 released
As a penetration tester, I know that you usually choose to use Kali Linux like penetration testing distribution. Kali Linux is a powerful distribution. It includes many, many pentesting tools. If you are Ubuntu/...
habu v0.0.81 released: Python Network Hacking Toolkit
Habu: Python Network Hacking Toolkit I’m developing Habu to teach (and learn) some concepts about Python and Network Hacking. These are basic functions that help with some tasks for Ethical Hacking and Penetration Testing....
tapioca: MITM network analysis
CERT Tapioca is a utility for testing mobile or any other application using MITM techniques. CERT Tapioca development was sponsored by the United States Army Armament Research, Development, and Engineering Center (ARDEC) as well...
evilginx2: MITM attack framework that allow to bypass 2-factor authentication
evilginx2 is a man-in-the-middle attack framework used for phishing login credentials along with session cookies, which in turn allows to bypass 2-factor authentication protection. This tool is a successor to Evilginx, released in 2017, which used...
rebel-framework: Advanced and easy to use penetration testing framework
REBEL-FRAMEWORK Advanced and easy to use penetration testing framework Module├ ├ net/iface ➤ Interface info. ├ net/map ➤ Hosts live Scan in LAN. ├ net/scan ➤ Scan [Ports, OS, Etc] IP. ├ net/vuln ➤...
Wireshark Analyzer 2.6.2 released: Open source network protocol analyzer
Wireshark Analyzer is a fantastic multi-platform open source network protocol analyzer. It can be used to check the analysis of data from the network host to survive, but also look to capture files from the...
dhcpwn v1.1.0 releases: DHCP IP exhaustion attacks tool
DHCPwn is a tool used for testing DHCP IP exhaustion attacks. It can also be used to sniff local DHCP traffic. Useful links: DHCP RFC1531 (obsolete) RFC1541 (obsolete) RFC2131 Bootstrap Protocol RFC951 Overview The DHCP protocol is connectionless and implemented via UDP. These two...
passivedns: network sniffer that logs all DNS server replies
passivedns A tool to collect DNS records passively to aid Incident handling, Network Security Monitoring (NSM) and general digital forensics. PassiveDNS sniffs traffic from an interface or reads a pcap-file and outputs the DNS-server...
whonow: A “malicious” DNS server for executing DNS Rebinding attacks
Whonow DNS Server A malicious DNS server for executing DNS Rebinding attacks on the fly. whonow lets you specify DNS responses and rebind rules dynamically using domain requests themselves. What’s great about dynamic DNS Rebinding rules is that you...
evil-ssdp: Spoof SSDP replies to phish for NTLM hashes on a network
evil-ssdp This tool responds to SSDP multicast discovery requests, posing as a generic UPNP device on a local network. Your spoofed device will magically appear in Windows Explorer on machines in your local network....
PytheM v0.8.1: Penetration Testing Framework
pythem – Penetration Testing Framework pythem is a multi-purpose pentest framework written in Python. It has been developed to be used by security researchers and security professionals. Usage Examples ARP spoofing – Man-in-the-middle. ARP+DNS...
ssh-mitm: SSH man-in-the-middle tool
SSH MITM v2.1 This penetration testing tool allows an auditor to intercept SSH connections. A patch applied to the OpenSSH v7.5p1 source code causes it to act as a proxy between the victim and...
