PloitKit: The Hacker’s ToolBox
PloitKit is a Python-based GUI tool designed as one-stop for all other software. I was facing these kinds of problem when I need to switch to the different system, or...
Category: Sniffing & Spoofing
winregmitm: Perform MiTM attack and remove encryption on Windows Remote Registry Protocol
Winregmitm is a tool that performs filtering, processing, and forwarding of packets from the Windows Remote Registry protocol. To perform these actions, the tool must be placed in the middle...
pentmenu: a bash script for recon and DOS attacks
pentmenu A bash script inspired by pentbox. Designed to be a simple way to implement various network pentesting functions, including network attacks, using wherever possible readily available software commonly installed...
probeSniffer: tool for sniffing unencrypted wireless probe requests
probeSniffer A tool for sniffing unencrypted wireless probe requests from devices. new in 3.0: Less packet drop Offline / Faster vendor resolving Way better performance on slower systems Switching from...
bettercap-proxy-modules: bettercap transparent proxy example modules
This repository contains some bettercap transparent proxy example modules. HTTP(S) Proxy Modules http/beefbox.rb – Similar to injectjs but specialized to work with the BeEF framework. http/debug.rb – Debug HTTP requests and responses. http/curl_log.rb – A simple...
sylkie: IPv6 address spoofing with the Neighbor Discovery Protocol
sylkie A command line tool and library for testing networks for common address spoofing security vulnerabilities in IPv6 networks using the Neighbor Discovery Protocol. Build Get the code and compile...
FakeDns: python MITM DNS server with support for DNS Rebinding attacks
FakeDns Now with round-robin & improved options! A python regular-expression based DNS server! Download git clone https://github.com/Crypt0s/FakeDns.git USAGE: ./fakedns.py [-h] -c Config path [-i interface IP address] [–rebind] The dns.conf...
icebreaker: Gets plaintext Active Directory credentials
icebreaker Break the ice with that cute Active Directory environment over there. When you’re cold and alone staring in at an Active Directory party but don’t possess even a single...
Snarf: man-in-the-middle/relay suite
Snarf is a software suite to help increase the value of man-in-the-middle attacks. Many historical applications of techniques like SMB-Relay rely on assumptions and relegate these attacks to exploitation, rather...
tabi: BGP Hijack Detection Tool
TaBi – Track BGP Hijacks – BGP Hijack Detection Developed since 2011 for the needs of the French Internet Resilience Observatory, TaBi is a framework that eases the detection of BGP IP...
striptls: proxy poc implementation of STARTTLS stripping attacks
striptls – auditing proxy proxy poc implementation of STARTTLS stripping attacks. A generic tcp proxy implementation and audit tool to perform protocol independent ssl/tls interception and STARTTLSstripping attacks on SMTP, POP3, IMAP, FTP, NNTP, XMPP, ACAP and IRC. 🏆 Trophies CVE-2016-0772 – python: smtplib CVE-2016-10027 – Smack XMPP...
KRACK Detector: Detect and prevent KRACK attacks
KRACK Detector is a Python script to detect possible KRACK attacks against client devices on your network. The script is meant to be run on the Access Point rather than the client...
NtlmRelayToEWS: ntlm relay attack to Exchange Web Services
ntlmRelayToEWS Author: Arno0x0x – @Arno0x0x ntlmRelayToEWS is a tool for performing ntlm relay attacks on Exchange Web Services (EWS). It spawns a SMBListener on port 445 and an HTTPListener on port 80,...
net creds: Sniffs sensitive data from interface or pcap
net creds Thoroughly sniff passwords and hashes from an interface or pcap file. Concatenates fragmented packets and does not rely on ports for service identification. Sniffs URLs visited POST loads...
hakkuframework: Hakku Framework penetration testing
Hakku Framework What is Hakku Framework? Hakku is a simple framework that has been made for penetration testing tools. Hakku framework offers simple structure, basic CLI, and useful features for...
