LDAP Relay Scan A tool to check Domain Controllers for LDAP server protections regarding the relay of NTLM authentication. If you’re interested in the specifics of the error-based enumeration. There are a couple server-side...
HEY SERIAL! Programmatically create hunting rules for deserialization exploitation with multiple keywords (e.g. cmd.exe) gadget chains (e.g. CommonsCollection) object types (e.g. ViewState, Java, Python Pickle, PHP) encodings (e.g. Base64, raw) rule types (e.g. Snort,...
extrude Analyse binaries for missing security features, information disclosure, and more. 🚧 Extrude is in the early stages of development, and currently only supports ELF and MachO binaries. PE (Windows) binaries will be supported soon....
pip-audit pip-audit is a tool for scanning Python environments for packages with known vulnerabilities. It uses the Python Packaging Advisory Database via the PyPI JSON API as a source of vulnerability reports. This project is developed by Trail...
Vulnerability Analysis / Web Vulnerability Analysis
by do son · Published December 19, 2021 · Last modified October 25, 2022
JNDI Exploit Kit This is a forked modified version of the great exploitation tool created by @welk1n. This tool can be used to start an HTTP Server, RMI Server, and LDAP Server to exploit...
log4j-detector Detects Log4J versions on your file system within any application that are vulnerable to CVE-2021-44228 and CVE-2021-45046. It is able to even find instances that are hidden several layers deep. Works on Linux, Windows, and...
log4j-scan A fully automated, accurate, and extensive scanner for finding vulnerable log4j hosts. Features Support for lists of URLs. Fuzzing for more than 60 HTTP request headers (not only 3-4 headers as previously seen...
Programming / Vulnerability Analysis / Web Vulnerability Analysis
by do son · Published December 17, 2021
SWAN This branch contains the new generation of the SWAN framework. The SWAN version described in our ESEC/FSE 2020 paper is located on this branch. This paper no longer represents the current state of SWAN because we have...
espoofer espoofer is an open-source testing tool to bypass SPF, DKIM, and DMARC authentication in email systems. It helps mail server administrators and penetration testers to check whether the target email server and client are...
BLint BLint is a Binary Linter to check the security properties and capabilities in your executables. It is powered by lief Supported binary formats: ELF (GNU, musl) PE (exe, dll) Mach-O (x64, arm64) You...
Vulnerability Analysis / Web Vulnerability Analysis
by do son · Published November 27, 2021 · Last modified January 5, 2024
dep-scan dep-scan is a fully open-source security audit tool for project dependencies based on known vulnerabilities, advisories, and licenses limitations. Both local repositories and container images are supported as input. The tool is ideal...
Microsoft has invested a lot of money in security research. Of course, there is also a detailed bug bounty program to delimit the maximum bounty limit for researchers submitting vulnerabilities. In April 2020, Microsoft...
SGC: Towards Automating Code-Reuse Attacks Using Synthesized Gadget Chains SGC is a tool to automatically synthesize gadget chains. It builds a logical formula to encode the execution state at the time when the attacker...
TrojanSourceFinder TrojanSourceFinder helps developers detect “Trojan Source” vulnerability in source code. Trojan Source vulnerability allows an attacker to make malicious code appear innocent. In general, the attacker tries to lure by passing his code...
SMBeagle SMBeagle is an (SMB) fileshare auditing tool that hunts out all files it can see in the network and reports if the file can be read and/or written. All these findings are streamed...
Secure Your Connection
