objection Runtime Mobile Exploration introduction – objection Runtime Mobile Exploration objection is a runtime mobile exploration toolkit, powered by Frida. It was built with the aim of helping…
View More objection v1.5.4 released: runtime mobile exploration
DevAudit: Development Auditing DevAudit is an open-source, cross-platform, multi-purpose security auditing tool targeted at developers and teams adopting DevOps and DevSecOps that detects security vulnerabilities…
View More DevAudit v3.3.0 releases: Open-source, cross-platform, multi-purpose security auditing tool
Tokenvator A tool to elevate privilege with Windows Tokens This tool has two methods of operation – interactive and argument modes Interactive Mode: C:> tokenvator.exe…
View More Tokenvator v2.1.1 releases: A tool to elevate privilege with Windows Tokens
DefectDojo is an open-source application vulnerability correlation and security orchestration application. It allows you to manage your application security program, maintain product and application information,…
View More django-DefectDojo v1.5.4rc2 releases: application vulnerability correlation & security orchestration application
pocsuite3 pocsuite3 is an open-sourced remote vulnerability testing and proof-of-concept development framework developed by the Knownsec 404 Team. It comes with a powerful proof-of-concept engine, many…
View More pocsuite3 v1.2.5 releases: open-sourced remote vulnerability testing framework
Active Directory Assessment and Privilege Escalation (ADAPE) Script This script will do the following: • Gather hashes via WPAD, LLMNR, and NBT-NS spoofing • Check…
View More ADAPE-Script: Active Directory Assessment and Privilege Escalation Script
The Social-Engineer Toolkit (SET) is specifically designed to perform advanced attacks against the human element. SET has quickly become a standard tool in a penetration…
View More Social-Engineer Toolkit (SET) v8.0-beta released
Enumdb is a brute force and post exploitation tool for MySQL and MSSQL databases. When provided a list of usernames and/or passwords, it will cycle…
View More enumdb v2.0.6 released: MySQL and MSSQL brute force and post exploitation tool
Windows Exploit Suggester – Next Generation (WES-NG) WES-NG is a tool which based on the output of Windows’ systeminfo utility provides you with the list of vulnerabilities…
View More wesng v0.95 releases: Windows Exploit Suggester
XSShell XSShell is a cross-site-scripting reverse shell… Okay, well maybe it’s not a true reverse shell, but it will allow you to interact in real…
View More xsshell: XSS reverse shell framework