The Metasploit Project is a computer security project which provides information about security vulnerabilities and aids in penetration testing and IDS signature development. It is a penetration testing platform that enables you to find,...
Forensics / Information Gathering / Metasploit / Network PenTest / Vulnerability Analysis / Web Exploitation / Web Information Gathering / Web Vulnerability Analysis / WebApp PenTest
by do son · Published May 19, 2017 · Last modified November 20, 2022
We have filled the world of hackers with infinite fantasy and fear, but with the rise of technology and security in the field of progress, hacking technology has become increasingly common. In fact, network...
Exploitation / Metasploit / Network PenTest
by do son · Published October 25, 2017 · Last modified October 25, 2022
dde_delivery This module generates an DDE command to place within a word document, that when executed, will retrieve a HTA payload via HTTP from an web server. Currently have not figured out how to...
Exploitation / Metasploit / Network PenTest
by do son · Published July 28, 2017 · Last modified October 25, 2022
Shellter Shellter is a dynamic shellcode injection tool, and the first truly dynamic PE infector ever created. It can be used in order to inject shellcode into native Windows applications (currently 32-bit applications only)....
Kage Kage (ka-geh) is a tool inspired by AhMyth designed for Metasploit RPC Server to interact with meterpreter sessions and generate payloads. For now, it only supports windows/meterpreter & android/meterpreter. Install Requirement Metasploit-framework must be installed and in...
Exploitation / Information Gathering / Metasploit / Network PenTest / Vulnerability Analysis
by do son · Published November 29, 2016 · Last modified October 10, 2021
Description The SSH server on the remote host accepts a publicly known static SSH private key for authentication. A remote attacker can log in to this host using this publicly known private key. Solution...
Exploitation / Post Exploitation
by do son · Published December 3, 2018 · Last modified June 3, 2020
NetRipper – this is a fairly recent tool that is positioned for the post-operating system based on Windows and uses a number of non-standard approaches to extract sensitive data. It uses API hooking in...
IoT / Machine Learning / Network PenTest
by do son · Published April 7, 2018 · Last modified May 9, 2020
Deep Exploit Fully automatic penetration test tool using Machine Learning. Deep Exploit is fully automated penetration tool linked with Metasploit. Deep Exploit has two exploitation modes. Intelligence mode Deep Exploit identifies the status of all opened...
Exploitivator This script uses two config files(exploitivator_scan.cfg and exploitivator.cfg). One to specify Nmap scans and parameters(exploitivator_scan.cfg), and one to specify Metasploit payloads and parameters(exploitivator.cfg). These use ‘##’ as a separator and have the following...
Metasploit / Network PenTest / Post Exploitation
by do son · Published June 15, 2017 · Last modified May 2, 2018
exploit/windows/local/bypassuac_fodhelper module This module will bypass Windows 10 UAC by hijacking a special key in the Registry under the current user hive, and inserting a custom command that will get invoked when the Windows...
