6-Eyed-Spider This is a post-exploitation Red-Teaming tool. | HackGit

6-Eyed-Spider

This is a post-exploitation Red-Teaming tool. It gathers data going out and coming into the browser — data like POST requests, cookies, and chosen headers like (ANTI-CSRF headers), then sends all data to Strapi.

Strapi and MongoDB store the data so that 6-Eyed-Spider-CLI can use the collected data to perform specific attacks. Attacks using the users' valid cookies to execute commands, create admin users, enable unsafe functionalities, manipulate data in systems like VMware, Pfsense, and PanOS.

The tool consists of a couple of parts:
Dockerized MongoDB and Strapi
MongoDB stores the collected data.
Strapi receives and manages the collected data.
Google-Chrome Extention
Collects the browser's data from the blue team.
6-Eyed-Spider-CLI
Runs custom made plugins which make use of the collected data.

https://github.com/M507/6-Eyed-Spider

HackGit

👨‍🦼 21.29K
Софт, приложения

The channel was created for cybersecurity specialists. • Offensive Security. • RedTeam. • Malware Research. • BugBounty. • OSINT. • etc. Disclaimer:. t.me/hackgit/2082. Donations - Ads:. t...

Join
▲ Vote (1)

​6-Eyed-Spider This is a post-exploitation Red-Teaming tool. | HackGit

Login

6-Eyed-Spider This is a post-exploitation Red-Teaming tool. | HackGit