HackGit

2022-06-11 17:17:00 Bettercap

Powerful easily extensible and portable framework written in Go which aims to offer to security researchers, red teamers and reverse engineers an easy to use, all-in-one solution with all the features they might possibly need for performing reconnaissance and attacking WiFi networks, Bluetooth Low Energy devices, wireless HID devices and Ethernet networks.

Features:
WiFi networks scanning, deauthentication attack, clientless PMKID association attack and automatic WPA/WPA2 client handshakes capture.
Bluetooth Low Energy devices scanning, characteristics enumeration, reading and writing.
2.4Ghz wireless devices scanning and MouseJacking attacks with over-the-air HID frames injection (with DuckyScript support).
Passive and active IP network hosts probing and recon.
ARP, DNS, NDP and DHCPv6 spoofers for MITM attacks on IPv4 and IPv6 based networks.
Proxies at packet level, TCP level and HTTP/HTTPS application level fully scriptable with easy to implement javascript plugins.
A powerful network sniffer for credentials harvesting which can also be used as a network protocol fuzzer.
A very fast port scanner.
A powerful REST API with support for asynchronous events notification on websocket to orchestrate your attacks easily.
A very convenient web UI.
More!

https://github.com/bettercap/bettercap

#redteam #best #tools #kali Открыть/Комментировать

2022-06-11 17:17:00 Ultimate WDAC Bypass List

A centralized resource for previously documented WDAC/Device Guard/UMCI bypass techniques as well for building/managing/testing WDAC policies

https://github.com/bohops/UltimateWDACBypassList Открыть/Комментировать

2022-06-11 11:33:26 ​Ghost Eye

Information Gathering Tool

Ghost Eye New Release. Ghost Eye is an Information Gathering, Footprinting, Scanner, and Recon Tool I made in #Python 3.

Since the last release of Ghost Eye, I've tweaked, removed, and added some new features. So that Ghost Eye would become more of a whole. For me, it remains a game of options so that together you get a complete overview of your target.

https://github.com/BullsEye0/ghost_eye Открыть/Комментировать

2022-06-11 11:11:00 ​BeatRev Version 2

Finished V2 of BeatRev a POC to frustrate/defeat Mal Analysts and Rev Eng's by 'keying' malware to a victim. Incorporated RDLL's, UUID's, and AV evasion.

https://github.com/Octoberfest7/BeatRev Открыть/Комментировать

2022-06-11 11:11:00 Sentinel-Attack.

Sentinel ATT&CK aims to simplify the rapid deployment of a threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel.

https://github.com/BlueTeamLabs/sentinel-attack Открыть/Комментировать

2022-06-11 11:11:00 ​SharpWnfSuite

This is the repository for Windows Notification Facility (WNF) tools.

https://github.com/daem0nc0re/SharpWnfSuite

Research:


Открыть/Комментировать

2022-06-11 11:11:00 ​Forbidden

Bypass 4xx HTTP response status codes. Based on PycURL.

Script uses multithreading, and is based on brute forcing so might have some false positives. Script uses colored output.

Results will be sorted by HTTP response status code ascending, content length descending, and ID ascending.

To filter out false positives, check each content length manually with the provided cURL command. If it does not results in bypass, just ignore all other results with the same content length.

https://github.com/ivan-sincek/forbidden Открыть/Комментировать

2022-06-11 10:26:33 ​offensive-azure

Collection of offensive tools targeting Microsoft Azure written in Python to be platform agnostic. The current list of tools can be found below with a brief description of their functionality.

https://github.com/blacklanternsecurity/offensive-azure

#redteam Открыть/Комментировать

2022-06-10 17:17:00 tpmee

TPMEavesEmu will help to exploit weak implementation of library or program that used TPM. This tool allow to:

identify the wrong configuration of the PCR
extract secrets release with TPM_CC_UNSEAL
get a privilege access on Linux Operating System due to a weak implementation of automatic decrytion program.

https://github.com/quarkslab/tpmee Открыть/Комментировать

2022-06-10 17:17:00 ​SSH PuTTY login bruteforcer

The ssh-putty-brute.ps1 is a wrapper script which uses PuTTY clients (either putty.exe or plink.exe) to perform SSH login bruteforce attacks.

https://github.com/InfosecMatter/SSH-PuTTY-login-bruteforcer

See the main article for detailed description:
https://www.infosecmatter.com/ssh-brute-force-attack-tool-using-putty-plink-ssh-putty-brute-ps1/ Открыть/Комментировать