HackGit

2022-04-25 14:16:47 CVE-2022-21449

Zeek script to detect exploitation attempts of CVE-2022-21449 targeting TLS clients. Only works for TLS 1.2 and below.

https://github.com/thack1/CVE-2022-21449

#redteam #hackers #exploit #inject #cve Открыть/Комментировать

2022-04-25 14:14:00 PoisonApple

This is a command-line tool to perform various persistence mechanism techniques on macOS. This tool was designed to be used by threat hunters for cyber threat emulation purposes.

https://github.com/CyborgSecurity/PoisonApple Открыть/Комментировать

2022-04-25 09:55:16 ​Runtime Mobile Security (RMS)

Powered by FRIDA, is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime.

With RMS you can easily dump all loaded classes and relative methods, hook everything on the fly, trace methods args and return value, load custom scripts and many other useful stuff.

https://github.com/m0bilesecurity/RMS-Runtime-Mobile-Security Открыть/Комментировать

2022-04-25 09:49:22 ​mapCIDR

Developed to ease load distribution for mass scanning operations, it can be used both as a library and as independent CLI tool.

Features
CIDR expansion support.
CIDR slicing support.
CIDR/IP aggregation support.
CIDR based IP filter support.
IP/PORT shuffling support.
STD IN/OUT support.

https://github.com/projectdiscovery/mapcidr Открыть/Комментировать

2022-04-25 09:40:40 ​H4XTools

Multiple useful tools in one program.

Current tools:
IgDox Scrapes information from IG accounts.
WebSearch Searches the web using duckduckgo for a given query.
Phonelookup Looks up a phone number and returns information about it.
Iplookup Looks up an IP address and returns information about it.
IpScanner Scans an website for IP addresses.
UsernameSearch Tries to find a given username from websites like Steam and TikTok.
RealnameSearch Tries to find a given name from websites like Facebook and Linkedin.
WebhookSpammer Spams messages to a discord webhook.
WhoIs Looks up a domain and returns information about it.
Update Updates the tool if new versions are available.
About Tells you about the tool.
Exit Exits the tool.

https://github.com/HerraVp/H4X-Tools Открыть/Комментировать

2022-04-25 09:24:30 CyberChef

Simple intuitive web app for carrying out all manner of "cyber" operations within a web browser. These operations include simple encoding like XOR and Base64, more complex encryption like AES, DES and Blowfish, creating binary and hexdumps, compression and decompression of data, calculating hashes and checksums, IPv6 and X.509 parsing, changing character encodings, and much more.

The tool is designed to enable both technical and non-technical analysts to manipulate data in complex ways without having to deal with complex tools or algorithms. It was conceived, designed, built and incrementally improved by an analyst in their 10% innovation time over several years.

https://github.com/gchq/CyberChef Открыть/Комментировать

2022-04-24 18:18:00 ​FuzzingTool

Web penetration testing tool, that handles with fuzzing. After the test is completed, all possible vulnerable entries (and the response data) are saved on a report file.

https://github.com/NESCAU-UFLA/FuzzingTool Открыть/Комментировать

2022-04-24 17:17:00 ​The Fastest Hash Cracking System

Tired of going to every website to crack your hash? Search-That-Hash automates this process in less than 2 seconds. Search-That-Hash searches the most popular hash cracking sites and automatically inputs your hash(s) for cracking

Features:
Auto-Type Identification - No need to know the hash type, Search-That-Hash uses Name-That-Hash to get accurate results on the type of the hash.
Offline Mode - Not connected to the internet? No worries, Search-That-Hash will automatically run Hashcat for you.
Fast - We're all busy people and that's why we've dedicated time to make Search-That-Hash as fast as possible.
JSON API - As well as JSON output for CLI we also offer an API.
Accessible - We are 100% Accessible.
Extensible - Adding sites to Search-That-Hash is as easy as printing "hello world" !
Beautiful - The colours were hand-selected to be as gnarly and accessible as possible .
Ethical - We search hashes ethically and legally.

https://github.com/HashPals/Search-That-Hash Открыть/Комментировать

2022-04-24 15:15:00 Pync

arbitrary TCP and UDP connections and listens (Netcat for Python).

https://github.com/brenw0rth/pync Открыть/Комментировать

2022-04-24 14:49:35 ​NIVOS

Information Gathering And Scan Tool

Python tool that allows you to scan deeply, crack wifi, see people on your network. It applies to all linux operating systems.

https://github.com/TheSadError/NIVOS Открыть/Комментировать