Archive | Hacking Tools

Winpayloads – Undetectable Windows Payload Generation

June 27, 2017 | 1,163 views 0

Winpayloads is a tool to provide undetectable Windows payload generation with some extras running on Python 2.7. It provides persistence, privilege escalation, shellcode invocation and much more. The tool uses metasploits meterpreter shellcode, injects the users IP and port into the shellcode and writes a python file that executes the shellcode using ctypes. This is […]

Share163

+11

Share1

Shares 165

Tags: post exploitation, undetectable windows payload, windows exploitation, windows payload, windows payload generator, windows shellcode invocation, windows-security, winpayloads

Posted in: Exploits/Vulnerabilities, Hacking Tools, Windows Hacking | Add a Comment

TheFatRat – Massive Exploitation Tool

June 24, 2017 | 2,871 views 0

TheFatRat is an easy-to-use Exploitation Tool that can help you to generate backdoors and post exploitation attacks like browser attack DLL files. This tool compiles malware with popular payloads and then the compiled malware can be executed on Windows, Linux, Mac OS X and Android. The malware that is created with this tool also has […]

Shares 595

Tags: automated exploitation, automated web exploitation, exploitation, exploitation tool, hacking, Hacking Tools, massive exploitation tool, massive exploiting tool, thefatrat

Posted in: Exploits/Vulnerabilities, Hacking Tools | Add a Comment

pyrasite – Inject Code Into Running Python Processes

June 20, 2017 | 1,206 views 0

pyrasite is a Python-based toolkit to inject code into running Python processes. pyrasite works with Python 2.4 and newer. Injection works between versions as well, so you can run Pyrasite under Python 3 and inject into 2, and vice versa. Usage

usage: pyrasite [-h] [--gdb-prefix GDB_PREFIX] [--verbose] [--output OUTPUT_TYPE] pid [filepath|payloadname]
       pyrasite --list-payloads

pyrasite - inject code into a running python process

positional arguments:
  pid                   The ID of the process to inject code into
  filepath|payloadname  The second argument must be a path to a
                        file that will be sent as a payload to the
                        target process or it must be the name of
                        an existing payload (see --list-payloads).

optional arguments:
  -h, --help            show this help message and exit
  --gdb-prefix GDB_PREFIX
                        GDB prefix (if specified during installation)
  --verbose             Verbose mode
  --output OUTPUT_TYPE  This option controls where the output from
                        the executed payload will be printed. If
                        the value is 'procstreams' (the default) then
                        the output is sent to the stdout/stderr of the
                        process. If the value is 'localterm' then the
                        output is piped back and printed on the local
                        terminal where pyrasite is being run.
  --list-payloads       List payloads that are delivered by pyrasite

For updates, visit https://github.com/lmacken/pyrasite

usage: pyrasite [-h] [--gdb-prefix GDB_PREFIX] [--verbose] [--output OUTPUT_TYPE] pid [filepath|payloadname]

pyrasite --list-payloads

pyrasite - inject code into a running python process

positional arguments:

pid The ID of the process to inject code into

filepath|payloadname The second argument must be a path to a

file that will be sent as a payload to the

target process or it must be the name of

an existing payload (see --list-payloads).

optional arguments:

-h, --help show this help message and exit

--gdb-prefix GDB_PREFIX

GDB prefix (if specified during installation)

--verbose Verbose mode

--output OUTPUT_TYPE This option controls where the output from

the executed payload will be printed. If

the value is 'procstreams' (the default) then

the output is sent to the stdout/stderr of the

process. If the value is 'localterm' then the

output is piped back and printed on the local

terminal where pyrasite is being run.

--list-payloads List payloads that are delivered by pyrasite

For updates, visit https://github.com/lmacken/pyrasite

You can download pyrasite here: pyrasite-2.0.zip Or read more here.

Shares 260

Tags: code injector, hacking python, inject code, inject code into python process, pyrasite, Python, python security

Posted in: Exploits/Vulnerabilities, Hacking Tools, Programming | Add a Comment

snitch – Information Gathering Tool Via Dorks

June 17, 2017 | 1,314 views 0

Snitch is an information gathering tool which automates the process for a specified domain. Using built-in dork categories, this tool helps gather specified information domains which can be found using web search engines. It can be quite useful in early phases of penetration tests (commonly called the Information Gathering phase). snitch can identify general information, […]

Shares 98

Tags: dorks, dorks tool, info gathering, info gathering tool, information gathering, information gathering tool, pen-testing, penetration-testing, Python, snitch

Posted in: Hacking Tools, Privacy, Web Hacking | Add a Comment

credmap – The Credential Mapper

June 13, 2017 | 1,831 views 2

Credmap is an open source credential mapper tool that was created to bring awareness to the dangers of credential reuse. It is capable of testing supplied user credentials on several known websites to test if the password has been reused on any of these. It is not uncommon for people who are not experts in […]

Shares 178

Tags: credential mapper, credential reuse, credmap, Python, reusing credentials, reusing username, test credentials, username reuse

Posted in: Hacking Tools, Password Cracking, Privacy | Add a Comment

LazyDroid – Android Security Assessment Tool

June 10, 2017 | 1,148 views 0

Lazydroid is a tool written as a bash script to facilitate some aspects of an Android Security Assessment. Features It provides some common tasks such as: Set the debug flag of an application to true Set the backup flag of an application to true Re-Build the application Re-Sign the application Smart log extraction of an […]

Shares 82

Tags: android, android hacking tool, android security, android security assessment, android security testing tool, android security tool, hacking android, lazydroid

Posted in: Hacking Tools | Add a Comment

evilscan – Massive IP Port Scanner

May 30, 2017 | 1,975 views 1

evilscan is a Node.js based massive IP Port scanner designed for concurrency, speed and scanning large ranges of IP addresses. Features Individual IP or IP range scan Individual port, ports list, or port range Banner grabbing (not fully implemented, works with verbose ports only) IAC negotiation Reverse dns Geolocation information Shell or JSON output Optional progress […]

Shares 140

Tags: evilscan, fast port scanner, ip scanner, nodejs, nodejs ip scanner, nodejs port scanner, nodejs scanner, port-scanner

Posted in: Hacking Tools, Network Hacking | Add a Comment

Sn1per – Penetration Testing Automation Scanner

May 23, 2017 | 5,445 views 0

Sn1per is a penetration testing automation scanner that can be used during a penetration test to enumerate and scan for vulnerabilities. Features Automatically collects basic recon (ie. whois, ping, DNS, etc.) Automatically launches Google hacking queries against a target domain Automatically enumerates open ports via NMap port scanning Automatically brute forces sub-domains, gathers DNS info […]

Shares 387

Tags: automated pen-testing, automated penetration testing, automated-hacking, hacking tool, hacking toolkit, Hacking Tools, kali, kali hacking tools, pen-testing, penetration-testing, sn1per, sn1per hacking kit

Posted in: Exploits/Vulnerabilities, Hacking Tools, Network Hacking, Web Hacking | Add a Comment

Pybelt – The Hackers Tool Belt

May 20, 2017 | 2,649 views 0

Pybelt is a Python-based hackers tool belt capable of cracking hashes without prior knowledge of the algorithm, scanning ports on a given host, searching for SQLi vulnerabilities in a given URL, verifying that your Google dorks work like they should, verifying the algorithm of a given hash, scanning a URL for XSS vulnerability, and finding […]

Shares 132

Tags: hackers tool belt, hacking kit, hacking toolkit, pybelt, Python, python hackers tool belt, python hacking kit, python hacking toolkit

Posted in: Cryptography, Hacking Tools, Network Hacking | Add a Comment

Github Dorks – Github Security Scanning Tool

May 16, 2017 | 2,626 views 0

Github search is quite a powerful and useful feature and can be used to search for sensitive data in repositories, this Github security scanning tool comes with a collection of Github dorks that can reveal sensitive personal and/or other proprietary organisational information such as private keys, credentials, authentication tokens and so on. github-dork.py is a […]

Shares 216

Tags: github, github dork scanner, github dorks, github leak scanner, github scanner, github security, github security scanner, github security tool, Python