Burp Suite extension is able to find reflected XSS on page in real-time while browsing on web-site and include some features as:...
A wrapper tool for shadowsocks to consistently bypass firewalls. Quick start Automatically connect The easiest way to run this tool is just...
One stop tool for auditing the security posture of AWS. Pre-requisites Python 2.7 pip git Installation git clone https://github.com/SecurityFTW/cs-suite.git cd cs-suite/ sudo...
Bash script purposed for system enumeration, vulnerability identification and privilege escalation. MIDA Multitool draws functionality from several of my previous scripts namely...
Just a year after Mirai—biggest IoT-based malware that caused vast Internet outages by launching massive DDoS attacks—completed its first anniversary, security researchers...
The motion seeks to make it more stressful for students to cheat in exams. As a section of the new rules, schools...
Taking advantage of Intel ME technology, within which attackers can execute unsigned code on the target machine. This leads to a full...
Not the first news of this nature but it was very recently discovered that Microsoft suffered a cyber attack from a group...
subjack is a Hostile Subdomain Takeover tool written in Go designed to scan a list of subdomains concurrently and identify ones that...
KRACK Detector is a Python script to detect possible KRACK attacks against client devices on your network. The script is meant to...
Many internet giants offer security measures like two-factor authentication (which you should really use) to keep your account safe from hackers. But...
Studies on the topic of in-browser miners have been going on the Chromium project’s bug tracker since mid-September when Coinhive, the first...
Agari supports email fraud on behalf of larger than 400 federal websites, including the real sites of the departments of Health and...
BaRMIe is a tool for enumerating and attacking Java RMI (Remote Method Invocation) services. RMI services often expose dangerous functionality without adequate...
A newly discovered unpatched attacking method that exploits a built-in feature of Microsoft Office is currently being used in various widespread malware...
Blazy is a modern login page bruteforcer. Features Easy target selections Smart form and error detection CSRF and Clickjacking Scanner Cloudflare and...
Security researchers have discovered several key management vulnerabilities in the core of Wi-Fi Protected Access II (WPA2) protocol that could allow an...
The DumpsterFire Toolset is a modular, menu-driven, cross-platform tool for building repeatable, time-delayed, distributed security events. Easily create custom event chains for...
Passive web scanner. EllaScanner is a simple passive web scanner. Using this tool you can simply check your site’s security state. Usage:...
Selenium powered Python script to automate searching the web for vulnerable applications. DorkNet can take a single dork or a list of...
Intelligence and Reconnaissance Package/Bundle installer. IntRec-Pack is a Bash script designed to download, install and deploy several quality OSINT, Recon and Threat...