BlackWidow is a python based web application spider to gather subdomains, URL’s, dynamic parameters, email addresses and phone numbers from a target website. This project also includes Inject-X fuzzer to scan dynamic URL’s for common OWASP vulnerabilities. The supported features with this tool are: Automatically collect all URL’s from a target website Automatically collect all […]
PasteHunter is a python3 application that is designed to query a collection of sites that host publicly pasted data. For all the pastes it finds it scans the raw contents against a series of Yara rules looking for information that can be used by an organisation or a researcher. For setup instructions please see the […]
Striker is an offensive information and vulnerability scanner that will make enumeration of remote system using some online services this will make the attack not depending on user connection and it will make attacker avoid being detected or prevented by Intrusion detection system or web application firewalls. The tool will run SQLMap api to check […]
The words “Linux” and “cryptojacking” are the two words we usually do not see in the same sentence. But it seems like cybercriminals are expanding beyond the traditional Windows computers these time, for the purpose of maximizing profits through crypto mining using infected Linux servers this time. Josh Grunzweig of the prolific Palo Alto Unit […]
Apple witnessed a huge slump in sales this year and China came out as the country with the worst sales. As per a report by China’s Global Times, Apple is planning to combat this situation and could launch an exclusive iPhone for China at a cheaper price. The report also says that the China-specific iPhone […]
Seccubus automates regular vulnerability scans with various tools and aids security people in the fast analysis of its output, both on the first scan and on repeated scans. On repeated scan delta reporting ensures that findings only need to be judged when they first appear in the scan results or when their output changes. Seccubus […]
This is a quick-and-dirty scanner for the CVE-2019-0708 vulnerability in Microsoft Remote Desktop. Right now, there are about 900,000 machines on the public Internet vulnerable to this vulnerability, so many are to expect a worm soon like WannaCry and notPetya. Therefore, scan your networks and patch (or at least, enable NLA) on vulnerable systems. This […]
Rootkit Hunter is a scanner tool for Linux that scans for backdoors, rootkits and local exploits on your systems. Installs all dependencies using apt or yum Tested on: CentOS 5.8/6.4 Debian 6.0/7.0 Fedora 17 Ubuntu 10.04/12.04/12.10 Default temp dir is /tmp/rkhunter, this can be changed in install script. By default, the installer logs into $TMP/install.log […]
Samsung tweeted and then deleted that tweet stating that users should scan their Smart TVs for malware “every few weeks.” Smart devices are vulnerable to all sorts of digital threats, and this is not a hidden reality as we often hear about internet connected devices getting hacked or infected with viruses/malware. Since Smart TVs are […]
Swiss army knife for hackers that includes scanning for vulnerabilities, finding information about a target, performing exploitation techniques and much more. Getting Started Steps to setup : git clone <your-fork-url> cd vault sudo apt-get install python3-pip sudo pip3 install virtualenv virtualenv venv source venv/bin/activate pip3 install -r requirements.txt Starting Vault : cd vault/src python3 vault.py […]
Give an email address or username, socialscan returns whether it is available, taken or invalid on online platforms. Its speed also makes it suitable for bulk queries involving hundreds of usernames and email addresses. The following platforms are currently supported: Username Email Instagram ✔️ ✔️ Twitter ✔️ ✔️ GitHub ✔️ ✔️ Tumblr ✔️ ✔️ Lastfm […]
Yaazhini is a free vulnerability scanner for android APK and API. It is a user-friendly tool that you can easily scan any APK and API of android application and find the vulnerabilities. Yaazhini includes vulnerability scan of API, the vulnerability of APK and reporting section to generate a report. System Requirements Operating Systems Mac OSX(64bit), […]
Unless you are a pro at automating stuff, it is a herculean task to perform binge-scan for each and every engagement. The ultimate goal of this program is to solve this problem through automation; viz. running multiple scanning tools to discover vulnerabilities, effectively judge false-positives, collectively correlate results and saves precious time; all these under […]
Kubolt is simple utility for scanning public unauthinticated kubernetes clusters and run commands inside containers Why? Sometimes, the kubelet port 10250 is open to unauthorized access and makes it possible to run commands inside the containers using getrun function from kubelet: // getRun handles requests to run a command inside a container. func (s *Server) […]
OnePlus 7 Pro Fingerprint Scanner hacked within minutes using Fake Fingerprint that can be created using hot-glue due to inadequate security that is implemented in the OnePlus 7 Pro Fingerprinting unlock Feature. OnePlus, is a Chinese smartphone manufacturer based in Shenzhen, Guangdong, China and it is one of the leading Smartphone manufacturers in the world. […]
A group of threat actors have hacked into Perceptics, the most-used car plate license reader manufacturer in the United States; according to web application penetration testing specialists hackers accessed the company’s internal files and published them for free download in various dark web forums. Last Thursday, a group of hackers, self-appointed as “Boris Bullet-Dodge”, contacted […]
The Youtuber also claimed that the OnePlus 7 Pro’s fingerprint sensor is the quickest in-display sensor they have ever seen. The new OnePlus 7 Pro from OnePlus is definitely a refreshing change in the smartphones market because of its popup camera and triple cam setup, full-screen display, UFS 3.0, 30W Warp Charging and excellent functionality. […]
OnePlus has recently launched its much-awaited OnePlus 7 Pro which is considered as one of the best smartphones of 2019 by many. Packing the latest Snapdragon processor, triple camera setup, UFS 3.0 and a 30W Warp Charging, the smartphone is a complete package but how safe is it? Speaking of safety, a YouTuber has managed […]
TargetInfo is an opensource information gathering and IP scanning tool based on HackerTarget’s API Features Include MTR Traceroute Test Ping DNS Lookup Reverse DNS Lookup Whois Lookup GeoIP Lookup Reverse IP Lookup HTTP Headers Page Links AS Lookup Also read: Utools2 – Hacking Toolkit Install TargetInfo git clone https://github.com/JoyGhoshs/Targetinfo/ cd Targetinfo chmod +x target.sh ./target.sh
Vulmap is an open source online local vulnerability scanner project. It consists of online local vulnerability scanning programs for Windows and Linux operating systems. These scripts can be used for defensive and offensive purposes. It is possible to make vulnerability assessments using these scripts. Also they can be used for privilege escalation by pentesters/red teamers. […]
Bashter is a tool for scanning a Web-based Application. Bashter is very suitable for doing Bug Bounty or Penentration Testing. It is designed like a framework so you can easily add a script for detect vulnerability. For Example You can add something script like this: ${BASHTER_HOME}/parts/form/yourscript.bash ${WEB-FULLPATH} ${WEB-SOURCECODE} ${BASHTER_HOME}/parts/url/yourscript.bash ${WEB-FULLPATH} ${WEB-SOURCECODE} ${BASHTER_HOME}/parts/header/yourscript.bash ${WEB-FULLPATH} ${WEB-SOURCECODE} For […]