HTTP | MrHacker

FudgeC2 – C2 Framework For Purple-Teaming

FudgeC2 is a campaign orientated Powershell C2 framework built on Python3/Flask – Designed for team collaboration, client interaction, campaign timelining, and...

327

Vulnerabilities

Critical vulnerabilities found in HTTP/2 protocol

Thanks to some reports of service failures of the popular streaming platform Netflix, a group of vulnerability testing specialists has detected multiple...

261

Information Gathering

Arjun v1.1 – HTTP Parameter Discovery Suite

Features Multi-threading 3 modes of detection Regex powered heuristic scanning Huge list of 3370 parameter names Usage Note: Arjun doesn’t work with...

225

Vulnerability Analysis

testssl.sh – Testing TLS/SSL Encryption Anywhere On Any Port

testssl.sh is a free command line tool which checks a server’s service on any port for the support of TLS/SSL ciphers, protocols...

228

Vulnerability Analysis

Httplab – Inspect HTTP Requests And Forge Responses

The interactive web server. HTTPLabs let you inspect HTTP requests and forge responses. Install Golang go get github.com/gchaincl/httplab go install github.com/gchaincl/httplab/cmd/httplab Archlinux...

256

Vulnerability Analysis

Web-Traffic-Generator – A Quick And Dirty HTTP/S “Organic” Traffic Generator

Just a simple (poorly written) Python script that aimlessly “browses” the internet by starting at pre-defined rootURLs and randomly “clicking” links on...

249

Hacked

Here’s Why Chrome Is Now Showing Millions of Websites As “Not Secure”

Google is taking the privacy quite seriously, and the new Chrome security update will undoubtedly put a significant toll on all your...

284

Malware

Hackers Empty Target Bank Accounts Using Innovative BackSwap Malware

A Newly discovered sophisticated BackSwap Malware Empty victims bank account using most innovative methods and employes new technique to bypass browser protection. Nowadays...

260

Network Tools

Ddos2Track – An Script To Avoid HTTP Floods Attacks

With this tool you can block HTTP Flood Attacks and analyze them with a honeypot. THE TOOL SEND YOU AN ADVERTISING EMAIL...

289

Man-In-The-Middle

mitmproxy – Free and Open Source Interactive HTTPS Proxy

mitmproxy is your swiss-army knife for debugging, testing, privacy measurements, and penetration testing. It can be used to intercept, inspect, modify and replay...

265

Vulnerability Analysis

Wapiti 3.0.0 – The Web-Application Vulnerability Scanner

Wapiti allows you to audit the security of your websites or web applications. It performs “black-box” scans (it does not study the...

237

Vulnerability Analysis

Syhunt ScanTools 6.0 – Console Web Vulnerability Scan Tools

Syhunt ScanTools 6.0 adds advanced fingerprinting capabilities, enhanced spidering, injection and code scan capabilities, and a large number of improved checks. Adds...

230

Network Tools

SSLH – Applicative Protocol Multiplexer

sslh accepts connections on specified ports, and forwards them further based on tests performed on the first data packet sent by the...

259

Information Gathering

OpenWPM – Web Privacy Measurement Framework

Web Privacy Measurement is the observation of websites and serves to detect, characterize and quantify privacy-impacting behaviors. Applications of Web Privacy Measurement...