Lucene search
K
KitploitMost viewed

6011 matches found

Kitploit
Kitploit
added 2018/03/03 9:26 p.m.23 views

ipChecker - Check If A IP Is From Tor Or Is A Malicious Proxy

Tool to check if a given IP is a node tor or an open proxy. Why? Sometimes all your throttles are not enough to stop brute force attacks or any kind of massive attacks, so it can help you to drop, some attackers who use tor or open proxies. How it works The ipChecker has some plugins which scrap...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2018/02/05 12:38 p.m.23 views

Stacer - Linux System Optimizer and Monitoring

Linux System Optimizer And Monitoring. Required Packages curl systemd Debian x64 1. Download stacer1.0.8amd64.deb from the Stacer releases page. 2. Run sudo dpkg -i stacer.deb on the downloaded package. 3. Launch Stacer using the installed stacer command. Fedora x64 1. Download stacer1.0.8x64.rpm...

7.3AI score
Exploits0References2
Kitploit
Kitploit
added 2018/01/19 8:39 p.m.23 views

Hershell - Simple TCP reverse shell written in Go

Simple TCP reverse shell written in Go . It uses TLS to secure the communications, and provide a certificate public key fingerprint pinning feature, preventing from traffic interception. Supported OS are: Windows Linux Mac OS FreeBSD and derivatives Why ? Although meterpreter payloads are great,...

1.4AI score
Exploits0References1
Kitploit
Kitploit
added 2018/01/17 12:55 p.m.23 views

One-Lin3r - Gives you one-liners that aids in penetration testing operations

One-Lin3r is simple and light-weight framework inspired by the web-delivery module in Metasploit. It consists of various one-liners that aids in penetration testing operations: Reverser: Give it IP & port and it returns a reverse shell liner ready for copy & paste. Dropper: Give it an...

7.4AI score
Exploits0References2
Kitploit
Kitploit
added 2018/01/10 1:11 p.m.23 views

SNMPwn - An SNMPv3 User Enumerator and Attack tool

SNMPwn is an SNMPv3 user enumerator and attack tool. It is a legitimate security tool designed to be used by security professionals and penetration testers against hosts you have permission to test. It takes advantage of the fact that SNMPv3 systems will respond with "Unknown user name" when an...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2017/12/27 1:18 p.m.23 views

Qubes OS - A Security-Oriented Operating System

Qubes OS is a security-oriented operating system OS. The OS is the software that runs all the other programs on a computer. Some examples of popular OSes are Microsoft Windows, Mac OS X, Android, and iOS. Qubes is free and open-source software FOSS. This means that everyone is free to use, copy,...

6.9AI score
Exploits0
Kitploit
Kitploit
added 2017/12/23 1:20 p.m.23 views

dnscrypt-autoinstall - Automatic installation and configuration of DNSCrypt

A script for installing and automatically configuring DNSCrypt on Linux-based systems. Description DNSCrypt is a protocol for securing communications between a client and a DNS resolver by encrypting DNS queries and responses. It verifies that responses you get from a DNS provider have actually...

7.2AI score
Exploits0References3
Kitploit
Kitploit
added 2017/11/15 9:30 p.m.23 views

Fake Sandbox Processes (FSP) - Tool to simulate fake processes of analysis sandbox/VM software

This small script will simulate fake processes of analysis, sandbox and/or VM software that some malware will try to avoid. You can download the original script made by @x0rz in the orig directory. You can also download my slightly optimized script in the main directory. The file is named fsp.ps1...

7.4AI score
Exploits0References1
Kitploit
Kitploit
added 2017/11/07 9:18 p.m.23 views

pcc - PHP Secure Configuration Checker

Check current PHP configuration for potential security flaws. Simply access this file from your webserver or run on CLI. Author This software was written by Ben Fuhrmannek, SektionEins GmbH, in an effort to automate php.ini checks and spend more time on cheerful tasks. Idea one single file for ea...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2017/10/24 1:11 p.m.23 views

LeakManager - A Tool To Help You Manage Your Leaks

A Tool To Help You Manage Your Leaks Install sudo apt-get install mongodb-org screen pip3 install -r requeriments.txt Usage screen -S leakManager hug -f index.py -p 1337 OR gunicorn index:hugwsgi -b 0.0.0.0:1337 OR uwsgi --http 0.0.0.0:1337 --wsgi-file index.py --callable hugwsgi ctrl + a + d...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2017/10/18 1:30 p.m.23 views

DorkNet - Selenium Powered Python Script To Automate Searching For Vulnerable Web Apps

Selenium powered Python script to automate searching the web for vulnerable applications. DorkNet can take a single dork or a list of dorks as arguments. After the proper command line arguments have been passed, the script will use Selenium and Geckodriver to find the results we want and save the...

7.5AI score
Exploits0References2
Kitploit
Kitploit
added 2017/09/13 2:30 p.m.23 views

pbscan - Faster And More Efficient Stateless SYN Scanner And Banner Grabber

polarbearscan is an attempt to do faster and more efficient banner grabbing and port scanning. It combines two different ideas which hopefully will make it somewhat worthy of your attention and time. The first of these ideas is to use stateless SYN scanning using cryptographically protected cooki...

6.9AI score
Exploits0References1
Kitploit
Kitploit
added 2017/08/28 2:11 p.m.23 views

Nili - Tool for Network Scan, Man in the Middle, Protocol Reverse Engineering and Fuzzing

Nili is a Tool for Network Scan, Man in the Middle, Protocol Reverse Engineering and Fuzzing. Prerequisites Python - Python Programming Language Scapy - Interactive Packet Manipulation Program Netzob - Protocol Reverse Engineering, Modeling and Fuzzing Installing Here is some Instructions for...

7.3AI score
Exploits0References4
Kitploit
Kitploit
added 2017/08/06 11:35 p.m.23 views

WS-Attacker v1.8 - Modular Framework For Web Services Penetration Testing

WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr University Bochum http://nds.rub.de/ and the Hackmanit GmbH http://hackmanit.de/ . The basic idea behind WS-Attacker is to provide a functionality to load WSDL...

7.1AI score
Exploits0References1
Kitploit
Kitploit
added 2017/06/28 3:12 p.m.23 views

morphHTA - Morphing Cobalt Strike PowerShell Evil HTA Generator

morphHTA is a Morphing Cobalt Strike PowerShell Evil HTA Generator Usage : usage: morph-hta.py -h --in --out --maxstrlen --maxvarlen --maxnumsplit optional arguments: -h, --help show this help message and exit --in File to input Cobalt Strike PowerShell HTA --out File to output the morphed HTA to...

7.2AI score
Exploits0References1
Kitploit
Kitploit
added 2017/06/16 3:22 p.m.23 views

AVET - AntiVirus Evasion Tool

AVET is an AntiVirus Evasion Tool, which was developed for making life easier for pentesters and for experimenting with antivirus evasion techniques. In version 1.1 lot of stuff was introduced, for a complete overview have a look at the CHANGELOG file. Now 64bit payloads can also be used, for...

7.4AI score
Exploits0References1
Kitploit
Kitploit
added 2017/05/27 3:23 p.m.23 views

QuickSand.io - Tool For Scanning Streams Within Office Documents Plus Xor DB Attack

QuickSand is a compact C framework to analyze suspected malware documents to 1 identify exploits in streams of different encodings, 2 locate and extract embedded executables. By having the ability to locate embedded obfuscated executables, QuickSand could detect documents that contain zero-day or...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2017/03/01 2:0 p.m.23 views

RogueSploit - Powerfull social engeering Wi-Fi trap!

RogueSploit is an open source automated script made to create a Fake Acces Point, with dhcpd server, dns spoofing, host redirection, browserautopwn1 or autopwn2 or beef+mitmf. TO DO LIST: Add BeEF;DONE Add MITMF;DONE Add BDFProxy; Add SeToolkit; Add Hostapd as fake ap; Add some features; What you...

7.1AI score
Exploits0References6
Kitploit
Kitploit
added 2017/02/21 1:58 p.m.23 views

Halcyon - IDE for Nmap Script (NSE) Development

Halcyon is the first IDE specifically focused on Nmap Script NSE Development. This research idea was originated while writing custom Nmap Scripts for Enterprise Penetration Testing Scenarios. The existing challenge in developing Nmap Scripts NSE was the lack of a development environment that give...

7.2AI score
Exploits0References1
Kitploit
Kitploit
added 2017/01/02 2:22 p.m.23 views

BARF - A multiplatform open source Binary Analysis and Reverse engineering Framework

The analysis of binary code is a crucial activity in many areas of the computer sciences and software engineering disciplines ranging from software security and program analysis to reverse engineering. Manual binary analysis is a difficult and time-consuming task and there are software tools that...

7.2AI score
Exploits0References6
Kitploit
Kitploit
added 2016/12/03 2:6 p.m.23 views

ShellcodeCompiler - Shellcode C/C++ Compiler for Windows

Shellcode Compiler is a program that compiles C/C++ style code into a small, position-independent and NULL-free shellcode for Windows. It is possible to call any Windows API function in a user-friendly way. Shellcode Compiler takes as input a source file and it uses it's own compiler to interpret...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2016/11/30 2:0 p.m.23 views

XSSER - From XSS to RCE

From XSS to RCE 2.5 - Black Hat Europe Arsenal 2016 Demo Version 2.0 - 2015: https://www.youtube.com/playlist?list=PLIjb28IYMQgqqqApoGRCZO40vP-eKsgf Version 2.5 - 2016: https://www.youtube.com/playlist?list=PLRic6PgcrsWGkgacL6WFnSQKVRZIoofRj Requirements Python 2.7., version 2.7.11 was used for...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2016/10/04 2:12 p.m.23 views

Sandcat Browser 5.3 - PenTest Oriented Web Browser

Sandcat is a lightweight multi-tabbed web browser that combines the speed and power of Chromium and Lua. Sandcat comes with built-in live headers, an extensible user interface and command line console, resource viewer, and many other features that are useful for web developers and pen-testers and...

7.4AI score
Exploits0References7
Kitploit
Kitploit
added 2016/09/23 2:36 p.m.23 views

Faraday v2.1 - Collaborative Penetration Test and Vulnerability Management Platform

Faraday is the Integrated Multiuser Risk Environment you were looking for! It maps and leverages all the knowledge you generate in real time, letting you track and understand your audits. Our dashboard for CISOs and managers uncovers the impact and risk being assessed by the audit in real-time...

7.1AI score
Exploits0References2
Kitploit
Kitploit
added 2016/08/15 5:42 p.m.23 views

Hydra 8.3 - Network Logon Cracker

A very fast network logon cracker which support many different services. See feature sets and services coverage page - incl. a speed comparison against ncrack and medusa.Number one of the biggest security holes are passwords, as every password security study shows. This tool is a proof of concept...

7.8AI score
Exploits0References1
Kitploit
Kitploit
added 2016/08/12 9:34 p.m.23 views

Panopticon - A Libre Cross-Platform Disassembler

Panopticon is a cross platform disassembler for reverse engineering written in Rust. Panopticon has functions for disassembling, analysing decompiling and patching binaries for various platforms and instruction sets. Panopticon comes with GUI for browsing control flow graphs, displaying analysis...

7.2AI score
Exploits0References2
Kitploit
Kitploit
added 2016/08/01 10:10 p.m.23 views

HellRaiser - Vulnerability Scanner

Install Install ruby, bundler and rails. https://gorails.com/setup/ubuntu/16.04 Install redis-server and nmap. sudo apt-get update sudo apt-get install redis-server nmap Clone HellRaiser repository, change to hellraiser web app directory and run bundle install. git clone...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2016/06/15 11:2 p.m.23 views

BrowserBackdoor - Secure JavaScript WebSocket Backdoor and a Ruby Command-Line Listener

BrowserBackdoor is an Electron application that uses a JavaScript WebSocket Backdoor to connect to the listener. BrowserBackdoorServer is a WebSocket server that listens for incoming WebSocket connections and creates a command-line interface for sending commands to the remote system. The JavaScri...

7.8AI score
Exploits0References11
Kitploit
Kitploit
added 2016/05/31 11:30 p.m.23 views

BurpSuiteJSBeautifier - Burp Suite JavaScript Beautifier

Most of the websites compress their resources such as JS files in order to increase the loading speed. However, security testing and debugging a compressed resource is not an easy task. This is a Burp Suite open source extension which makes it possible to beautify most of the resources properly...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2016/03/20 10:3 p.m.23 views

Lynis 2.2.0 - Security Auditing Tool for Unix/Linux Systems

Lynis is an open source security auditing tool. Commonly used by system administrators, security professionals and auditors, to evaluate the security defenses of their Linux/Unix based systems. It runs on the host itself, so it can perform very extensive security scans. Supported operating system...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2016/03/07 10:12 p.m.23 views

Climber - Check UNIX/Linux Systems For Privilege Escalation

Automated auditing tool to check UNIX/Linux systems misconfigurations which may allow local privilege escalation. Dependencies python = 2.7 python-crypto python-mako python-paramiko Note Climber needs Exscript, a Python module and a template processor for automating network connections over...

7.2AI score
Exploits0References2
Kitploit
Kitploit
added 2015/11/05 10:12 p.m.23 views

Toxy - Hackable Http Proxy To Simulate Server Failure Scenarios And Network Conditions

Toxy is a fully programmatic and hackable HTTP proxy to simulate server failure scenarios and unexpected network conditions , built for node.js / io.js . It was mainly designed for fuzzing/evil testing purposes, when toxy becomes particularly useful to cover fault tolerance and resiliency...

7.1AI score
Exploits0References15
Kitploit
Kitploit
added 2015/08/31 9:15 p.m.23 views

AutoBrowser - Create Report and Screenshots of HTTP/s Based Ports on the Network

AutoBrowser is a tool written in python for penetration testers. The purpose of this tool is to create report and screenshots of http/s based ports on the network. It analyze Nmap Report or scan with Nmap, Check the results with http/s request on each host using headless web browser, Grab a...

7.4AI score
Exploits0References1
Kitploit
Kitploit
added 2015/04/30 9:30 p.m.23 views

SQLassie - Effective Database Security

SQLassie is a free MySQL database firewall that prevents SQL injection attacks at runtime. SQLassie uses Bayesian classifiers to determine the likelihood of a query being an attack. This approach produces fewer false positives than other similar approaches. Security SQLassie prevents injection...

7.9AI score
Exploits0References1
Kitploit
Kitploit
added 2015/04/27 9:7 p.m.23 views

BackBox Linux 4.2 - Ubuntu-based Linux Distribution Penetration Test and Security Assessment

BackBox is a Linux distribution based on Ubuntu. It has been developed to perform penetration tests and security assessments. Designed to be fast, easy to use and provide a minimal yet complete desktop environment, thanks to its own software repositories, always being updated to the latest stable...

7.5AI score
Exploits0
Kitploit
Kitploit
added 2015/04/26 3:1 p.m.23 views

Packet Sender - The UDP and TCP Network Test Utility

Packet Sender is an open source utility to allow sending and receiving TCP and UDP packets. It is available free no ads / no bundleware for Windows , Mac , and Linux. It can be used for both commercial and personal use license. It's designed to be very easy to use while still providing enough...

7.5AI score
Exploits0References2
Kitploit
Kitploit
added 2015/03/29 11:16 p.m.23 views

Netsparker 4 - Easier to Use, More Automation and Much More Web Security Checks

Netsparker Web Application Security Scanner version 4. The main highlight of this new version is the new fully automated Form Authentication mechanism; it does not require you to record anything, supports 2 factor authentication and other authentication mechanisms that require a one time code to...

7.7AI score
Exploits0
Kitploit
Kitploit
added 2015/01/20 10:1 p.m.23 views

Exploit Pack - Open Source Security Project for Penetration Testing and Exploit Development

Exploit Pack, is an open source GPLv3 security tool, this means it is fully free and you can use it without any kind of restriction. Other security tools like Metasploit, Immunity Canvas, or Core Iimpact are ready to use as well but you will require an expensive license to get access to all the...

8.3AI score
Exploits0
Kitploit
Kitploit
added 2015/01/16 1:45 a.m.23 views

Tribler - Download Torrents using Tor-inspired onion routing

Tribler is a research project of Delft University of Technology. Tribler was created over nine years ago as a new open source Peer-to-Peer file sharing program. During this time over one million users have installed it successfully and three generations of Ph.D. students tested their algorithms i...

7.5AI score
Exploits0
Kitploit
Kitploit
added 2014/08/26 12:36 a.m.23 views

Mobius - Forensic Framework written in Python/GTK

Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tool. Release 0.5.20 published This release...

7.5AI score
Exploits0
Kitploit
Kitploit
added 2014/08/06 3:4 a.m.23 views

DomainHostingView v1.61 - Show domain hosting information

DomainHostingView is a utility for Windows that collects extensive information about a domain by using a series of DNS and WHOIS queries, and generates HTML report that can be displayed in any Web browser. The information displayed by the report of DomainHostingView includes: the hosting company ...

6.6AI score
Exploits0
Kitploit
Kitploit
added 2014/07/16 1:19 a.m.23 views

Password Security Scanner - Check the security/strength of your passwords on Windows

This utility scans the passwords stored by popular Windows applications Microsoft Outlook, Internet Explorer, Mozilla Firefox, and more... and displays security information about all these passwords. The security information of every stored password includes the total number of characters, number...

6.8AI score
Exploits0
Kitploit
Kitploit
added 2014/07/16 12:53 a.m.23 views

Hash Compare - File Integrity Comparison Tool

Hash Compare is the FREE File Hash comparison tool. It performs Hash based Integrity Comparison using any of the the popular hash algorthms such as MD5 , SHA1 or SHA256. To make the task easier and quicker, it also supports the 'File Drag & Drop' feature. That means you can just drag & drop one o...

7.3AI score
Exploits0
Kitploit
Kitploit
added 2014/07/14 10:48 p.m.23 views

WhoIsConnectedSniffer - Detect who is connected to your network without scanning

WhoIsConnectedSniffer is a network discovery tool that listens to network packets on your network adapter using a capture driver WinpCap or MS network monitor and accumulates a list of computer and devices currently connected to your network. WhoIsConnectedSniffer uses various protocols to detect...

6.9AI score
Exploits0
Kitploit
Kitploit
added 2014/06/22 10:46 p.m.23 views

Hexorbase - Multiple Database Management and Audit Tool

HexorBase is a database application designed for administering and auditing multiple database servers simultaneously from a centralized location, it is capable of performing SQL queries and bruteforce attacks against common database servers MySQL, SQLite, Microsoft SQL Server, Oracle, PostgreSQL...

7.8AI score
Exploits0
Kitploit
Kitploit
added 2014/06/15 4:30 p.m.23 views

Automater v2.0 - URL/Domain, IP Address, and Md5 Hash OSINT Tool

Automater is a URL/Domain, IP Address, and Md5 Hash OSINT tool aimed at making the analysis process easier for intrusion Analysts. Given a target URL, IP, or HASH or a file full of targets Automater will return relevant results from sources like the following: IPvoid.com, Robtex.com,...

6.8AI score
Exploits0References1
Kitploit
Kitploit
added 2014/06/13 8:19 p.m.23 views

YASAT - Yet Another Stupid Audit Tool

YASAT Yet Another Stupid Audit Tool is a simple stupid audit tool. Its goal is to be as simple as possible with minimum binary dependencies only sed, grep and cut Second goal is to document each test with maximum information and links to official documentation. It do many tests for checking...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2014/06/04 2:52 a.m.23 views

Hydra Network Logon Cracker 8.0 - Very fast network logon cracker which support many different services

A very fast network logon cracker which support many different services. See feature sets and services coverage page - incl. a speed comparison against ncrack and medusa.Number one of the biggest security holes are passwords, as every password security study shows. This tool is a proof of concept...

8.1AI score
Exploits0
Kitploit
Kitploit
added 2014/04/19 8:15 p.m.23 views

HonSSH - Log all SSH communications between a client and server

HonSSH is a high-interaction Honey Pot solution. HonSSH will sit between an attacker and a honey pot, creating two separate SSH connections between them. Features Captures all connection attempts to a text file. When an attacker sends a password guess, HonSSH can automatically replace their attem...

7.2AI score
Exploits0
Kitploit
Kitploit
added 2014/04/07 11:29 p.m.23 views

Passivedns - A network sniffer that logs all DNS server replies for use in a passive DNS setup

A tool to collect DNS records passively to aid Incident handling, Network Security Monitoring NSM and general digital forensics. PassiveDNS sniffes traffic from an interface or reads a pcap-file and outputs the DNS-server answers to a log file. PassiveDNS can cache/aggregate duplicate DNS answers...

7.2AI score
Exploits0References1
Total number of security vulnerabilities5000