Lucene search
K
KitploitMost viewed

6011 matches found

Kitploit
Kitploit
added 2018/04/11 1:9 p.m.31 views

Mercury - A Hacking Tool Used To Collect Information And Use The Information To Further Hurt The Target

Mercury is a hacking tool used to collect information and use the information to further hurt the target. Installation Requires Python2 Linux apt-get install python2 git clone https://www.github.com/MetaChar/Mercury pip install -r requirements.txt Features BruteForce Mercury uses Selenium to...

7.1AI score
Exploits0References1
Kitploit
Kitploit
added 2018/04/04 1:6 p.m.31 views

Apktool - A Tool For Reverse Engineering Android APK Files

A tool for reverse engineering 3rd party, closed, binary Android apps. It can decode resources to nearly original form and rebuild them after making some modifications. It also makes working with an app easier because of the project like file structure and automation of some repetitive tasks like...

7.4AI score
Exploits0References6
Kitploit
Kitploit
added 2018/02/22 1:12 p.m.31 views

OWASP DependencyCheck - A Software Composition Analysis Utility That Detects Publicly Disclosed Vulnerabilities In Application Dependencies

Dependency-Check is a utility that attempts to detect publicly disclosed vulnerabilities contained within project dependencies. It does this by determining if there is a Common Platform Enumeration CPE identifier for a given dependency. If found, it will generate a report linking to the associate...

7.2AI score
Exploits0References6
Kitploit
Kitploit
added 2018/02/11 1:12 p.m.31 views

ID-entify - Search for information related to a domain (Emails, Domains, Information on WEB technology, Type of Firewall, NS and MX records)

ID-entify is a tool that allows you to search for information in the passive way related to a domain. Developed By Carlos Ramírez López. SEARCH FOR INFORMATION RELATED TO A DOMAIN: Emails IP addresses Domains Information on WEB technology Type of Firewall NS and MX records Nmap to IP addresses an...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2018/02/06 9:9 p.m.31 views

LaZagneForensic - Decrypt Windows Credentials From Another Host

LaZagne uses an internal Windows API called CryptUnprotectData to decrypt user passwords. This API should be called on the victim user session, otherwise, it does not work. If the computer has not been started when the analysis is realized on an offline mounted disk, or if we do not want to drop ...

7.5AI score
Exploits0References6
Kitploit
Kitploit
added 2018/02/03 1:0 p.m.31 views

ICMPExfil - Exfiltrate data with ICMP

ICMP Exfil allows you to transmit data via valid ICMP packets. You use the client script to pass in data you wish to exfiltrate, then on the device you're transmitting to you run the server. Anyone watching-- human or security system-- will just see valid ICMP packets, there's nothing malicious...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2017/12/30 9:0 p.m.31 views

Crips - IP Tools To quickly get information about IP Address's, Web Pages and DNS records

This Tools is a collection of online IP Tools that can be used to quickly get information about IP Address's, Web Pages and DNS records. Menu Whois lookup Traceroute DNS Lookup Reverse DNS Lookup GeoIP Lookup Port Scan Reverse IP Lookup INSTALL & UPDATE Exit Whois lookup Determine the registered...

7.1AI score
Exploits0References3
Kitploit
Kitploit
added 2017/11/29 1:30 p.m.31 views

Amber - POC Reflective PE Packer

Amber is a proof of concept packer, it can pack regularly compiled PE files into reflective PE files that can be used as multi stage infection payloads. If you want to learn the packing methodology used inside the Amber check out below. PS: This is not a complete tool some things may break so tak...

7.2AI score
Exploits0References1
Kitploit
Kitploit
added 2017/11/20 1:30 p.m.31 views

OnionShare - Securely and anonymously share a file of any size

OnionShare lets you securely and anonymously share files of any size. It works by starting a web server, making it accessible as a Tor onion service, and generating an unguessable URL to access and download the files. It doesn't require setting up a server on the internet somewhere or using a thi...

7.1AI score
Exploits0References1
Kitploit
Kitploit
added 2017/10/29 1:37 p.m.31 views

Exitmap - A Fast and Modular Scanner for TOR Exit Relays

Exitmap is a fast and modular Python-based scanner for Tor exit relays. Exitmap modules implement tasks that are run over a subset of all exit relays. If you have a background in functional programming, think of exitmap as a map interface for Tor exit relays: Modules can perform any TCP-based...

7.1AI score
Exploits0References2
Kitploit
Kitploit
added 2017/10/03 9:11 p.m.31 views

XCat - Automate XPath Injection Attacks to Retrieve Documents

XCat is a command line program that aides in the exploitation of blind XPath injection vulnerabilities. It can be used to retrieve the whole XML document being processed by a vulnerable XPath query, read arbitrary files on the hosts filesystem and utilize out of bound HTTP requests to make the...

7.9AI score
Exploits0References1
Kitploit
Kitploit
added 2017/08/16 2:24 p.m.31 views

PiSavar - Detects PineAP Module and Starts Deauthentication Attack (for fake access points)

The goal of this project is to find out the fake access points opened by the WiFi pineapple device using the PineAP module and to prevent clients from being affected by initiating a deauthentication attack to the attacking device. How PineAP Module Works Collects SSID information Creates SSID poo...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2017/08/13 9:24 p.m.31 views

Phishery - An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector

Phishery is a Simple SSL Enabled HTTP server with the primary purpose of phishing credentials via Basic Authentication. Phishery also provides the ability easily to inject the URL into a .docx Word document. The power of phishery is best demonstrated by setting a Word document's template to a...

7.3AI score
Exploits0References3
Kitploit
Kitploit
added 2017/07/20 2:49 p.m.31 views

NagaScan - Distributed Passive Scanner for Web Application

What is NagaScan NagaScan is a distributed passive vulnerability scanner for Web application. What NagaScan do NagaScan currently support some common Web application vulnerabilities, e.g. XSS, SQL Injection, File Inclusion etc How NagaScan work Config a proxy, e.g. Web Browser proxy or mobile Wi-...

8.3AI score
Exploits0References3
Kitploit
Kitploit
added 2017/06/23 7:41 p.m.31 views

ShellStack - A PHP Based Tool That Helps You To Manage All Your Backdoored Websites Efficiently

ShellStack is a PHP based backdoor management tool. This Tool comes handy for "HACKERS" who wish to keep a track of every website they hack. The tool generates a backdoor file which you just have to upload to the site and put the backdoor URL in the shells.txt present in the tool's directory. Wit...

7.4AI score
Exploits0References1
Kitploit
Kitploit
added 2017/03/04 2:24 p.m.31 views

shootback - a reverse TCP tunnel let you access target behind NAT or firewall

shootback is a reverse TCP tunnel let you access target behind NAT or firewall Consumes less than 1% CPU and 8MB memory under 800 concurrency. slaver is single file and only depends on python2.7/3.4+ standard library. How it works Typical Scene 1. Access company/school computerno internet IP from...

7.2AI score
Exploits0References2
Kitploit
Kitploit
added 2017/01/23 2:18 p.m.31 views

iptodomain - This tool extract domains from IP address based in the information saved in virustotal

This tool allows you to extract domains from a IP range, using the historic information archived in Virustotalusing API key. It is usefull if you want to know what domains are behind of this IP address, for example in bug bounty programs one of the first steps is to extract subdomains, this tool...

6.9AI score
Exploits0References1
Kitploit
Kitploit
added 2016/12/05 2:12 p.m.31 views

Hashcat v3.20 - World's Fastest and Most Advanced Password Recovery Utility

hashcat is the world's fastest and most advanced password recovery utility, supporting five unique modes of attack for over 160 highly-optimized hashing algorithms. hashcat currently supports CPU's, GPU's other hardware-accelerators on Linux, Windows and OSX, and has facilities to help enable...

6.8AI score
Exploits0
Kitploit
Kitploit
added 2016/06/06 6:33 p.m.31 views

Parrot OS 3.0 (Lithium) - Friendly OS designed for Pentesting, Computer Forensic, Hacking, Cloud pentesting, Privacy/Anonimity and Cryptography

Parrot Security OS is a cloud friendly operating system designed for Pentesting, Computer Forensic, Reverse engineering, Hacking, Cloud pentesting, privacy/anonimity and cryptography. Based on Debian and developed by Frozenbox network. Who can use it Parrot is designed for everyone, from the Pro...

7.3AI score
Exploits0
Kitploit
Kitploit
added 2016/05/18 11:30 p.m.31 views

EhTrace - Tool for Tracing Execution of Binaries on Windows

Eh'Trace pronounced ATrace is a binary tracing tool for Windows. Implemented in C but has some interesting properties that may make it suitable for tracing binaries when other methods are not sufficient, in particular EhTrace does not require changes to a binary to enable traces, despite being ab...

7.5AI score
Exploits0References3
Kitploit
Kitploit
added 2016/04/29 10:43 p.m.31 views

Weeman v1.7 - HTTP Server for Phishing

HTTP server for phishing in python. and framework Usually you will want to run Weeman with DNS spoof attack. see dsniff, ettercap. Press 1.7 - is out 25-03-2016 Added profiles Weeman framework 0.1 is out !!! Added command line options. Beautifulsoup dependency removed. Weeman will do the followin...

7.2AI score
Exploits0References1
Kitploit
Kitploit
added 2016/03/02 9:33 p.m.31 views

Whatportis - A Command To Search Port Names And numbers

It often happens that we need to find the default port number for a specific service, or what service is normally listening on a given port. Usage This tool allows you to find what port is associated with a service: $ whatportis redis...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2016/02/15 10:30 p.m.31 views

JReFrameworker - Practical Managed Code Rootkits for Java

This project aims to extend the work done by Erez Metula in his book Managed Code Rootkits: Hooking into Runtime Environments. The work outlines a tool ReFrameworker that claims to be a framework modification tool capable of performing any modification task, however the tool falls short in...

7.6AI score
Exploits0References1
Kitploit
Kitploit
added 2016/01/28 10:19 p.m.31 views

XXEinjector - Tool For Automatic Exploitation Of XXE Vulnerability

XXEinjector automates retrieving files using direct and out of band methods. Directory listing only works in Java applications. Bruteforcing method needs to be used for other applications. Options --host Mandatory - our IP address for reverse connections. --host=192.168.0.2 --file Mandatory - fil...

8.5AI score
Exploits0References1
Kitploit
Kitploit
added 2015/12/07 10:1 p.m.31 views

Xiaopan OS - Pentesting Distribution for Wireless Security Enthusiasts

Xiaopan OS is an easy to use software package for beginners and experts that includes a number of advanced tools to penetrate wireless networks. Based on the Tiny Core Linux TCL operating system OS, it has a slick graphical user interface GUI requiring no need for typing Linux commands. Xiaopan O...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2015/09/23 7:32 p.m.31 views

Evil FOCA - MITM, DoS, DNS Hijacking in IPv4 and IPv6 Penetration Testing Tool

Evil Foca is a tool for security pentesters and auditors whose purpose it is to test security in IPv4 and IPv6 data networks. The tool is capable of carrying out various attacks such as: MITM over IPv4 networks with ARP Spoofing and DHCP ACK Injection. MITM on IPv6 networks with Neighbor...

6.9AI score
Exploits0References1
Kitploit
Kitploit
added 2015/09/19 9:4 p.m.31 views

Speedtest - Command Line Interface for Testing Internet Bandwidth

speedtest-cli is a command line interface for testing internet bandwidth using speedtest.net Installation pip / easyinstall pip install speedtest-cli or easyinstall speedtest-cli Github pip install git+https://github.com/sivel/speedtest-cli.git or git clone...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2015/08/26 2:0 p.m.31 views

SubDomain Analyzer - Get detailed information of a domain

The "SubDomain Analyzer" tool written in Python language. The purpose of "SubDomain Analyzer" getting full detailed information of selected domain. The "SubDomain Analyzer" gets data from domain by following steps: 1. Trying to get the zone tranfer file. 2. Gathers all information from DNS record...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2014/11/14 1:43 a.m.31 views

Radare - The Reverse Engineering Framework

r2 is a rewrite from scratch of radare in order to provide a set of libraries and tools to work with binary files This is the rewrite of radare 1.x branch to provide a framework with a set of libraries and programs to work with binary data. Radare project started as a forensics tool, an scriptabl...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2014/06/26 3:45 p.m.31 views

SmartSPLAT - Tool to troubleshoot Checkpoint firewall issues and perform management tasks

Smart SPLAT is a freeware software to troubleshoot Checkpoint firewall issues and perform management tasks. It periodically checks for an update and when a new release is published, updates itself via the SmartSPLAT web site. SmartSPLAT lets you connect to your firewall via secure channel SSH...

7.5AI score
Exploits0
Kitploit
Kitploit
added 2014/04/14 10:25 p.m.31 views

Kvasir - Penetration Testing Data Management Tool

Penetration Testing Data Management can be a nightmware, because well you generate a LOT of data and some information when conducing a penetration test, especially using tools – they return lots of actual and potential vulnerabilitites to review. Port scanners can return thousands of ports for ju...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2014/03/24 10:22 p.m.31 views

[AdwCleaner] Removal Tool for Adware, Toolbars and Hijacker

AdwCleaner is a free removal tool for : Adware ads softwares PUP/LPI Potentially Undesirable Program Toolbars Hijacker Hijack of the browser's homepage It works with a Search and Delete mode. It can be easily uninstalled using the mode "Uninstall". It's compatible with Windows XP, Vista, 7, 8, 8....

7.4AI score
Exploits0
Kitploit
Kitploit
added 2014/03/05 7:59 p.m.31 views

[Parsero] Robots.txt audit tool

.PNG Parsero is a free script written in Python which reads the Robots.txt file of a web server and looks at the Disallow entries. The Disallow entries are the URL path of directories or files hosted on a web server which the administrators don't want to be indexed by the crawlers. For example,...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2014/01/26 11:22 p.m.31 views

[XSS Shell] XSS Backdoor and Zombie Manager

XSS Shell is powerful a XSS backdoor and zombie manager. This concept first presented by “XSS-Proxy – http://xss-proxy.sourceforge.net/”. Normally in XSS attacks attacker has one shot, in XSS Shell you can interactively send requests and get responses from victim. you can backdoor the page...

6.5AI score
Exploits0
Kitploit
Kitploit
added 2014/01/08 7:0 a.m.31 views

[THC-Hydra v7.6] Fast Parallel Network Logon Cracker

Hydra is a parallelized network logon cracker which supports numerous protocols to attack, new modules are easy to add, beside that, it is flexible and very fast. Features IPv6 Support Graphic User Interface Internationalized support RFC 4013 HTTP proxy support SOCKS proxy support The tool suppor...

7.5AI score
Exploits0
Kitploit
Kitploit
added 2013/12/27 12:34 a.m.31 views

[Anubis] Online Analyzing Unknown Binaries

Anubis is a service for analyzing malware. Submit your Windows executable or Android APK and receive an analysis report telling you what it does. Alternatively, submit a suspicious URL and receive a report that shows you all the activities of the Internet Explorer process when visiting this URL...

7.3AI score
Exploits0
Kitploit
Kitploit
added 2013/12/09 4:53 p.m.31 views

[NOSQLMap] NoSQLMap-Automated NoSQL Database pwnage

What is NoSQLMap? NoSQLMap is an open source Python tool designed to audit for as well as automate injection attacks and exploit default configuration weaknesses in NoSQL databases, as well as web applications using NoSQL in order to disclose data from the database. It is named as a tribute to...

8.7AI score
Exploits0References1
Kitploit
Kitploit
added 2013/12/05 1:49 a.m.31 views

[ike-scan] Discover & Fingerprint IKE Hosts (IPsec VPN Servers)

ike-scan discovers IKE hosts and can also fingerprint them using the retransmission backoff pattern. ike-scan can perform the following functions: Discovery Determine which hosts in a given IP range are running IKE. This is done by displaying those hosts which respond to the IKE requests sent by...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2013/11/20 1:39 p.m.31 views

[FruityWifi v1.6] the Wireless Network Auditing Tool

FruityWifi is a wireless network auditing tool based in the Wifi Pineapple idea. The application can be installed in any Debian based system. Tested in Debian, Kali Linux, Kali Linux ARM Raspberry Pi, Raspbian Raspberry Pi, Pwnpi Raspberry Pi. With the new version, it is possible to install...

7.7AI score
Exploits0References1
Kitploit
Kitploit
added 2013/11/20 1:34 p.m.31 views

[HashTag] Password Hash Type Identification (Identify Hashes)

HashTag.py is a Python script written to parse and identify the password hash type used. HashTag supports the identification of over 250 hash types along with matching them to over 110 hashcat modes use the command line switch -hc to output the hashcat modes. It is also able to identify a single...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2013/08/14 2:39 a.m.31 views

[Browser Password Dump] Tool to instantly recover your lost password from all the popular web browsers

Browser Password Dump is the free command-line tool to instantly recover your lost password from all the popular web browsers. Currently it can recover stored web login passwords from following browsers. Firefox Internet Explorer Google Chrome Chrome Canary/SXS CoolNovo Browser Opera Browser Appl...

6.7AI score
Exploits0
Kitploit
Kitploit
added 2013/08/06 11:47 p.m.31 views

[Gmail Password Dump] Command-line Tool to Recover Google Password

Gmail Password Dump is the command-line tool to instantly recover your lost gmail password from various Google applications as well as popular web browsers and messengers. Currently it can recover your Gmail password from following applications, Google Talk Google Picassa Google Desktop Seach Gma...

6.7AI score
Exploits0
Kitploit
Kitploit
added 2013/06/11 4:9 a.m.31 views

[PyMal] The Malware Analysis Framework

PyMal is a python based interactive Malware Analysis Framework. It is built on the top of three pure python programes Pefile, Pydbg and Volatility. The main aim of the project is to combine all the Malware Analysis related tools into a single interface for rapid analysis. PyMal have several wrapp...

7.5AI score
Exploits0
Kitploit
Kitploit
added 2013/05/07 4:29 a.m.31 views

[SpiderFoot v2.0] The Open Source Footprinting tool

SpiderFoot is a free, open-source footprinting tool, enabling you to perform various scans against a given domain name in order to obtain information such as sub-domains, e-mail addresses, owned netblocks, web server versions and so on. The main objective of SpiderFoot is to automate the...

6.8AI score
Exploits0References1
Kitploit
Kitploit
added 2013/05/02 11:51 p.m.31 views

[TcpLogView v1.05] Another TCP Connection Log

TcpLogView is a simple utility that monitors the opened TCP connections on your system, and adds a new log line every time that a TCP connection is opened or closed. For every log line, the following information is displayed: Even Time, Event Type Open, Close, Listen, Local Address, Remote Addres...

7AI score
Exploits0
Kitploit
Kitploit
added 2013/04/29 11:22 p.m.31 views

[MSF-Installer] Script to Automate Metasploit Framework Installation

Script to help with installing and configuring Metasploit Framework, Armitage and the Plugins I have written on OSX and Linux To use the script on OSX Java, Xcode and Command Development Tools from Xcode must be installed before running the script. In the case of OSX I also added the option of...

7.2AI score
Exploits0References1
Kitploit
Kitploit
added 2013/03/25 12:35 a.m.31 views

[Hash Kracker Console] Tool to find out the password from the Hash

Hash Kracker Console is the all-in-one command-line tool to find out the password from the Hash. Currently it supports password recovery from following popular Hash types MD5 SHA1 SHA256 SHA384 SHA512 Also it offers 4 types of Password Recovery methods based on the complexity of password Dictiona...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2013/03/16 12:22 a.m.31 views

[SET v4.7] The Social-Engineer Toolkit

The Social-Engineer Toolkit SET version 4.7 codename “ Headshot ” has been released. This version of SET introduces the ability to specify multi-powershell injection which allows you to specify as many ports as you want and SET will automatically inject PowerShell onto the system on all of the...

7.8AI score
Exploits0
Kitploit
Kitploit
added 2013/01/12 5:55 p.m.31 views

Video Beef - Get Protocols And Geolocation

How to get protocols and geo-location using BeEF Browser Exploitation Framework. This attack will require Java. In GeoLocation you will get almost full address and latitude and longitude and find the perfect location using Google Map...

7.2AI score
Exploits0
Kitploit
Kitploit
added 2013/01/12 5:34 p.m.31 views

[WS_FTP Password Decryptor] Recover FTP login passwords stored by WS_FTP

WSFTP Password Decryptor is the FREE software to instantly recover FTP login passwords stored by WSFTP - one of the popular FTP client application. WSFTP stores the password for all the past FTP sessions in the "wsftp.ini" file so that user don't have to enter it every time. WSFTP Password...

7AI score
Exploits0
Total number of security vulnerabilities5000