Lucene search
K
KitploitMost viewed

6011 matches found

Kitploit
Kitploit
added 2020/06/13 1:0 p.m.25 views

KatroLogger - KeyLogger For Linux Systems

KeyLogger for Linux Systems. Features Runs on GUI systems or CLI Sending data by email Dependencies curl libx11-dev Debian-Based libX11-devel RHEL-Based Compiling ./configure make make install Usage katrologger --output /path/file Send data by e-mail: katrologger --smtp-help Fixing problems...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2019/10/22 9:0 p.m.25 views

Password Lense - Reveal Character Types In A Password

What is this? Certain characters in passwords 'O' and '0', 'I' and 'l', etc. can be hard to identify when you need to type them in and copy-paste is unavailable. Password Lense is a small web application that provides a quick and secure way to get a more informative view of your password. Feature...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2019/07/09 1:7 p.m.25 views

Rifiuti2 - Windows Recycle Bin Analyser

Rifiuti2 is a for analyzing Windows Recycle Bin INFO2 file. Analysis of Windows Recycle Bin is usually carried out during Windows computer forensics. Rifiuti2 can extract file deletion time, original path and size of deleted files and whether the trashed files have been permanently removed. For...

7.2AI score
Exploits0References5
Kitploit
Kitploit
added 2018/08/24 12:24 p.m.25 views

ASWCrypter - An Bash&Python Script For Generating Payloads that Bypasses All Antivirus

An Bash&Python Script For Generating Payloads that Bypasses All Antivirus so far FUD. PLEASE DON'T UPLOAD BACKDOOT TO WWW.VIRUSTOTAL.COM Important This Version Just for test , In future I will update ASWCrypter to generate a payloads for linux ,Mac and Windows . ; Legal Disclamer: The author does...

7.3AI score
Exploits0References2
Kitploit
Kitploit
added 2018/07/02 9:30 p.m.25 views

Dependency-Track - An Intelligent Software Composition Analysis (SCA) Platform That Allows Organizations To Identify And Reduce Risk From The Use Of Third-Party And Open Source Components

Modern applications leverage the availability of existing components for use as building blocks in application development. By using existing components, organizations can dramatically decrease time-to-market. Reusing existing components however, comes at a cost. Organizations that build on top o...

7.2AI score
Exploits0References1
Kitploit
Kitploit
added 2018/06/17 2:54 p.m.25 views

Probequest - Toolkit For Playing With Wi-Fi Probe Requests

Toolkit allowing to sniff and display the Wi-Fi probe requests passing near your wireless interface. Probe requests are sent by a station to elicit information about access points, in particular to determine if an access point is present or not in the nearby environment. Some devices mostly...

6.9AI score
Exploits0References1
Kitploit
Kitploit
added 2018/06/14 9:56 p.m.25 views

One-Lin3r v1.1 - Gives You One-Liners That Aids In Penetration Testing Operations

One-Lin3r is simple and light-weight framework inspired by the web-delivery module in Metasploit. It consists of various one-liners that aids in penetration testing operations: Reverser : Give it IP & port and it returns a reverse shell liner ready for copy & paste. Dropper : Give it an...

7.4AI score
Exploits0References2
Kitploit
Kitploit
added 2018/06/01 2:7 p.m.25 views

Empire GUI - Empire Client Application

The Empire Multiuser GUI is a graphical interface to the Empire post-exploitation Framework. It was written in Electron and utilizes websockets SocketIO on the backend to support multiuser interaction. The main goal of this project is to enable red teams, or any other color team, to work together...

7.8AI score
Exploits0References2
Kitploit
Kitploit
added 2018/05/26 2:30 p.m.25 views

HTTPoxyScan - HTTPoxy Exploit Scanner

PoC/Exploit scanner to scan common CGI files on a target URL for the HTTPoxy vulnerability. Httpoxy is a set of vulnerabilities that affect application code running in CGI, or CGI-like environments. For more details, go to https://httpoxy.org. REQUIREMENTS: Requires ncat to establish reverse...

7.6AI score
Exploits0References1
Kitploit
Kitploit
added 2018/05/17 10:41 p.m.25 views

Whoisleak - This Tool Queries The Emails That Registered The Domain And Verifies If They Were Leaked In Some Data Leak

This tool queries the emails that registered the domain and verifies if they were leaked in some data leak. To install $ apt-get install nodejs-legacy $ pip install -r requirements.txt Usage Example python whoisleak.py -u securityattack.com.br Contact / Blog Eddy Oliveira SecurityAttack Download...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2018/04/28 12:17 p.m.25 views

Metta - An Information Security Preparedness Tool To Do Adversarial Simulation

Metta is an information security preparedness tool. This project uses Redis/Celery, python, and vagrant with virtualbox to do adversarial simulation. This allows you to test mostly your host based instrumentation but may also allow you to test any network based detection and controls depending on...

7.5AI score
Exploits0References5
Kitploit
Kitploit
added 2018/04/20 12:12 p.m.25 views

SMBrute - SMB Protocol Bruteforce

SMBrute is a program that can be used to bruteforce username and passwords of servers that are using SMB Samba. Install SMBrute $ git clone https://github.com/m4ll0k/SMBrute.git smbrute $ cd smbrute $ pip3 install pysmb, humanfriendly $ python3 smbrute.py Usage: $ python3 smbrute.py -h...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2018/02/28 9:21 p.m.25 views

Prithvi - A Report Generation Tool For Security Assessment

A Report Generation Tool for Security Assessment Usage This project of ours could be used for report generation and its very easy to use. It includes following features 1. We can add Owasp Types and recommendation with details. 2. We can add Multiple Projects and work on it separately. 3. We can...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2018/02/25 1:12 p.m.25 views

contact.sh - An OSINT tool to find contacts in order to report security vulnerabilities

An OSINT tool to find contacts in order to report security vulnerabilities. Installation Linux Make sure you have installed the whois and jq packages. $ git clone https://github.com/EdOverflow/contact.sh.git $ cd contact.sh/ $ chmod u+x contact.sh $ ./contact.sh -d google.com -c google OSX $ brew...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2018/01/12 8:30 p.m.25 views

ACE - Automated, Collection, and Enrichment Platform

The Automated Collection and Enrichment ACE platform is a suite of tools for threat hunters to collect data from many endpoints in a network and automatically enrich the data. The data is collected by running scripts on each computer without installing any software on the target. ACE supports...

7.9AI score
Exploits0References2
Kitploit
Kitploit
added 2018/01/03 1:1 p.m.25 views

uncaptcha - Defeating Google's audio reCaptcha with 85% accuracy

Defeating Google's audio reCaptcha system with 85% accuracy. Inspiration Across the Internet, hundreds of thousands of sites rely on Google's reCaptcha system for defense against bots in fact, Devpost uses reCaptcha when creating a new account. After a Google research team demonstrated a near...

6.9AI score
Exploits0References1
Kitploit
Kitploit
added 2017/11/25 1:30 p.m.25 views

DR.CHECKER - A Soundy Vulnerability Detection Tool for Linux Kernel Drivers

DR.CHECKER: A Soundy Vulnerability Detection Tool for Linux Kernel Drivers Tested on Ubuntu = 14.04.5 LTS 1. Setup The implementation is based on LLVM, specifically LLVM 3.8. We also need tools like c2xml to parse headers. First, make sure that you have libxml required for c2xml: sudo apt-get...

6.8AI score
Exploits0References7
Kitploit
Kitploit
added 2017/11/19 1:10 p.m.25 views

Tilt - Terminal Ip Lookup Tool

Tilt: Terminal ip lookup tool, is an easy and simple open source tool implemented in Python for ip/host passive reconnaissance. It's very handy for first reconnaissance approach and for host data retrieval. Features Host to IP conversion IP to Host conversion DNS to IPs GeoIP Translation Extensiv...

6.9AI score
Exploits0References1
Kitploit
Kitploit
added 2017/11/05 9:45 p.m.25 views

KRACK Detector - Detect and prevent KRACK attacks in your network

KRACK Detector is a Python script to detect possible KRACK attacks against client devices on your network. The script is meant to be run on the Access Point rather than the client devices. It listens on the Wi-Fi interface and waits for duplicate message 3 of the 4-way handshake. It then...

7.2AI score
Exploits0References1
Kitploit
Kitploit
added 2017/10/23 1:11 p.m.25 views

Exploit Pack - Penetration Testing Framework

Exploit Pack has been designed by an experienced team of software developers and exploit writers to automate processes so penetration testers can focus on what's really important. The threat. This blend of software engineers and subject matter experts provides an unique advantage by combining...

7.2AI score
Exploits0References1
Kitploit
Kitploit
added 2017/10/17 9:30 p.m.25 views

IntRec-Pack - Intelligence and Reconnaissance Package/Bundle installer

Intelligence and Reconnaissance Package/Bundle installer. IntRec-Pack is a Bash script designed to download, install and deploy several quality OSINT, Recon and Threat Intelligence tools. Due to the fact it manages the installation of the various dependencies related to these programs as well it...

7.3AI score
Exploits0References2
Kitploit
Kitploit
added 2017/09/02 2:30 p.m.25 views

WSSiP - Application for capturing, modifying and sending custom WebSocket data from client to server and vice versa

Short for "WebSocket/Socket.io Proxy", this tool, written in Node.js, provides a user interface to capture, intercept, send custom messages and view all WebSocket and Socket.IO communications between the client and server. Upstream proxy support also means you can forward HTTP/HTTPS traffic to an...

7.1AI score
Exploits0References2
Kitploit
Kitploit
added 2017/08/14 9:56 p.m.25 views

JWT cracker - JWT Brute Force Cracker Written in C

A multi-threaded JWT brute-force cracker written in C. If you are very lucky or have a huge computing power, this program should find the secret key of a JWT token, allowing you to forge valid tokens. This is for testing purposes only, do not put yourself in trouble. The tool is based in the Appl...

6.5AI score
Exploits0References1
Kitploit
Kitploit
added 2017/08/08 3:12 p.m.25 views

BoopSuite - A Suite of Tools for Wireless Auditing and Security Testing

BoopSuite is an up and coming suite of wireless tools designed to be easy to use and powerful in scope, that support both the 2 and 5 GHz spectrums. Written purely in python. A handshake sniffer CLI and GUI, a monitor mode enabling script and a deauth script are all parts of this suite with more ...

7.4AI score
Exploits0References1
Kitploit
Kitploit
added 2017/07/09 3:2 p.m.25 views

Magic Wormhole - Get Things From One Computer To Another, Safely

This package provides a library and a command-line tool named wormhole, which makes it possible to get arbitrary-sized files and directories or short pieces of text from one computer to another. The two endpoints are identified by using identical "wormhole codes": in general, the sending machine...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2017/07/07 3:12 p.m.25 views

Steamer - Import, Search, and Manage Public Password Breach Data

Import, manage, search public dumps. Do you have massive amounts of CSV, .sql, .txt, that have credentials, passwords, and hashes inside? Use Steamer to manage them! Load them into a MongoDB database, and either uses the console directly or just use the handy web interface complete with JSON...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2017/07/06 10:30 p.m.25 views

GShark Framework - Check all your backdoors with only one telegram account

This framework can perform web post exploitation, with this you can interact with multiple web backdoor and execute custom module, script. Check all your backdoors with only one telegram messenger account! Connect web backdoor to master server and control it with Telegram Download visual backdoor...

7.8AI score
Exploits0References1
Kitploit
Kitploit
added 2017/06/30 4:24 p.m.25 views

LARE - [L]ocal [A]uto [R]oot [E]xploiter is a Bash Script That Helps You Deploy Local Root Exploits

L ocal A uto R oot E xploiter is a simple bash script that helps you deploy local root exploits from your attacking machine when your victim machine do not have internet connectivity. The script is useful in a scenario where your victim machine do not have an internet connection eg. while you piv...

7.1AI score
Exploits0References2
Kitploit
Kitploit
added 2017/06/26 3:3 p.m.25 views

getsploit - Command line utility for searching and downloading exploits

Command line search and download tool for Vulners Database inspired by searchsploit. It allows you to search online for the exploits across all the most popular collections: Exploit-DB , Metasploit , Packetstorm and others. The most powerful feature is immediate exploit source download right in...

7.8AI score
Exploits0References2
Kitploit
Kitploit
added 2017/05/17 11:43 p.m.25 views

Major Update of Acunetix Online

Acunetix Online has undergone a mammoth update, now enjoying all the features and benefits found in Acunetix On Premise, including: Integrated vulnerability management, greater manageability of threats and targets and the integration of popular WAFs and Issue Tracking systems. Acunetix Online als...

7.3AI score
Exploits0
Kitploit
Kitploit
added 2017/04/14 2:3 p.m.25 views

pwdlyser - Python-based CLI Password Analyser (Reporting Tool)

The 'pwdlyser' tool is a Python-based CLI script that automates the arduous process of manually reviewing cracked passwords during password audits following security assessments or penetration tests. There are likely some false positives/negatives, so please use at your own discretion. Installati...

7.5AI score
Exploits0References2
Kitploit
Kitploit
added 2017/04/01 2:30 p.m.25 views

WPForce - Wordpress Attack Suite

WPForce is a suite of Wordpress Attack tools. Currently this contains 2 scripts - WPForce, which brute forces logins via the API, and Yertle, which uploads shells once admin credentials have been found. Yertle also contains a number of post exploitation modules. For more information, visit the bl...

8.1AI score
Exploits0References1
Kitploit
Kitploit
added 2017/01/30 2:30 p.m.25 views

Cyber Probe - Capturing, Analysing and Responding to Cyber Attacks

Cyberprobe is a distributed software architecture for monitoring of networks against attack. It consists of two components: cyberprobe, which collects data packets and forwards them over a network in standard streaming protocols; and cybermon which decodes protocols, and invokes user-defined logi...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2016/12/10 2:30 p.m.25 views

dedsploit - Framework For Attacking Network Protocols

Framework for attacking network protocols and network exploitation. I. Introduction I don't look back anymore. I don't regret. I look forward Aiden Pearce Yes, Watch Dogs has heavily influenced us when writing this framework. This entire project brought upon a lot of the ideals from the Watch Dog...

7.2AI score
Exploits0References1
Kitploit
Kitploit
added 2016/12/01 2:0 p.m.25 views

Dripcap - Caffeinated Packet Analyzer

Caffeinated packet analyzer. Dripcap is a modern packet analyzer based on Electron. Getting Started Download & Install Capturing Packet Filtering Display Filter Syntax Advanced Usage Build from source Import Pcap Files Install Add-on Packages Create & Publish Your Package Create Theme Package...

7.3AI score
Exploits0References10
Kitploit
Kitploit
added 2016/11/20 1:58 p.m.25 views

brut3k1t - Server-side Brute-force Module (ssh, ftp, smtp, facebook, and more)

Server-side brute-force module. Brute-force dictionary attack, jk attack that supports multiple protocols and services. 1. Introduction brut3k1t is a server-side bruteforce module that supports dictionary attacks for several protocols. The current protocols that are complete and in support are:...

7.8AI score
Exploits0References1
Kitploit
Kitploit
added 2016/10/09 1:50 p.m.25 views

tinyshell - Python Client with PHP Shell

python Client with php shell , allows to connect and send commands over current protocol using POST and GET Requests Features 1. connect with direct session with no need for reverse connection . 2. support password protection . 3. can be binded to any file with no damage . 4. using GET/POST reque...

8.1AI score
Exploits0References1
Kitploit
Kitploit
added 2016/09/09 2:49 p.m.25 views

CodeWarrior - Just Another Manual Code Analysis Tool And Static Analysis Tool

Just another manual code analysis tool and static analysis tool Codewarrior runs at HTTPd with TLS, uses KISS principle https://en.wikipedia.org/wiki/KISSprinciple Directories: web/ = local of javascripts and html and css sources src/ = C source code, this code talking with web socket eggs/ =...

7.3AI score
Exploits0References2
Kitploit
Kitploit
added 2016/09/03 2:12 p.m.25 views

LazyMap - Automate NMAP Scans and Generate Custom Nessus Policies Automatically

Automate NMAP scans and custom Nessus polices. Installing git clone https://github.com/commonexploits/port-scan-automation.git How To Use ./lazymap.sh Features Discovers live devices Auto launches port scans on only the discoverd live devices Can run mulitple instances on multiple adaptors at onc...

7.4AI score
Exploits0References1
Kitploit
Kitploit
added 2016/08/26 2:42 p.m.25 views

l0l - The Exploit Development Kit

l0l a exploit development kit. with C++ language scripting. Yet, are being developed. Then the beta version will be published. Status Shellcodes : 5 Injectors : 0 Encoders : 0 Backdoors : 6 Install - Requirements : g++ and Python. $ make or, l0l.cpp compile the file.. Exp: $ g++ -o l0l l0l.cpp Ru...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2016/08/17 8:49 p.m.25 views

MacroShop - Collection of scripts to aid in delivering payloads via Office Macros

Collection of scripts to aid in delivering payloads via Office Macros. Most are python. 1. macrosafe.py Generates safe for VB inclusion into an excel spreadsheet. Requires a batch file generated by Veil-Evasion powershell payloads. To include, enable the developer menu in Office, head to Visual...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2016/08/09 9:28 p.m.25 views

APT2 - Automated Penetration Toolkit

This tool will perform an NMap scan, or import the results of a scan from Nexpose, Nessus, or NMap. The processesd results will be used to launch exploit and enumeration modules according to the configurable Safe Level and enumerated service information. All module results are stored on localhost...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2016/06/01 11:13 p.m.25 views

Intercepter-NG v1.9 - Multifunctional Network Toolkit for Android

Intercepter-NG is a multifunctional network toolkit for various types of IT specialists. It has functionality of several famous separate tools and more over offers a good and unique alternative of Wireshark for android. The main features are: Network discovery with OS detection Network traffic...

7.3AI score
Exploits0
Kitploit
Kitploit
added 2016/01/18 9:33 p.m.25 views

JShielder - LAMP/LEMP Secure Deployment

JSHielder is an Open Source tool developed to help SysAdmin and developers secure there Linux Servers in which they will be deploying any web application. This tool automates the process of installing all the necessary packages to host a web application and Hardening a Linux server with little...

8AI score
Exploits0References4
Kitploit
Kitploit
added 2015/12/01 8:54 p.m.25 views

Xplico v1.1.1 - Open Source Network Forensic Analysis Tool (NFAT)

The goal of Xplico is extract from an internet traffic capture the applications data contained. For example, from a pcap file Xplico extracts each email POP, IMAP, and SMTP protocols, all HTTP contents, each VoIP call SIP, FTP, TFTP, and so on. Xplico isn’t a network protocol analyzer. Xplico is ...

7AI score
Exploits0
Kitploit
Kitploit
added 2015/11/24 10:12 p.m.25 views

UserProfilesView - View User Profiles Information On Your Windows

UserProfilesView displays the list of all user profiles that you currently have in your system. For each user profile, the following information is displayed: Domain\User Name, Profile Path, Last Load Time, Registry File Size, User SID, and more. You can save the profiles list into...

6.8AI score
Exploits0
Kitploit
Kitploit
added 2015/11/21 6:33 p.m.25 views

Hsecscan - A Security Scanner For HTTP Response Headers

hsecscan A security scanner for HTTP response headers. Requirements Python 2.x Usage $ ./hsecscan.py usage: hsecscan.py -h -P -p -u URL -R -U User-Agent -d 'POST data' -x PROXY A security scanner for HTTP response headers. optional arguments: -h, --help show this help message and exit -P,...

5.9AI score
Exploits0References1
Kitploit
Kitploit
added 2015/10/28 7:53 p.m.25 views

LMD - Linux Malware Detect

Linux Malware Detect LMD is a malware scanner for Linux released under the GNU GPLv2 license, that is designed around the threats faced in shared hosted environments. It uses threat data from network edge intrusion detection systems to extract malware that is actively being used in attacks and...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2015/09/02 10:30 p.m.25 views

Sonar.js - Framework for identifying and launching exploits against internal network hosts

A framework for identifying and launching exploits against internal network hosts. Works via WebRTC IP enumeration, WebSocket host scanning, and external resource fingerprinting. How does it work? Upon loading the sonar.js payload in a modern web browser the following will happen: sonar.js will u...

6.6AI score
Exploits0References1
Kitploit
Kitploit
added 2015/07/18 3:21 p.m.25 views

BetterCap - A complete, modular, portable and easily extensible MITM framework

BetterCap is an attempt to create a complete, modular, portable and easily extensible MITM framework with every kind of features could be needed while performing a man in the middle attack. It's currently able to sniff and print from the network the following informations: URLs being visited. HTT...

7.2AI score
Exploits0References1
Total number of security vulnerabilities5000