Lucene search
K
KitploitMost viewed

6011 matches found

Kitploit
Kitploit
added 2015/05/21 11:7 p.m.24 views

SMBMap - Samba Share Enumerator

SMBMap allows users to enumerate samba share drives across an entire domain. List share drives, drive permissions, share contents, upload/download functionality, file name auto-download pattern matching, and even execute remote commands. This tool was designed with pen testing in mind, and is...

8AI score
Exploits0References9
Kitploit
Kitploit
added 2015/04/30 2:30 p.m.24 views

WifiInfoView v1.79 - WiFi Scanner for Windows 7/8/Vista

WifiInfoView scans the wireless networks in your area and displays extensive information about them, including: Network Name SSID, MAC Address, PHY Type 802.11g or 802.11n, RSSI, Signal Quality, Frequency, Channel Number, Maximum Speed, Company Name, Router Model and Router Name Only for routers...

6.8AI score
Exploits0
Kitploit
Kitploit
added 2015/04/04 11:6 p.m.24 views

Commix - Automated All-in-One OS Command Injection and Exploitation Tool

Commix short for command injection exploiter has a simple environment and it can be used, from web developers, penetration testers or even security researchers to test web applications with the view to find bugs, errors or vulnerabilities related to command injection attacks. By using this tool, ...

8.4AI score
Exploits0References1
Kitploit
Kitploit
added 2015/02/25 12:10 a.m.24 views

Tails 1.3 - The Amnesic Incognito Live System

Tails is a live operating system, that you can start on almost any computer from a DVD, USB stick, or SD card. It aims at preserving your privacy and anonymity , and helps you to: use the Internet anonymously and circumvent censorship ; all connections to the Internet are forced to go through the...

7.7AI score
Exploits0
Kitploit
Kitploit
added 2014/07/15 1:58 a.m.24 views

Systemback - Simple system backup and restore application with extra features

Systemback makes it easy to create backups of system and users configuration files. In case of problems you can easily restore the previous state of the system. There are extra features like system copying, system installation and Live system creation. Download Systemback...

7.3AI score
Exploits0
Kitploit
Kitploit
added 2014/07/04 11:6 p.m.24 views

Browser Password Remover - Browser Website Login Password Removal Software

Browser Password Remover is the free software to quickly display and remove all the stored website login passwords from popular browsers. Most of the web browsers allow users to remember passwords and stores them into local database file. This file and all the stored passwords within it can be...

6.8AI score
Exploits0
Kitploit
Kitploit
added 2014/06/11 10:9 p.m.24 views

PAExec - The Redistributable PsExec (Launch Remote Windows Apps)

PAExec lets you launch Windows programs on remote Windows computers without needing to install software on the remote computer first. For example, you could launch CMD.EXE remotely and have the equivalent of a terminal session to the remote server. PAExec is useful for doing remote installs,...

7.5AI score
Exploits0
Kitploit
Kitploit
added 2014/05/21 11:56 p.m.24 views

WPScan - WordPress Security Scanner

WPScan is a black box WordPress vulnerability scanner. Features Username enumeration from author querystring and location header Weak password cracking multithreaded Version enumeration from generator meta tag and from client side files Vulnerability enumeration based on version Plugin enumeratio...

7.6AI score
Exploits0References1
Kitploit
Kitploit
added 2014/04/26 12:40 a.m.24 views

Dll Hijack Auditor v3.5 - Smart Tool to Audit the DLL Hijack Vulnerability

DLL Hijack Auditor is the smart tool to Audit against the Dll Hijacking Vulnerability in any Windows application. This is one of the critical security issue affecting almost all Windows systems. Though most of the apps have been fixed, but still many Windows applications are susceptible to this...

7.3AI score
Exploits0
Kitploit
Kitploit
added 2014/04/24 6:25 p.m.24 views

WhoIsConnectedSniffer - Network discovery tool that listens to network packets on your network

WhoIsConnectedSniffer is a network discovery tool that listens to network packets on your network adapter using a capture driver WinpCap or MS network monitor and accumulates a list of computer and devices currently connected to your network. WhoIsConnectedSniffer uses various protocols to detect...

7AI score
Exploits0
Kitploit
Kitploit
added 2014/04/19 8:15 p.m.24 views

HonSSH - Log all SSH communications between a client and server

HonSSH is a high-interaction Honey Pot solution. HonSSH will sit between an attacker and a honey pot, creating two separate SSH connections between them. Features Captures all connection attempts to a text file. When an attacker sends a password guess, HonSSH can automatically replace their attem...

7.2AI score
Exploits0
Kitploit
Kitploit
added 2014/04/15 9:18 p.m.24 views

Burp Suite Professional v1.6 - The leading toolkit for web application security testing

Burp Suite is an integrated platform for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing process, from initial mapping and analysis of an application’s attack surface, through to finding and exploiting security...

6.9AI score
Exploits0
Kitploit
Kitploit
added 2014/03/11 9:23 p.m.24 views

[ImageCacheViewer] View images in the cache of your Web browser

ImageCacheViewer is a simple tool that scans the cache of your Web browser Internet Explorer, Firefox, or Chrome, and lists the images displayed in the Web sites that you recently visited. For every cached image file, the following information is displayed: URL of the image, Web browser that was...

6.9AI score
Exploits0
Kitploit
Kitploit
added 2014/02/26 1:3 a.m.24 views

[DomainHostingView] Show domain hosting information

DomainHostingView is a utility for Windows that collects extensive information about a domain by using a series of DNS and WHOIS queries, and generates HTML report that can be displayed in any Web browser. The information displayed by the report of DomainHostingView includes: the hosting company ...

6.7AI score
Exploits0
Kitploit
Kitploit
added 2014/02/13 10:29 p.m.24 views

[Introspy] Security profiling for blackbox iOS

Blackbox tool to help understand what an iOS application is doing at runtime and assist in the identification of potential security issues. The tracer can be installed on a jailbroken device to hook and log security-sensitive iOS APIs called by applications running on the device. The tool records...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2014/02/10 10:33 p.m.24 views

[Quarks PwDump] Dump Windows Credentials

Quarks PwDump is new open source tool to dump various types of Windows credentials: local account, domain accounts, cached domain credentials and bitlocker. The tool is currently dedicated to work live on operating systems limiting the risk of undermining their integrity or stability. It requires...

6.6AI score
Exploits0
Kitploit
Kitploit
added 2014/01/26 7:12 p.m.24 views

[Games Key Decryptor] Tool to Recover License/CD Keys of Popular Games

Games Key Decryptor is the Free all-ine-one Tool to instantly recover License Keys of popular Gaming Softwares. It automatically detects and recovers the license/CD key of all the supported Games installed on your system. Currently it supports around 50 PC Gaming softwares including Battlefield,...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2014/01/25 10:46 p.m.24 views

[Download Hash Verifier] Quickly Verify Integrity (MD5/SHA256 Hash) of Downloaded File

Download Hash Verifier is the FREE tool to verify the integrity of your downloaded file. It makes file hash verification easier and quicker with its smart features such as 'Auto Hash Detection', 'Drag & Drop File', 'Instant copy from Clipboard' etc Hash verification is a standard mechanism used t...

7.2AI score
Exploits0
Kitploit
Kitploit
added 2014/01/08 6:54 a.m.24 views

[FirePasswordViewer v5.5] Firefox Sign-on Secrets Recovery Software

Like other browsers, Firefox also stores the login details such as username, password for every website visited by the user at the user consent. All these secret details are stored in Firefox sign-on database securely in an encrypted format. FirePasswordViewer can instantly decrypt and recover...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2014/01/03 12:25 a.m.24 views

[DirBuster] Brute Force Directories and Files Names on Web/Application Servers

DirBuster is a multi threaded java application designed to brute force directories and files names on web/application servers. Often is the case now of what looks like a web server in a state of default installation is actually not, and has pages and applications hidden within. DirBuster attempts...

6.8AI score
Exploits0
Kitploit
Kitploit
added 2013/12/31 5:17 p.m.24 views

[GDB] GNU Project Debugger

GDB, the GNU Project debugger, allows you to see what is going on inside' another program while it executes - or what another program was doing at the moment it crashed. GDB can do four main kinds of things plus other things in support of these to help you catch bugs in the act: Start your progra...

7.2AI score
Exploits0
Kitploit
Kitploit
added 2013/12/05 2:37 a.m.24 views

[SQL injection test environment] A collection of web pages vulnerable to SQL injection flaws

A collection of web pages vulnerable to SQL injection flaws and more: conf/ - operating system configuration files used by deployment.sh. dbs/ - standalone databases for some database management systems e.g. Microsoft Access. libs/ - web API libraries to connect to the database management...

8.3AI score
Exploits0References1
Kitploit
Kitploit
added 2013/08/07 12:43 a.m.24 views

[Pytbull] IDS/IPS Testing Framework

Pytbull is an Intrusion Detection/Prevention System IDS/IPS Testing Framework for Snort, Suricata and any IDS/IPS that generates an alert file. It can be used to test the detection and blocking capabilities of an IDS/IPS and to validate config. Download Pytbull...

7.3AI score
Exploits0
Kitploit
Kitploit
added 2013/08/07 12:37 a.m.24 views

[Browser Password Decryptor v5.0] Browser Password Recovery Tool

Browser Password Decryptor is the FREE software to instantly recover website login passwords stored by popular web browsers. Currently it can recover saved login passwords from following browsers. --- Firefox Internet Explorer Google Chrome Google Chrome Canary/SXS CoolNovo Browser Opera Browser...

6.5AI score
Exploits0
Kitploit
Kitploit
added 2013/05/23 8:51 p.m.24 views

[Wireshark v1.10.0 RC2] The world’s foremost network protocol analyzer

Wireshark is the world’s foremost network protocol analyzer. It lets you capture and interactively browse the traffic running on a computer network. It is the de facto and often de jure standard across many industries and educational institutions. Wireshark development thrives thanks to the...

7.2AI score
Exploits0
Kitploit
Kitploit
added 2013/04/29 11:10 p.m.24 views

[Mercury v2.2.0] The Android Assessment Framework

Mercury is a security assessment framework for the Android platform. It allows you to dynamically interact with the Inter-Process Communication IPC endpoints exported by an application installed on a device. Mercury provides similar functionality to a number of static analysis tools, such as aapt...

7.7AI score
Exploits0
Kitploit
Kitploit
added 2013/02/22 3:46 a.m.24 views

[Http-enum] Automated HTTP Enumeration Tool

Null Security Team writing a python script for Automated HTTP Enumeration. currently only in the initial beta stage, but includes basic checking of files including the Apache server-status as well as well IIS WebDAV and Microsoft FrontPage Extensions, many more features will be added to this tool...

7.2AI score
Exploits0
Kitploit
Kitploit
added 2013/02/19 10:10 p.m.24 views

[Recon-ng] Web Reconnaisance Framework for Penetration Testers

Recon-ng is a full-featured Web Reconnaissance framework written in Python. Recon-ng has a look and feel similar to the Metasploit Framework, reducing the learning curve for leveraging the framework. Complete with independent modules, database interaction, built in convenience functions,...

7.4AI score
Exploits0References1
Kitploit
Kitploit
added 2012/12/27 2:14 p.m.24 views

[SQLSentinel] OpenSource tool for sql injection security testing

SQLSentinel is an opensource tool that automates the process of finding the sql injection on a website. SQLSentinel includes a spider web and sql errors finder. You give in input a site and SQLSentinel crawls and try to exploit parameters validation error for you. When job is finished, it can...

7.5AI score
Exploits0
Kitploit
Kitploit
added 2024/01/20 11:30 a.m.23 views

Gssapi-Abuse - A Tool For Enumerating Potential Hosts That Are Open To GSSAPI Abuse Within Active Directory Networks

gssapi-abuse was released as part of my DEF CON 31 talk. A full write up on the abuse vector can be found here: A Broken Marriage: Abusing Mixed Vendor Kerberos Stacks The tool has two features. The first is the ability to enumerate non Windows hosts that are joined to Active Directory that offer...

7.1AI score
Exploits0References1
Kitploit
Kitploit
added 2023/06/20 12:30 p.m.23 views

Handle-Ripper - Windows Handle Hijacker

Handle hijacking is a technique used in Windows operating systems to gain access to resources and resources of a system without permission. It is a type of privilege escalation attack in which a malicious user takes control of an object handle, which is an identifier that is used to reference a...

7.8AI score
Exploits0References1
Kitploit
Kitploit
added 2023/06/16 12:30 p.m.23 views

BackupOperatorToolkit - The BackupOperatorToolkit Contains Different Techniques Allowing You To Escalate From Backup Operator To Domain Admin

The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin. Usage The BackupOperatorToolkit BOT has 4 different mode that allows you to escalate from Backup Operator to Domain Admin. Use "runas.exe /netonly /user:domain.dk\backupoperator...

7.8AI score
Exploits0References6
Kitploit
Kitploit
added 2023/04/17 12:30 p.m.23 views

Scriptkiddi3 - Streamline Your Recon And Vulnerability Detection Process With SCRIPTKIDDI3, A Recon And Initial Vulnerability Detection Tool Built Using Shell Script And Open Source Tools

Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using shell script and open source tools. How it works • Installation • Usage • MODES • For Developers • Credits Introducing SCRIPTKIDDI3, a powerful recon and initi...

7.3AI score
Exploits0References7
Kitploit
Kitploit
added 2022/12/04 11:30 a.m.23 views

Neton - Tool For Getting Information From Internet Connected Sandboxes

Neton is a tool for getting information from Internet connected sandboxes. It is composed by an agent and a web interface that displays the collected information. The Neton agent gets information from the systems on which it runs and exfiltrates it via HTTPS to the web server. Some of the...

7AI score
Exploits0References14
Kitploit
Kitploit
added 2022/11/05 11:30 a.m.23 views

Prefetch-Hash-Cracker - A Small Util To Brute-Force Prefetch Hashes

Motivation During the forensic analysis of a Windows machine, you may find the name of a deleted prefetch file. While its content may not be recoverable, the filename itself is often enough to find the full path of the executable for which the prefetch file was created. Using the tool The followi...

7AI score
Exploits0References2
Kitploit
Kitploit
added 2022/09/04 11:30 a.m.23 views

BeatRev - POC For Frustrating/Defeating Malware Analysts

BeatRev Version 2 Disclaimer/Liability The work that follows is a POC to enable malware to "key" itself to a particular victim in order to frustrate efforts of malware analysts. I assume no responsibility for malicious use of any ideas or code contained within this project. I provide this researc...

6.7AI score
Exploits0References9
Kitploit
Kitploit
added 2022/05/30 12:30 p.m.23 views

PersistBOF - Tool To Help Automate Common Persistence Mechanisms

A tool to help automate common persistence mechanisms. Currently supports Print Monitor SYSTEM, Time Provider Network Service, Start folder shortcut hijacking User, and Junction Folder User Usage Clone, run make, add .cna to Cobalt Strike client. run: help persist-ice in CS console Syntax:...

7.4AI score
Exploits0References1
Kitploit
Kitploit
added 2022/04/24 1:30 p.m.23 views

Malwarescanner - Simple Malware Scanner Written In Python

Simple Malware Scanner written in python Very basic malware Scanner by hash comparison Sometimes this can be needed when an incident response. If you found new or suspicious files when you do response, you want to check out where these files exist in systems. so then you may need like this tool...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2022/03/13 8:30 p.m.23 views

GoodHound - Uses Sharphound, Bloodhound And Neo4j To Produce An Actionable List Of Attack Paths For Targeted Remediation

Attackers think in graphs, defenders think in actions, management think in charts. GoodHound operationalises Bloodhound by determining the busiest paths to high value targets and creating actionable output to prioritise remediation of attack paths. Usage Quick Start For a very quick start with mo...

7AI score
Exploits0References5
Kitploit
Kitploit
added 2022/03/05 8:30 p.m.23 views

Authz0 - An Automated Authorization Test Tool. Unauthorized Access Can Be Identified Based On URLs And RolesAnd Credentials

Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials. URLs and Roles are managed as YAML-based templates, which can be automatically created and added through authz0. You can also test based on multiple authentication headers...

7.6AI score
Exploits0References5
Kitploit
Kitploit
added 2022/02/11 11:30 a.m.23 views

TerraGoat - Vulnerable Terraform Infrastructure

TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments. Introduction TerraGoat was built to enable DevSecOps design and implement a...

7.2AI score
Exploits0References6
Kitploit
Kitploit
added 2022/02/03 11:30 a.m.23 views

Heaptrace - Helps Visualize Heap Operations For Pwn And Debugging

heaptrace is a heap debugger for tracking glibc heap operations in ELF64 x8664 binaries. Its purpose is to help visualize heap operations when debugging binaries or doing heap pwn. replaces addresses with easy-to-understand symbols detects heap corruption and memory leakage issues can debug in gd...

7.2AI score
Exploits0References6
Kitploit
Kitploit
added 2021/11/10 11:30 a.m.23 views

RottenPotatoNG - A C++ DLL And Standalone C++ Binary - No Need For Meterpreter Or Other Tools

New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools. RottenPotatoDLL This project generates a DLL and EXE file. The DLL contains all the code necessary to perform the RottenPotato attack and get a handle to a privileged token. The...

7.5AI score
Exploits0References2
Kitploit
Kitploit
added 2021/09/29 8:30 p.m.23 views

Webstor - A Script To Quickly Enumerate All Websites Across All Of Your Organization'S Networks, Store Their Responses, And Query For Known Web Technologies, Such As Those With Zero-Day Vulnerabilities

WebStor is a tool implemented in Python under the MIT license for quickly enumerating all websites across all of your organization's networks, storing their responses, and querying for known web technologies and versions, such as those with zero-day vulnerabilities. It is intended, in particular,...

7.2AI score
Exploits0References2
Kitploit
Kitploit
added 2021/09/17 4:20 p.m.23 views

On-The-Fly - Tool Which Gives Capabilities To Perform Pentesting Tests In Several Domains (IoT, ICS & IT)

▒█████ ███▄ █ ▄▄▄█████▓ ██░ ██ ▓█████ █████ ██▓ ▓██ ██▓ ▒██▒ ██▒ ██ ▀█ █ ▓ ██▒ ▓▒▒▓██░ ██ ▓█ ▀ ▓██ ▓██▒ ▒██ ██▒ ▒██░ ██▒▓██ ▀█ ██▒ ▒ ▓██░ ▒░░▒██▀▀██ ▒███ ▒████ ▒██░ ▒██ ██░ ▒██ ██░▓██▒ ▐▌██▒ ░ ▓██▓ ░ ░▓█ ░██ ▒▓█ ▄ ░▓█▒ ▒██░ ░ ▐██▓░ ░ ████▓▒░▒██░ ▓██░ ▒██▒ ░ ░▓█▒░██▓▒░▒████ ▒░▒█░ ▒░██████ ░ ██▒▓░ ...

7.1AI score
Exploits0References1
Kitploit
Kitploit
added 2021/08/21 12:30 p.m.23 views

Brutus - An Educational Exploitation Framework Shipped On A Modular And Highly Extensible Multi-Tasking And Multi-Processing Architecture

An educational exploitation framework shipped on a modular and highly extensible multi-tasking and multi-processing architecture. Brutus: an Introduction Looking for version 1? See the branches in this repository. Brutus is an educational exploitation framework written in Python. It automates pre...

7.2AI score
Exploits0References5
Kitploit
Kitploit
added 2021/03/07 8:30 p.m.23 views

Procrustes - A Bash Script That Automates The Exfiltration Of Data Over Dns In Case We Have A Blind Command Execution On A Server Where All Outbound Connections Except DNS Are Blocked

A bash script that automates the exfiltration of data over dns in case we have a blind command execution on a server where all outbound connections except DNS are blocked. The script currently supports sh, bash and powershell and is compatible with exec style command execution e.g...

7.2AI score
Exploits0References3
Kitploit
Kitploit
added 2021/03/05 11:30 a.m.23 views

CertEagle - Asset monitoring utility using real time CT log feeds

In Bugbounties “If you are not first , then you are last ” there is no such thing as silver or a bronze medal , Recon plays a very crucial part and if you can detect/Identify a newly added asset earlier than others then the chances of you Finding/Reporting a security flaw on that asset and gettin...

7AI score
Exploits0References5
Kitploit
Kitploit
added 2020/01/08 1:25 a.m.23 views

XposedOrNot - Tool To Search An Aggregated Repository Of Xposed Passwords Comprising Of ~850 Million Real Time Passwords

XposedOrNot XoN tool is to search an aggregated repository of xposed passwords comprising of 850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security. What is Xposed Passwords? The main aim of this project is to give a free platform for th...

7.2AI score
Exploits0References1
Kitploit
Kitploit
added 2018/07/23 2:11 p.m.23 views

NETworkManager - A Powerful Tool For Managing Networks And Troubleshoot Network Problems

A powerful tool for managing networks and troubleshoot network problems! Features Network Interface - Information, Configure IP-Scanner Port-Scanner Ping Traceroute DNS Lookup Remote Desktop PuTTY SNMP - Get, Walk, Set v1, v2c, v3 Wake on LAN HTTP Headers Subnet Calculator - Calculator, Subnettin...

7.5AI score
Exploits0References2
Total number of security vulnerabilities5000