lnav: an enhanced log file viewer
LNAV — The Logfile Navigator The log file navigator, lnav, is an enhanced log file viewer that takes advantage of any semantic information that can be gleaned from the files being viewed, such as...
Author: Nam Phong
knowsmore: A swiss army knife tool for pentesting Microsoft Active Directory
Knows More KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync). Main features Import NTLM Hashes from .ntds output txt file (generated by CrackMapExec or...
malwoverview: perform an initial and quick triage on a directory containing malware samples
Malwoverview Malwoverview.py is a first response tool for threat hunting, which performs an initial and quick triage of malware samples, URLs, IP addresses, domains, malware families, IOCs and hashes. Additionally, Malwoverview is able to...
ronin: Ruby platform for vulnerability research and exploit development
ronin Ronin is a free and Open Source Ruby toolkit for security research and development. Ronin contains many different CLI commands and Ruby libraries for a variety of security tasks, such as encoding/decoding data, filter IPs/hosts/URLs, querying ASNs, querying DNS, HTTP, scanning...
USP: Establishes persistence on a Linux system
USP Establishes persistence on a Linux system by creating a udev rule that triggers the execution of a specified payload (binary or script) Feature This Go program establishes persistence on a Linux system by...
Lil Pwny: auditing Active Directory passwords using Python
Lil Pwny Lil Pwny is a Python application to perform an offline audit of NTLM hashes of users’ passwords, recovered from Active Directory, against known compromised passwords from Have I Been Pwned. The usernames...
lunar: UNIX security auditing tool
The lunar script generates a scored audit report of a Unix host’s security. It is based on the CIS and other frameworks. Where possible there are references to the CIS and other benchmarks in...
Ghost Framework: An Android post-exploitation framework
About Ghost Framework Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device...
tcpreplay: Pcap editing and replay tools for *NIX and Windows
Tcpreplay Tcpreplay is a suite of GPLv3 licensed utilities for UNIX (and Win32 under Cygwin) operating systems for editing and replaying network traffic which was previously captured by tools like tcpdump and Ethereal/Wireshark. It allows you to classify traffic as...
secureCodeBox: automate a bunch of security testing tools out of the box
Continuous Secure Delivery – Out of the Box secureCodeBox is a docker based, modularized toolchain for continuous security scans of your software project. Its goal is to orchestrate and easily automate a bunch of...
Darkus: A Onion websites searcher
Darkus Darkus is a Onion websites searcher it uses deep/dark web searching engines to search a specific word and give you back the link results. Current Search Engines: Name Link Ahmia(Clear Web site) https://ahmia.fi...
Auditor: Hardware-based attestation/intrusion detection app for Android devices
The Auditor app uses hardware-based security features to validate the identity of a device, along with the authenticity and integrity of the operating system. It ensures the device is running a verified operating system with a...
