auto_re
IDA PRO auto-renaming plugin with tagging support
https://github.com/a1ext/auto_re
#windows #reverse #ida #internals #tools
IDA PRO auto-renaming plugin with tagging support
https://github.com/a1ext/auto_re
#windows #reverse #ida #internals #tools
GitHub
GitHub - a1ext/auto_re: IDA PRO auto-renaming plugin with tagging support
IDA PRO auto-renaming plugin with tagging support. Contribute to a1ext/auto_re development by creating an account on GitHub.
Python for Pentesters
Getting started with Python for pentesting and red team engagements is fairly easy! This repo is just a small collection of random scripts to help get you started.
https://github.com/ustayready/python-pentesting
#python #tools #pentest
Getting started with Python for pentesting and red team engagements is fairly easy! This repo is just a small collection of random scripts to help get you started.
https://github.com/ustayready/python-pentesting
#python #tools #pentest
GitHub
GitHub - ustayready/python-pentesting: Just a repo of random Python scripts to get pentesters started with the Python language…
Just a repo of random Python scripts to get pentesters started with the Python language on engagements. - ustayready/python-pentesting
Shikata ga nai (仕方がない) encoder ported into go with several improvements
SGN is a polymorphic binary encoder for offensive security purposes such as generating statically undetecable binary payloads. It uses a additive feedback loop to encode given binary instructions similar to LSFR. This project is the reimplementation of the original Shikata ga nai in golang with many improvements.
https://github.com/EgeBalci/sgn
#golang #tools #evasion #bypass
SGN is a polymorphic binary encoder for offensive security purposes such as generating statically undetecable binary payloads. It uses a additive feedback loop to encode given binary instructions similar to LSFR. This project is the reimplementation of the original Shikata ga nai in golang with many improvements.
https://github.com/EgeBalci/sgn
#golang #tools #evasion #bypass
GitHub
GitHub - EgeBalci/sgn: Shikata ga nai (仕方がない) encoder ported into go with several improvements
Shikata ga nai (仕方がない) encoder ported into go with several improvements - EgeBalci/sgn
Dynamic Data Resolver (DDR) — IDA Plugin 1.0 beta
Static reverse-engineering in IDA can often be problematic. Certain values are calculated at run time, which makes it difficult to understand what a certain basic block is doing. If you try to perform dynamic analysis by debugging a piece of malware, the malware will often detect it and start behaving differently. Today, Cisco Talos is releasing the 1.0 beta version of Dynamic Data Resolver (DDR) — a plugin for IDA that makes reverse-engineering malware easier. DDR is using instrumentation techniques to resolve dynamic values at runtime from the sample. For the 1.0 release, we have fixed a couple of bugs, ported it to the latest IDA version, added multiple new features, plus a new installer script that automatically resolves all dependencies.
https://blog.talosintelligence.com/2020/05/dynamic-data-resolver-1-0.html
#idapro #tools #windows #reverse
Static reverse-engineering in IDA can often be problematic. Certain values are calculated at run time, which makes it difficult to understand what a certain basic block is doing. If you try to perform dynamic analysis by debugging a piece of malware, the malware will often detect it and start behaving differently. Today, Cisco Talos is releasing the 1.0 beta version of Dynamic Data Resolver (DDR) — a plugin for IDA that makes reverse-engineering malware easier. DDR is using instrumentation techniques to resolve dynamic values at runtime from the sample. For the 1.0 release, we have fixed a couple of bugs, ported it to the latest IDA version, added multiple new features, plus a new installer script that automatically resolves all dependencies.
https://blog.talosintelligence.com/2020/05/dynamic-data-resolver-1-0.html
#idapro #tools #windows #reverse
Cisco Talos Blog
Dynamic Data Resolver (DDR) — IDA Plugin 1.0 beta
10/20/20 Update: A new version of this software and associated blog can be found here
Executive summary Static reverse-engineering in IDA can often be problematic. Certain values are calculated at run time, which makes it difficult to understand what a…
Executive summary Static reverse-engineering in IDA can often be problematic. Certain values are calculated at run time, which makes it difficult to understand what a…
What're you telling me, Ghidra?
Acclimating to a new reverse engineering platform for the first time is a daunting experience. It’s information overload. What am I supposed to be looking at? What are all of these windows trying to tell me? How do they relate to one another? What levers do I have to play with? With enough experience, answers naturally emerge. But before this intuition builds, a clear starting point is needed.
https://byte.how/posts/what-are-you-telling-me-ghidra/
#ghidra #reverse #tools
Acclimating to a new reverse engineering platform for the first time is a daunting experience. It’s information overload. What am I supposed to be looking at? What are all of these windows trying to tell me? How do they relate to one another? What levers do I have to play with? With enough experience, answers naturally emerge. But before this intuition builds, a clear starting point is needed.
https://byte.how/posts/what-are-you-telling-me-ghidra/
#ghidra #reverse #tools
byte.how
What're you telling me, Ghidra?
An introduction to Ghidra's primary components and the information they provide
ntlm_theft: A file payload generator for forced ntlm hash disclosure
Greetings fellow security enthusiast! Today I want to introduce you to a new security tool I’ve written called ntlm_theft, which is now available on GitHub. It’s a tool which generates a number of known filetypes (18 at time of writing), which can be used by an attacker to trick users into disclosing their NetNTLMv2 hashes.
> https://medium.com/greenwolf-security/ntlm-theft-a-file-payload-generator-for-forced-ntlm-hash-disclosure-2d5f1fe5b964
> https://github.com/Greenwolf/ntlm_theft
#windows #ntlm #tools #pentest
Greetings fellow security enthusiast! Today I want to introduce you to a new security tool I’ve written called ntlm_theft, which is now available on GitHub. It’s a tool which generates a number of known filetypes (18 at time of writing), which can be used by an attacker to trick users into disclosing their NetNTLMv2 hashes.
> https://medium.com/greenwolf-security/ntlm-theft-a-file-payload-generator-for-forced-ntlm-hash-disclosure-2d5f1fe5b964
> https://github.com/Greenwolf/ntlm_theft
#windows #ntlm #tools #pentest
Medium
ntlm_theft: A file payload generator for forced ntlm hash disclosure
Learn how ntlm_theft works and how to use it
InQL Scanner v2 is out
After the public launch of InQL we received an overwhelming response from the community. We’re excited to announce a new major release available on Github. In this version (codenamed dyno-mites), we have introduced a few cool features and a new logo!
https://blog.doyensec.com/2020/06/11/inql-scanner-v2.html
#tools #burp #web #graphql
After the public launch of InQL we received an overwhelming response from the community. We’re excited to announce a new major release available on Github. In this version (codenamed dyno-mites), we have introduced a few cool features and a new logo!
https://blog.doyensec.com/2020/06/11/inql-scanner-v2.html
#tools #burp #web #graphql
SearchOutlook
A C# tool to search through a running instance of Outlook for keywords
https://github.com/RedLectroid/SearchOutlook
#tools #windows #csharp #redteaming
A C# tool to search through a running instance of Outlook for keywords
https://github.com/RedLectroid/SearchOutlook
#tools #windows #csharp #redteaming
GitHub
GitHub - RedLectroid/SearchOutlook: A C# tool to search through a running instance of Outlook for keywords
A C# tool to search through a running instance of Outlook for keywords - GitHub - RedLectroid/SearchOutlook: A C# tool to search through a running instance of Outlook for keywords
Evasor
The Evasor is an automated security assessment tool which locates existing executables on the Windows operating system that can be used to bypass any Application Control rules. It is very easy to use, quick, saves time and fully automated which generates for you a report including description, screenshots and mitigations suggestions, suites for both blue and red teams in the assessment of a post-exploitation phase.
https://github.com/cyberark/Evasor/
#tools #evasion #bypass #windows #redteaming
The Evasor is an automated security assessment tool which locates existing executables on the Windows operating system that can be used to bypass any Application Control rules. It is very easy to use, quick, saves time and fully automated which generates for you a report including description, screenshots and mitigations suggestions, suites for both blue and red teams in the assessment of a post-exploitation phase.
https://github.com/cyberark/Evasor/
#tools #evasion #bypass #windows #redteaming
GitHub
GitHub - cyberark/Evasor: A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies
A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies - cyberark/Evasor
Tsunami
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
https://github.com/google/tsunami-security-scanner
#go #tools #pentesting #scanning
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
https://github.com/google/tsunami-security-scanner
#go #tools #pentesting #scanning
GitHub
GitHub - google/tsunami-security-scanner: Tsunami is a general purpose network security scanner with an extensible plugin system…
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence. - google/tsunami-security-scanner
Exploiting DLL Hijacking by DLL Proxying Super Easily
This is a tutorial about exploiting DLL Hijack vulnerability without crashing the application. The method used is called DLL Proxying.
https://github.com/tothi/dll-hijack-by-proxying
#windows #dll #exploitation #tools
This is a tutorial about exploiting DLL Hijack vulnerability without crashing the application. The method used is called DLL Proxying.
https://github.com/tothi/dll-hijack-by-proxying
#windows #dll #exploitation #tools
GitHub
GitHub - tothi/dll-hijack-by-proxying: Exploiting DLL Hijacking by DLL Proxying Super Easily
Exploiting DLL Hijacking by DLL Proxying Super Easily - tothi/dll-hijack-by-proxying
Cracking VBA Project Passwords
https://blog.didierstevens.com/2020/07/20/cracking-vba-project-passwords/
#vba #windows #tools #bruteforce
https://blog.didierstevens.com/2020/07/20/cracking-vba-project-passwords/
#vba #windows #tools #bruteforce
Didier Stevens
Cracking VBA Project Passwords
VBA projects can be protected with a password. The password is not used to encrypt the content of the VBA project, it is just used as protection by the VBA IDE: when the password is set, you will b…
TLS Poison
A tool that allows for generic SSRF via TLS, as well as CSRF via image tags in most browsers. The goals are similar to SNI injection, but this new method uses inherent behaviors of TLS, instead of depending upon bugs in a particular implementation.
https://github.com/jmdx/TLS-poison/
#tools #appsec #web #bugbounty
A tool that allows for generic SSRF via TLS, as well as CSRF via image tags in most browsers. The goals are similar to SNI injection, but this new method uses inherent behaviors of TLS, instead of depending upon bugs in a particular implementation.
https://github.com/jmdx/TLS-poison/
#tools #appsec #web #bugbounty
GitHub
GitHub - jmdx/TLS-poison
Contribute to jmdx/TLS-poison development by creating an account on GitHub.
GoPurple
This project is a simple collection of various shell code injection techniques, aiming to streamline the process of endpoint detection evaluation, beside challenging myself to get into Golang world.
https://github.com/sh4hin/GoPurple
#evasion #bypass #redteaming #tools #golang
This project is a simple collection of various shell code injection techniques, aiming to streamline the process of endpoint detection evaluation, beside challenging myself to get into Golang world.
https://github.com/sh4hin/GoPurple
#evasion #bypass #redteaming #tools #golang
GitHub
GitHub - sh4hin/GoPurple: Yet another shellcode runner consists of different techniques for evaluating detection capabilities of…
Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions - sh4hin/GoPurple
SSRFIRE
An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
https://github.com/micha3lb3n/SSRFire
#appsec #web #ssrf #tools
An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
https://github.com/micha3lb3n/SSRFire
#appsec #web #ssrf #tools
GitHub
GitHub - ksharinarayanan/SSRFire: An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options…
An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects - ksharinarayanan/SSRFire
N1QLMap
The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
https://github.com/FSecureLABS/N1QLMap
#n1ql #tools #web #appsec
The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
https://github.com/FSecureLABS/N1QLMap
#n1ql #tools #web #appsec
GitHub
GitHub - FSecureLABS/N1QLMap: The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities. - FSecureLABS/N1QLMap
StreamDivert: Relaying (specific) network connections
The first part of this blog will be the story of how this tool found it’s way into existence, the problems we faced and the thought process followed. The second part will be a more technical deep dive into the tool itself, how to use it, and how it works.
https://research.nccgroup.com/2020/09/10/streamdivert-relaying-specific-network-connections/
#redteaming #windows #tools
The first part of this blog will be the story of how this tool found it’s way into existence, the problems we faced and the thought process followed. The second part will be a more technical deep dive into the tool itself, how to use it, and how it works.
https://research.nccgroup.com/2020/09/10/streamdivert-relaying-specific-network-connections/
#redteaming #windows #tools
NCC Group Research Blog
StreamDivert: Relaying (specific) network connections
Author: Jelle Vergeer The first part of this blog will be the story of how this tool found it’s way into existence, the problems we faced and the thought process followed. The second part wil…
Building a custom Mimikatz binary
This post will cover how to build a custom Mimikatz binary by doing source code modification to get past AV/EDR software.
https://s3cur3th1ssh1t.github.io/Building-a-custom-Mimikatz-binary/
#tools #windows #mimikatz #redteaming #evasion
This post will cover how to build a custom Mimikatz binary by doing source code modification to get past AV/EDR software.
https://s3cur3th1ssh1t.github.io/Building-a-custom-Mimikatz-binary/
#tools #windows #mimikatz #redteaming #evasion
s3cur3th1ssh1t.github.io
Building a custom Mimikatz binary | S3cur3Th1sSh1t
This post will cover how to build a custom Mimikatz binary by doing source code modification to get past AV/EDR software.
long_night
A dark theme for your long reverse engineering session powered by a colorful pastel pallete. long_night supports IDA 7.3+ out of the box and can be used with older versions through the plugin IDASkins. long_night is an ongoing project that will be extended to support different platforms and tools.
https://github.com/ioncodes/long_night
#ida #re #themes #tools
A dark theme for your long reverse engineering session powered by a colorful pastel pallete. long_night supports IDA 7.3+ out of the box and can be used with older versions through the plugin IDASkins. long_night is an ongoing project that will be extended to support different platforms and tools.
https://github.com/ioncodes/long_night
#ida #re #themes #tools
GitHub
GitHub - ioncodes/long_night: A collection of themes based on pastel colors, created for reverse engineers
A collection of themes based on pastel colors, created for reverse engineers - ioncodes/long_night
xbar (the BitBar reboot) lets you put the output from any script/program in your macOS menu bar.
Put the output from any script or program into your macOS Menu Bar (the BitBar reboot)
https://github.com/matryer/xbar
#tools
Put the output from any script or program into your macOS Menu Bar (the BitBar reboot)
https://github.com/matryer/xbar
#tools
GitHub
GitHub - matryer/xbar: Put the output from any script or program into your macOS Menu Bar (the BitBar reboot)
Put the output from any script or program into your macOS Menu Bar (the BitBar reboot) - matryer/xbar