SpiderFoot 3.0 is now out! Major changes include:
- Fully Python 3
- Target usernames
- Run scans by CLI or web UI
https://t.co/oJmtjO05rv
One minute DNS recon tutorial with the CLI: https://t.co/c6LltRCd4I
- Fully Python 3
- Target usernames
- Run scans by CLI or web UI
https://t.co/oJmtjO05rv
One minute DNS recon tutorial with the CLI: https://t.co/c6LltRCd4I
SpiderFoot
SpiderFoot 3.0 Open Source Release - SpiderFoot
It’s been a long time in the making but SpiderFoot 3.0 is finally tagged and released. With the last official release (2.12) being almost two years ago and active development since then, you can imagine how much has changed, so let’s walk through the major…
hacker-roadmap : A guide for amateurs pen testers and a collection of hacking tools, resources and references to practice ethical hacking, pen testing and web security : https://t.co/XwPgthH0Kj
GitHub
sundowndev/hacker-roadmap
:pushpin: A guide for amateurs pen testers and a collection of hacking tools, resources and references to practice ethical hacking, pen testing and web security. - sundowndev/hacker-roadmap
Kali 2020.1 is up for download!
Big changes yet again, with non-root user by default, a single installer image for multiple desktop enviroments, updates to themes, and more! Not to mention Rootless NetHunter!
https://t.co/IrUnqyoHjM
Big changes yet again, with non-root user by default, a single installer image for multiple desktop enviroments, updates to themes, and more! Not to mention Rootless NetHunter!
https://t.co/IrUnqyoHjM
www.kali.org
Kali Linux 2020.1 Release
We are here to kick off our first release of the decade, with Kali Linux 2020.1! Available for immediate download.
Added a mimikatz MemSSP style hook to Fermion, you can check out the code here => https://t.co/iNSBeH8wvi This is based on the great write-ups by https://t.co/8Ny4lsc2Bj
GitHub
FuzzySecurity/Fermion
Fermion, an electron wrapper for Frida & Monaco. Contribute to FuzzySecurity/Fermion development by creating an account on GitHub.
Windows Server 2019 securekernel live debugging demo
https://t.co/5b4YEQjqa1
https://t.co/5b4YEQjqa1
YouTube
Windows securekernel live debugging
Microsoft Windows Server 2019 securekernel live debugging using WinDBG EXDi LiveCloudKd plugin.
OpenSMTPD RCE Vulnerability
https://www.openwall.com/lists/oss-security/2020/01/28/3
https://www.openwall.com/lists/oss-security/2020/01/28/3
Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework
https://github.com/koutto/jok3r
https://github.com/koutto/jok3r
GitHub
GitHub - koutto/jok3r: Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework
Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework - koutto/jok3r
PlaystoreDownloader : A command line tool to download Android applications directly from the Google Play Store : https://t.co/7nktghElgx (not affiliated with Google in any way)
GitHub
ClaudiuGeorgiu/PlaystoreDownloader
A command line tool to download Android applications directly from the Google Play Store - ClaudiuGeorgiu/PlaystoreDownloader
Load encrypted PE from XML Attribute.
MSBuild is still the best.😅
https://t.co/wRSkFjFAt2
MSBuild sets Property then calls Execute.
Use this example to decouple payloads & prove that all security products have a "Single File Bias".
Decouple payloads to subvert detection.
MSBuild is still the best.😅
https://t.co/wRSkFjFAt2
MSBuild sets Property then calls Execute.
Use this example to decouple payloads & prove that all security products have a "Single File Bias".
Decouple payloads to subvert detection.
GitHub
XwingAngel/PELoader
Load PE via XML Attribute. Contribute to XwingAngel/PELoader development by creating an account on GitHub.
FakeLogonScreen is a C# utility to steal a user's password using a fake Windows logon screen. This password will then be validated and saved to disk. Useful in combination with CobaltStrike's execute-assembly command.
https://t.co/o7AH6KBb79
https://t.co/o7AH6KBb79
GitHub
bitsadmin/fakelogonscreen
Fake Windows logon screen to steal passwords. Contribute to bitsadmin/fakelogonscreen development by creating an account on GitHub.
Scope control, scope scanner and progress tracker for easier working on a bug bounty or pentest project
https://github.com/c0rvax/project-black
https://github.com/c0rvax/project-black
GitHub
GitHub - c0rv4x/project-black: Pentest/BugBounty progress control with scanning modules
Pentest/BugBounty progress control with scanning modules - c0rv4x/project-black
TeamViewer stored user passwords encrypted, not hashed, and the key is now public
https://t.co/Z715ky0Pa3
https://t.co/Z715ky0Pa3
WhyNotSecurity
TeamViewer
Oh man where to even begin with this one. This was a crazy ride and I learned a ton along the way.