¶¶Wapiti
web vulnerability scanner written in Python.
The web-application vulnerability scanner
Wapiti allows you to audit the security of your websites or web applications.
It performs "black-box" scans (it does not study the source code) of the web application by crawling the webpages of the deployed webapp, looking for scripts and forms where it can inject data.
Once it gets the list of URLs, forms and their inputs, Wapiti acts like a fuzzer, injecting payloads to see if a script is vulnerable.
https://wapiti-scanner.github.io/
¶¶ for more details on installation.
https://github.com/wapiti-scanner/wapiti/blob/master/INSTALL.md
¶¶ubuntu : https://www.youtube.com/watch?v=TD5rehelHPY
web vulnerability scanner written in Python.
The web-application vulnerability scanner
Wapiti allows you to audit the security of your websites or web applications.
It performs "black-box" scans (it does not study the source code) of the web application by crawling the webpages of the deployed webapp, looking for scripts and forms where it can inject data.
Once it gets the list of URLs, forms and their inputs, Wapiti acts like a fuzzer, injecting payloads to see if a script is vulnerable.
https://wapiti-scanner.github.io/
¶¶ for more details on installation.
https://github.com/wapiti-scanner/wapiti/blob/master/INSTALL.md
¶¶ubuntu : https://www.youtube.com/watch?v=TD5rehelHPY
GitHub
wapiti/INSTALL.md at master · wapiti-scanner/wapiti
Web vulnerability scanner written in Python3. Contribute to wapiti-scanner/wapiti development by creating an account on GitHub.
👍1🔥1
Forwarded from Script Termux (󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖ㅤ 󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖󠇖ə͢͢͢L 17thn)
¶¶ Kali NetHunter for the OnePlus 7 & OnePlus 7 Pro
https://forum.xda-developers.com/t/rom-official-kali-nethunter-for-the-oneplus-7-oneplus-7-pro.3976357/
https://forum.xda-developers.com/t/rom-official-kali-nethunter-for-the-oneplus-7-oneplus-7-pro.3976357/
XDA Forums
[ROM] [Official] Kali NetHunter for the OnePlus 7 & OnePlus 7 Pro
I present to you: Kali NetHunter for the OnePlus 7 & OnePlus 7 Pro
Kali NetHunter is an Android ROM overlay that turns an ordinary phone into the ultimate Mobile Penetration Testing Platform.
The...
Kali NetHunter is an Android ROM overlay that turns an ordinary phone into the ultimate Mobile Penetration Testing Platform.
The...
👍2
Through this bot you can track people just by sending a simple link.
#phishing #tracking #url #cloudflare #telegrambot #ip #location
@Ghetto_driveby_bot
¶¶ Commands
/start
/help
/create
🌐 Enter Your URL ( )
#phishing #tracking #url #cloudflare #telegrambot #ip #location
@Ghetto_driveby_bot
¶¶ Commands
/start
/help
/create
🌐 Enter Your URL ( )
👍4
¶¶MailFinder
#osint
OSINT tool for finding email by first and last name
apt update
apt upgrade
apt install git
apt install python
pip3 install requests
git clone https://github.com/mishakorzik/MailFinder
cd MailFinder
python MailFinder.py
#osint
OSINT tool for finding email by first and last name
apt update
apt upgrade
apt install git
apt install python
pip3 install requests
git clone https://github.com/mishakorzik/MailFinder
cd MailFinder
python MailFinder.py
👌1
ADMINHACK
will hack the admin panel of the site.
Installing for termux
pkg upgrade
pkg update
pkg install git
git clone https://github.com/mishakorzik/AdminHack
cd AdminHack
bash setup.sh
Everything is ready! Now we are waiting for everything to download!
succes
Installing for linux
apt update
apt upgrade
apt install git
git clone https://github.com/mishakorzik/AdminHack
cd AdminHack
bash setup.sh
Start Program
Enter a command to start AdminHack
bash AdminHack.sh
Note:- This tool is only for educational purposes. We are not responsible for any misuse or illegal activities.
will hack the admin panel of the site.
Installing for termux
pkg upgrade
pkg update
pkg install git
git clone https://github.com/mishakorzik/AdminHack
cd AdminHack
bash setup.sh
Everything is ready! Now we are waiting for everything to download!
succes
Installing for linux
apt update
apt upgrade
apt install git
git clone https://github.com/mishakorzik/AdminHack
cd AdminHack
bash setup.sh
Start Program
Enter a command to start AdminHack
bash AdminHack.sh
Note:- This tool is only for educational purposes. We are not responsible for any misuse or illegal activities.
❤2👍1
wifite2.zip
1.9 MB
Current version:
#update #wifite #nethunter
installation:-
required packages:
2.6.9#update #wifite #nethunter
installation:-
cp $(find /sdcard/Download -name wifite2.zip) ./ ;unzip wifite2.zip;rm -rf wifite2.zip;cd wifite2;ls
sudo python3 setup.py install
cp wordlist-probable.txt /usr/share/dictrequired packages:
make deps
make hcxtools
make hcxdumptool
make bully
make reavermake hashcat❤3👍1
Complete Linux Training Course
Download link-
https://drive.google.com/drive/folders/1-is9JovkcB4gjnNRMhtX5AsB2lyxOaVp
Don't Forget To React
ᴊᴏɪɴ ꜰᴏʀ ᴍᴏʀᴇ ›
@hackingcourses07
Download link-
https://drive.google.com/drive/folders/1-is9JovkcB4gjnNRMhtX5AsB2lyxOaVp
Don't Forget To React
ᴊᴏɪɴ ꜰᴏʀ ᴍᴏʀᴇ ›
@hackingcourses07
❤1👍1
Termux
¶¶ Fluxion-on-esp8266 This is a Advance Fluxion tool on esp8266... #esp8266 https://github.com/pitube08642/Fluxion-on-ESP8266 ¶¶ android app https://play.google.com/store/apps/details?id=com.bluino.esploader ¶¶ more info about Esp8266 https://create.…
espCaptivePortal.bin
295.8 KB
Termux
wifite2.zip
Media is too big
VIEW IN TELEGRAM
nethunter on (Samsung note9 )
Monitor mode & packet injection works
HID= Not working
USB: 2/3
realtek /mediatek / and atheros adapters works
includes : alfa adapters if you have a samsung note9 rooted
DM only if you have samsung note9 V=9 and V=11
RTL8192EU
RTL8188EUS
RTL8812AU
Mediatek = MT7601U
Atheros AR9271
#wifite2 #wps #wpa #wpa2 #hashcat
Monitor mode & packet injection works
HID= Not working
USB: 2/3
realtek /mediatek / and atheros adapters works
includes : alfa adapters if you have a samsung note9 rooted
DM only if you have samsung note9 V=9 and V=11
RTL8192EU
RTL8188EUS
RTL8812AU
Mediatek = MT7601U
Atheros AR9271
#wifite2 #wps #wpa #wpa2 #hashcat
👍3❤1
Media is too big
VIEW IN TELEGRAM
#nethunter #wifihacking #wpa #wpa2
#androidtools #TermuxToolx #pmkidhashcrack #pmkid #hashcat #samsungnote9 #android #gpu
¶¶https://www.cyberark.com/resources/threat-research-blog/cracking-wifi-at-scale-with-one-simple-trick
COMMANDS //
📍sudo systemctl stop NetworkManager.service
📍sudo systemctl stop wpa_supplicant.service
📍sudo hcxdumptool -i wlan1 -o dumpfile.pcapng --active_beacon --enable_status=15
📍sudo systemctl start wpa_supplicant.service
📍sudo systemctl start NetworkManager.service
📍hcxpcapngtool -o hash.hc22000 -E essidlist dumpfile.pcapng
📍hashcat -m 22000 hash.hc22000 wordlist.txt
¶¶ Windows:
📍hashcat.exe -m 22000 hash.hc22000 -a 3 ?d?d?d?d?d?d?d?d
📍hashcat.exe -m 22000 hash.hc22000 -a 3 --increment --increment-min 8 --increment-max 14 ?d?d?d?d?d?d?d?d?d?d?d?d?d?d
#androidtools #TermuxToolx #pmkidhashcrack #pmkid #hashcat #samsungnote9 #android #gpu
¶¶https://www.cyberark.com/resources/threat-research-blog/cracking-wifi-at-scale-with-one-simple-trick
COMMANDS //
📍sudo systemctl stop NetworkManager.service
📍sudo systemctl stop wpa_supplicant.service
📍sudo hcxdumptool -i wlan1 -o dumpfile.pcapng --active_beacon --enable_status=15
📍sudo systemctl start wpa_supplicant.service
📍sudo systemctl start NetworkManager.service
📍hcxpcapngtool -o hash.hc22000 -E essidlist dumpfile.pcapng
📍hashcat -m 22000 hash.hc22000 wordlist.txt
¶¶ Windows:
📍hashcat.exe -m 22000 hash.hc22000 -a 3 ?d?d?d?d?d?d?d?d
📍hashcat.exe -m 22000 hash.hc22000 -a 3 --increment --increment-min 8 --increment-max 14 ?d?d?d?d?d?d?d?d?d?d?d?d?d?d
👍4👌2
Skiptracer - OSINT scraping framework
Initial attack vectors for recon usually involve utilizing pay-for-data/API (Recon-NG), or paying to utilize transforms (Maltego) to get data mining results. Skiptracer utilizes some basic python webscraping (BeautifulSoup) of PII paywall sites to compile passive information on a target on a ramen noodle budget.
Installation
$ git clone https://github.com/xillwillx/skiptracer.git skiptracer
$ cd skiptracer
Install requirements
$ pip install -r requirements.txt
Run
$ python skiptracer.py -l (phone|email|sn|name|plate)
The modules will allow queries for the following:
- Phone
- Email
- Screen names
- Real names
- Addresses
- IP
- Hostname
- Breach Credentials
Disclaimer:- This project was created for educational purposes and should not be used in environments without legal authorization.
https://gitlab.com/illwill/skiptracer
Initial attack vectors for recon usually involve utilizing pay-for-data/API (Recon-NG), or paying to utilize transforms (Maltego) to get data mining results. Skiptracer utilizes some basic python webscraping (BeautifulSoup) of PII paywall sites to compile passive information on a target on a ramen noodle budget.
Installation
$ git clone https://github.com/xillwillx/skiptracer.git skiptracer
$ cd skiptracer
Install requirements
$ pip install -r requirements.txt
Run
$ python skiptracer.py -l (phone|email|sn|name|plate)
The modules will allow queries for the following:
- Phone
- Screen names
- Real names
- Addresses
- IP
- Hostname
- Breach Credentials
Disclaimer:- This project was created for educational purposes and should not be used in environments without legal authorization.
https://gitlab.com/illwill/skiptracer
👍4❤1
fluxion.zip
11.1 MB
☰☲☷ FLU [X] I0N ☰☲☷
☲ WI-FI ☲
Ver: 6.9
Installation:-
cp $(find /sdcard/Download -name fluxion.zip) ./;unzip fluxion.zip && rm -rf fluxion.zip;cd fluxion;mv fluxion /usr/bin;chmod 755 /usr/bin/fluxion;cd .. && mv fluxion /usr/share
Howto? (make sure to run user interface in vnc/kex as root)
Now you can just type fluxion and done ;)
☲ WI-FI ☲
Ver: 6.9
Installation:-
cp $(find /sdcard/Download -name fluxion.zip) ./;unzip fluxion.zip && rm -rf fluxion.zip;cd fluxion;mv fluxion /usr/bin;chmod 755 /usr/bin/fluxion;cd .. && mv fluxion /usr/share
Howto? (make sure to run user interface in vnc/kex as root)
Now you can just type fluxion and done ;)
👍2
Orbitaldump:-- A Simple Multi-Threaded Distributed SSH Brute-Forcing Tool Written In Python.
When the script is executed without the --proxies switch, it acts just like any other multi-threaded SSH brute-forcing script. When the --proxies switch is added, the script pulls a list (usually thousands) of SOCKS4 proxies from ProxyScrape and launch all brute-force attacks over the SOCKS4 proxies so brute-force attempts will be less likely to be rate-limited by the target host.
Usages:-
https://github.com/k4yt3x/orbitaldump
Note:- This tool is only for educational purposes. We are not responsible for any misuse or illegal activities.
Facebook Page:-
https://www.facebook.com/ZeroDayExploitware
When the script is executed without the --proxies switch, it acts just like any other multi-threaded SSH brute-forcing script. When the --proxies switch is added, the script pulls a list (usually thousands) of SOCKS4 proxies from ProxyScrape and launch all brute-force attacks over the SOCKS4 proxies so brute-force attempts will be less likely to be rate-limited by the target host.
Usages:-
https://github.com/k4yt3x/orbitaldump
Note:- This tool is only for educational purposes. We are not responsible for any misuse or illegal activities.
Facebook Page:-
https://www.facebook.com/ZeroDayExploitware
❤2👍1
¶¶ waf-bypass
Check your WAF before an attacker does
WAF bypass Tool is an open source tool to analyze the security of any WAF for False Positives and False Negatives using predefined and customizable payloads. Check your WAF before an attacker does. WAF Bypass Tool is developed by Nemesida WAF team with the participation of community.
📍git clone https://github.com/nemesida-waf/waf_bypass.git /opt/waf-bypass/
📍python3 -m pip install -r /opt/waf-bypass/requirements.txt
📍python3 /opt/waf-bypass/main.py --host='example.com'
Check your WAF before an attacker does
WAF bypass Tool is an open source tool to analyze the security of any WAF for False Positives and False Negatives using predefined and customizable payloads. Check your WAF before an attacker does. WAF Bypass Tool is developed by Nemesida WAF team with the participation of community.
📍git clone https://github.com/nemesida-waf/waf_bypass.git /opt/waf-bypass/
📍python3 -m pip install -r /opt/waf-bypass/requirements.txt
📍python3 /opt/waf-bypass/main.py --host='example.com'
👍1
¶¶ Beta_Nicco
An advance payload generation tool which automates your payload creation work. It also features some feature like ;-
sudo apt-get update && sudo apt-get upgrade -y
📍git clone https://github.com/empath1928/Beta_Nicco
📍cd Beta_Nicco
📍ls
📍chmod +x setup.sh
📍./setup.sh OR bash setup.sh
[ 1 ] ---> Payload for any platform
[ 2 ] ---> Encoding the payload for aviation
[ 3 ] ---> Auto listner as well as Custom for easy process
An advance payload generation tool which automates your payload creation work. It also features some feature like ;-
sudo apt-get update && sudo apt-get upgrade -y
📍git clone https://github.com/empath1928/Beta_Nicco
📍cd Beta_Nicco
📍ls
📍chmod +x setup.sh
📍./setup.sh OR bash setup.sh
[ 1 ] ---> Payload for any platform
[ 2 ] ---> Encoding the payload for aviation
[ 3 ] ---> Auto listner as well as Custom for easy process
❤1👍1
¶¶ INFO-X
Info-X is a information gathering tool...with this tool You can get vectims like ip , gmail , phone number information
#osint #info #ip #phonenumber
📍pkg update
📍pkg upgrade
📍pkg install python
📍pkg install git
📍pip install requests
📍pip install bs4
📍pip install futures
📍pip install mechanize
📍cd $HOME
📍rm -rf INFO-X
📍git clone --depth=1 https://github.com/U7P4L-IN/INFO-X.git
📍cd INFO-X
📍python INFO.py
[01] Track IP Address
[02] Phone Number Info
[03] E-Mail Info
[04] More Tools
[05] Contract Me
[00] Exit
Info-X is a information gathering tool...with this tool You can get vectims like ip , gmail , phone number information
#osint #info #ip #phonenumber
📍pkg update
📍pkg upgrade
📍pkg install python
📍pkg install git
📍pip install requests
📍pip install bs4
📍pip install futures
📍pip install mechanize
📍cd $HOME
📍rm -rf INFO-X
📍git clone --depth=1 https://github.com/U7P4L-IN/INFO-X.git
📍cd INFO-X
📍python INFO.py
[01] Track IP Address
[02] Phone Number Info
[03] E-Mail Info
[04] More Tools
[05] Contract Me
[00] Exit
👍11❤6