h4cker/new_tools.md
2019-10-24 12:05:02 +00:00

322 lines
56 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# Latest Cool Tools
The following are a collection of recently-released pen test tools. I update this list every time that there is a new post and when I find a new one around the Internet. The rest of the repository has hundreds of additional cybersecurity and pen test tools.
----
- [Femida - Automated Blind-Xss Search For Burp Suite](http://feedproxy.google.com/~r/PentestTools/~3/hcIniCfTwFk/femida-automated-blind-xss-search-for.html)
- [Slither v0.6.7 - Static Analyzer For Solidity](http://feedproxy.google.com/~r/PentestTools/~3/vb_PZS9dudM/slither-v067-static-analyzer-for.html)
- [AutoMacTC - Automated Mac Forensic Triage Collector](http://feedproxy.google.com/~r/PentestTools/~3/todwtrFFW70/automactc-automated-mac-forensic-triage.html)
- [Password Lense - Reveal Character Types In A Password](http://feedproxy.google.com/~r/PentestTools/~3/saysdQ-Pmq0/password-lense-reveal-character-types.html)
- [Osmedeus v2.1 - Fully Automated Offensive Security Framework For Reconnaissance And Vulnerability Scanning](http://feedproxy.google.com/~r/PentestTools/~3/TAqtz2izPm4/osmedeus-v21-fully-automated-offensive.html)
- [Snare - Super Next Generation Advanced Reactive honEypot](http://feedproxy.google.com/~r/PentestTools/~3/etMMshJWTjI/snare-super-next-generation-advanced.html)
- [UAC-A-Mola - Tool That Allows Security Researchers To Investigate New UAC Bypasses, In Addition To Detecting And Exploiting Known Bypasses](http://feedproxy.google.com/~r/PentestTools/~3/I342cozrCls/uac-mola-tool-that-allows-security.html)
- [SUID3NUM - A Script Which Utilizes Python'S Built-In Modules To Find SUID Bins, Separate Default Bins From Custom Bins, Cross-Match Those With Bins In GTFO Bin's Repository & Auto-Exploit Those](http://feedproxy.google.com/~r/PentestTools/~3/5a7jOsS9bX8/suid3num-script-which-utilizes-pythons.html)
- [FOCA - Tool To Find Metadata And Hidden Information In The Documents](http://feedproxy.google.com/~r/PentestTools/~3/nFwHd45s92A/foca-tool-to-find-metadata-and-hidden.html)
- [IoT-Implant-Toolkit - Toolkit For Implant Attack Of IoT Devices](http://feedproxy.google.com/~r/PentestTools/~3/3OB50NG0vmM/iot-implant-toolkit-toolkit-for-implant.html)
- [Discover - Custom Bash Scripts Used To Automate Various Penetration Testing Tasks Including Recon, Scanning, Parsing, And Creating Malicious Payloads And Listeners With Metasploit](http://feedproxy.google.com/~r/PentestTools/~3/cO3SnhytyUU/discover-custom-bash-scripts-used-to.html)
- [Rbuster - Yet Another Dirbuster](http://feedproxy.google.com/~r/PentestTools/~3/kNQvOukex84/rbuster-yet-another-dirbuster.html)
- [XMLRPC Bruteforcer - An XMLRPC Brute Forcer Targeting Wordpress](http://feedproxy.google.com/~r/PentestTools/~3/y9o5Z506UHA/xmlrpc-bruteforcer-xmlrpc-brute-forcer.html)
- [Dirstalk - Modern Alternative To Dirbuster/Dirb](http://feedproxy.google.com/~r/PentestTools/~3/NCz0l6NC_Jc/dirstalk-modern-alternative-to.html)
- [Cotopaxi - Set Of Tools For Security Testing Of Internet Of Things Devices Using Specific Network IoT Protocols](http://feedproxy.google.com/~r/PentestTools/~3/awVpNshtexM/cotopaxi-set-of-tools-for-security.html)
- [Auto Re - IDA PRO Auto-Renaming Plugin With Tagging Support](http://feedproxy.google.com/~r/PentestTools/~3/qTj73V0ew0g/auto-re-ida-pro-auto-renaming-plugin.html)
- [Gobuster v3.0 - Directory/File, DNS And VHost Busting Tool Written In Go](http://feedproxy.google.com/~r/PentestTools/~3/nkK1LNxKpg0/gobuster-v30-directoryfile-dns-and.html)
- [RITA - Real Intelligence Threat Analytics](http://feedproxy.google.com/~r/PentestTools/~3/1mCFWIgo0r0/rita-real-intelligence-threat-analytics.html)
- [Eaphammer v1.9.0 - Targeted Evil Twin Attacks Against WPA2-Enterprise Networks](http://feedproxy.google.com/~r/PentestTools/~3/sZn-5FG2wTo/eaphammer-v190-targeted-evil-twin.html)
- [Postenum - A Clean, Nice And Easy Tool For Basic/Advanced Privilege Escalation Techniques](http://feedproxy.google.com/~r/PentestTools/~3/GpewdzubbZ4/postenum-clean-nice-and-easy-tool-for.html)
- [Unicorn-Bios - Basic BIOS Emulator For Unicorn Engine](http://feedproxy.google.com/~r/PentestTools/~3/a1iJIC1mmaw/unicorn-bios-basic-bios-emulator-for.html)
- [uniFuzzer - A Fuzzing Tool For Closed-Source Binaries Based On Unicorn And LibFuzzer](http://feedproxy.google.com/~r/PentestTools/~3/90UMwndvcfU/unifuzzer-fuzzing-tool-for-closed.html)
- [SMTPTester - Tool To Check Common Vulnerabilities In SMTP Servers](http://feedproxy.google.com/~r/PentestTools/~3/X1SMXv14Vws/smtptester-tool-to-check-common.html)
- [Tylium - Primary Data Pipelines For Intrusion Detection, Security Analytics And Threat Hunting](http://feedproxy.google.com/~r/PentestTools/~3/KvK02H46LgM/tylium-primary-data-pipelines-for.html)
- [Fsmon - Monitor Filesystem On iOS / OS X / Android / FirefoxOS / Linux](http://feedproxy.google.com/~r/PentestTools/~3/JWYXGMKRJYw/fsmon-monitor-filesystem-on-ios-os-x.html)
- [Traxss - Automated XSS Vulnerability Scanner](http://feedproxy.google.com/~r/PentestTools/~3/xvXQMTg3IlU/traxss-automated-xss-vulnerability.html)
- [DECAF - Short for Dynamic Executable Code Analysis Framework](http://feedproxy.google.com/~r/PentestTools/~3/rkeyV1Wsm7M/decaf-short-for-dynamic-executable-code.html)
- [Mosca - Manual Search Tool To Find Bugs Like A Grep Unix Command](http://feedproxy.google.com/~r/PentestTools/~3/CoPKt-KlvsQ/mosca-manual-search-tool-to-find-bugs.html)
- [MalConfScan - Volatility Plugin For Extracts Configuration Data Of Known Malware](http://feedproxy.google.com/~r/PentestTools/~3/GUzlXxFr0Js/malconfscan-volatility-plugin-for.html)
- [Ispy - Eternalblue (MS17-010) / Bluekeep (CVE-2019-0708) Scanner And Exploit](http://feedproxy.google.com/~r/PentestTools/~3/ms23O5DiiEQ/ispy-eternalblue-ms17-010-bluekeep-cve.html)
- [Zeek - A Powerful Network Analysis Framework That Is Much Different From The Typical IDS You May Know](http://feedproxy.google.com/~r/PentestTools/~3/KPDGs0NRmsQ/zeek-powerful-network-analysis.html)
- [Maryam - Open-source intelligence (OSINT) Framework](http://feedproxy.google.com/~r/PentestTools/~3/BQ1U6qzZrN8/maryam-open-source-intelligence-osint.html)
- [box.js - A Tool For Studying JavaScript Malware](http://feedproxy.google.com/~r/PentestTools/~3/4rzpnIcLF6s/boxjs-tool-for-studying-javascript.html)
- [FATT - A Script For Extracting Network Metadata And Fingerprints From Pcap Files And Live Network Traffic](http://feedproxy.google.com/~r/PentestTools/~3/wHgG3GSXPuM/fatt-script-for-extracting-network.html)
- [Penta - Open Source All-In-One CLI Tool To Automate Pentesting](http://feedproxy.google.com/~r/PentestTools/~3/VeXiUW5MKuE/penta-open-source-all-in-one-cli-tool.html)
- [Tarnish - A Chrome Extension Static Analysis Tool To Help Aide In Security Reviews](http://feedproxy.google.com/~r/PentestTools/~3/RarYsz_39qA/tarnish-chrome-extension-static.html)
- [B2R2 - Collection Of Useful Algorithms, Functions, And Tools For Binary Analysis](http://feedproxy.google.com/~r/PentestTools/~3/Q15IlaLOCx4/b2r2-collection-of-useful-algorithms.html)
- [Userrecon-Py v2.0 - Username Recognition On Various Websites](http://feedproxy.google.com/~r/PentestTools/~3/c7uPNvH8iLk/userrecon-py-v20-username-recognition.html)
- [DNS Rebinding Tool - DNS Rebind Tool With Custom Scripts](http://feedproxy.google.com/~r/PentestTools/~3/VG7fx5Ahuus/dns-rebinding-tool-dns-rebind-tool-with.html)
- [Fenrir - Simple Bash IOC Scanner](http://feedproxy.google.com/~r/PentestTools/~3/DEXbxuZxHic/fenrir-simple-bash-ioc-scanner.html)
- [ManaTI - A Web-Based Tool To Assist The Work Of The Intuitive Threat Analysts](http://feedproxy.google.com/~r/PentestTools/~3/magp9lq1V9s/manati-web-based-tool-to-assist-work-of.html)
- [ThreadBoat - Program Uses Thread Execution Hijacking To Inject Native Shellcode Into A Standard Win32 Application](http://feedproxy.google.com/~r/PentestTools/~3/FC6jn8Q6_LQ/threadboat-program-uses-thread.html)
- [SQLMap v1.3.10 - Automatic SQL Injection And Database Takeover Tool](http://feedproxy.google.com/~r/PentestTools/~3/k-Bb_83QO6w/sqlmap-v1310-automatic-sql-injection.html)
- [GiveMeSecrets - Use Regular Expressions To Get Sensitive Information From A Given Repository (GitHub, Pip Or Npm)](http://feedproxy.google.com/~r/PentestTools/~3/rm2q3lUr-Xs/givemesecrets-use-regular-expressions.html)
- [Lockdoor Framework - A Penetration Testing Framework With Cyber Security Resources](http://feedproxy.google.com/~r/PentestTools/~3/v3rNXWornZ4/lockdoor-framework-penetration-testing.html)
- [Sub.Sh - Online Subdomain Detect Script](http://feedproxy.google.com/~r/PentestTools/~3/Qe8yZPMMNjk/subsh-online-subdomain-detect-script.html)
- [CryptonDie - A Ransomware Developed For Study Purposes](http://feedproxy.google.com/~r/PentestTools/~3/Z0YkIrBUmbw/cryptondie-ransomware-developed-for.html)
- [Recomposer - Randomly Changes Win32/64 PE Files For 'Safer' Uploading To Malware And Sandbox Sites](http://feedproxy.google.com/~r/PentestTools/~3/gVroQADJHWg/recomposer-randomly-changes-win3264-pe.html)
- [Terraform AWS Secure Baseline - Terraform Module To Set Up Your AWS Account With The Secure Baseline Configuration Based On CIS Amazon Web Services Foundations](http://feedproxy.google.com/~r/PentestTools/~3/kpRIN1tO0m8/terraform-aws-secure-baseline-terraform.html)
- [Syhunt Community 6.7 - Web And Mobile Application Scanner](http://feedproxy.google.com/~r/PentestTools/~3/LCuYj1U9fus/syhunt-community-67-web-and-mobile.html)
- [DumpsterFire - "Security Incidents In A Box!" A Modular, Menu-Driven, Cross-Platform Tool For Building Customized, Time-Delayed, Distributed Security Events](http://feedproxy.google.com/~r/PentestTools/~3/KauwkR-GgKM/dumpsterfire-security-incidents-in-box.html)
- [SecurityNotFound - 404 Page Not Found Webshell](http://feedproxy.google.com/~r/PentestTools/~3/vYxGFxKr0f8/securitynotfound-404-page-not-found.html)
- [HRShell - An Advanced HTTPS/HTTP Reverse Shell Built With Flask](http://feedproxy.google.com/~r/PentestTools/~3/2EnZI5d4-lM/hrshell-advanced-httpshttp-reverse.html)
- [Kube-Alien - Tool To Launches Attack on K8s Cluster from Within](http://feedproxy.google.com/~r/PentestTools/~3/126-Y9dJKbU/kube-alien-tool-to-launches-attack-on.html)
- [Rebel-Framework - Advanced And Easy To Use Penetration Testing Framework](http://feedproxy.google.com/~r/PentestTools/~3/fMlj6cBpiT8/rebel-framework-advanced-and-easy-to.html)
- [FDsploit - File Inclusion And Directory Traversal Fuzzing, Enumeration & Exploitation Tool](http://feedproxy.google.com/~r/PentestTools/~3/swcjIuLy9bI/fdsploit-file-inclusion-and-directory.html)
- [MemProcFS - The Memory Process File System](http://feedproxy.google.com/~r/PentestTools/~3/PEKPsbwM4CQ/memprocfs-memory-process-file-system.html)
- [Flare-Emu - Powered by IDA Pro and the Unicorn emulation framework that provides scriptable emulation features for the x86, x86_64, ARM, and ARM64 architectures to reverse engineers](http://feedproxy.google.com/~r/PentestTools/~3/GIxOIe09LhY/flare-emu-powered-by-ida-pro-and.html)
- [Firmware Analysis Toolkit - Toolkit To Emulate Firmware And Analyse It For Security Vulnerabilities](http://feedproxy.google.com/~r/PentestTools/~3/Xo17q88fwaU/firmware-analysis-toolkit-toolkit-to.html)
- [Router Exploit Shovel - Automated Application Generation For Stack Overflow Types On Wireless Routers](http://feedproxy.google.com/~r/PentestTools/~3/Umzv8g_UhHo/router-exploit-shovel-automated.html)
- [Tachyon - Fast HTTP Dead File Finder](http://feedproxy.google.com/~r/PentestTools/~3/9WifBwMiBZM/tachyon-fast-http-dead-file-finder.html)
- [SKA - Simple Karma Attack](http://feedproxy.google.com/~r/PentestTools/~3/qvHCBNmDLuQ/ska-simple-karma-attack.html)
- [ArmourBird CSF - Container Security Framework](http://feedproxy.google.com/~r/PentestTools/~3/QrsSVDyTOII/armourbird-csf-container-security.html)
- [Juicy Potato - A Sugared Version Of RottenPotatoNG, With A Bit Of Juice, I.E. Another Local Privilege Escalation Tool, From A Windows Service Accounts To NT AUTHORITY\SYSTEM](http://feedproxy.google.com/~r/PentestTools/~3/v__5K9CLmi0/juicy-potato-sugared-version-of.html)
- [ScoutSuite - Multi-Cloud Security Auditing Tool](http://feedproxy.google.com/~r/PentestTools/~3/8lNYafWTzcI/scoutsuite-multi-cloud-security.html)
- [Mitaka - A Browser Extension For OSINT Search](http://feedproxy.google.com/~r/PentestTools/~3/qozOsKsK1eg/mitaka-browser-extension-for-osint.html)
- [Kirjuri - Web Application For Managing Cases And Physical Forensic Evidence Items](http://feedproxy.google.com/~r/PentestTools/~3/lV-7cdaZCvc/kirjuri-web-application-for-managing.html)
- [SysAnalyzer - Automated Malcode Analysis System](http://feedproxy.google.com/~r/PentestTools/~3/VTx0yw7qoek/sysanalyzer-automated-malcode-analysis.html)
- [Pixload - Image Payload Creating/Injecting Tools](http://feedproxy.google.com/~r/PentestTools/~3/GNB4ABZwyJ4/pixload-image-payload-creatinginjecting.html)
- [Dolos Cloak - Automated 802.1X Bypass](http://feedproxy.google.com/~r/PentestTools/~3/NG6IUvbjPjA/dolos-cloak-automated-8021x-bypass.html)
- [Dr. ROBOT - Tool To Enumerate The Subdomains Associated With A Company By Aggregating The Results Of Multiple OSINT Tools](http://feedproxy.google.com/~r/PentestTools/~3/LF5qGGBamj8/dr-robot-tool-to-enumerate-subdomains.html)
- [FudgeC2 - A Collaborative C2 Framework For Purple-Teaming Written In Python3, Powershell And .NET](http://feedproxy.google.com/~r/PentestTools/~3/Hxs0DfO56As/fudgec2-collaborative-c2-framework-for.html)
- [Aura-Botnet - A Super Portable Botnet Framework With A Django-based C2 Server](http://feedproxy.google.com/~r/PentestTools/~3/tnSSVf5KKxM/aura-botnet-super-portable-botnet.html)
- [Project iKy v2.2.0 - Tool That Collects Information From An Email And Shows Results In A Nice Visual Interface](http://feedproxy.google.com/~r/PentestTools/~3/UUzvzCFnYJE/project-iky-v220-tool-that-collects.html)
- [Stardox - Github Stargazers Information Gathering Tool](http://feedproxy.google.com/~r/PentestTools/~3/7By7ThSuewU/stardox-github-stargazers-information.html)
- [ACT Platform - Open Platform For Collection And Exchange Of Threat Intelligence Information](http://feedproxy.google.com/~r/PentestTools/~3/LuwNP1Fp5wI/act-platform-open-platform-for.html)
- [PrivExchange - Exchange Your Privileges For Domain Admin Privs By Abusing Exchange](http://feedproxy.google.com/~r/PentestTools/~3/chTatA-U6pE/privexchange-exchange-your-privileges.html)
- [PostShell - Post Exploitation Bind/Backconnect Shell](http://feedproxy.google.com/~r/PentestTools/~3/bA3vPoaomGE/postshell-post-exploitation.html)
- [TinkererShell - A Simple Python Reverse Shell Written Just For Fun](http://feedproxy.google.com/~r/PentestTools/~3/20a4IaX7icM/tinkerershell-simple-python-reverse.html)
- [Stegify - Go Tool For LSB Steganography, Capable Of Hiding Any File Within An Image](http://feedproxy.google.com/~r/PentestTools/~3/l2fNzJLNH5Q/stegify-go-tool-for-lsb-steganography.html)
- [DetExploit - Software That Detect Vulnerable Applications, Not-Installed OS Updates And Notify To User](http://feedproxy.google.com/~r/PentestTools/~3/15LHL1qcszo/detexploit-software-that-detect.html)
- [Shodan-Eye - Tool That Collects All The Information About All Devices Directly Connected To The Internet Using The Specified Keywords That You Enter](http://feedproxy.google.com/~r/PentestTools/~3/RXQ8g-gjkvE/shodan-eye-tool-that-collects-all.html)
- [Anteater - CI/CD Gate Check Framework](http://feedproxy.google.com/~r/PentestTools/~3/CmExmYQNlOA/anteater-cicd-gate-check-framework.html)
- [Pyrdp - RDP Man-In-The-Middle And Library For Python3 With The Ability To Watch Connections Live Or After The Fact](http://feedproxy.google.com/~r/PentestTools/~3/5V_LwIOI6AM/pyrdp-rdp-man-in-middle-and-library-for.html)
- [Grapl - Graph Platform For Detection And Response](http://feedproxy.google.com/~r/PentestTools/~3/Nzu7nTXFHhk/grapl-graph-platform-for-detection-and.html)
- [Metame - Metame Is A Metamorphic Code Engine For Arbitrary Executables](http://feedproxy.google.com/~r/PentestTools/~3/UtLiReewVn4/metame-metame-is-metamorphic-code.html)
- [Botb - A Container Analysis And Exploitation Tool For Pentesters And Engineers](http://feedproxy.google.com/~r/PentestTools/~3/LQR_lITEKlY/botb-container-analysis-and.html)
- [gitGraber - Tool To Monitor GitHub To Search And Find Sensitive Data For Different Online Services Such As: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...](http://feedproxy.google.com/~r/PentestTools/~3/j4Ms9uZ-OTY/gitgraber-tool-to-monitor-github-to.html)
- [fileGPS - A Tool That Help You To Guess How Your Shell Was Renamed After The Server-Side Script Of The File Uploader Saved It](http://feedproxy.google.com/~r/PentestTools/~3/W3dhPrLX2-w/filegps-tool-that-help-you-to-guess-how.html)
- [ActiveReign - A Network Enumeration And Attack Toolset](http://feedproxy.google.com/~r/PentestTools/~3/hFVVCal6VKM/activereign-network-enumeration-and.html)
- [Revshellgen - Reverse Shell Generator Written In Python.](http://feedproxy.google.com/~r/PentestTools/~3/JLfejTy8AAo/revshellgen-reverse-shell-generator.html)
- [LetsMapYourNetwork - Tool To Visualise Your Physical Network In Form Of Graph With Zero Manual Error](http://feedproxy.google.com/~r/PentestTools/~3/VZ1e-sVffQI/letsmapyournetwork-tool-to-visualise.html)
- [OpenCTI - Open Cyber Threat Intelligence Platform](http://feedproxy.google.com/~r/PentestTools/~3/kvGSXsf0WFo/opencti-open-cyber-threat-intelligence.html)
- [BlackArch Linux v2019.09.01 - Penetration Testing Distribution](http://feedproxy.google.com/~r/PentestTools/~3/PQen0TZFLxI/blackarch-linux-v20190901-penetration.html)
- [Phishing-Simulation - Aims To Increase Phishing Awareness By Providing An Intuitive Tutorial And Customized Assessment](http://feedproxy.google.com/~r/PentestTools/~3/-hbGrpX44oM/phishing-simulation-aims-to-increase.html)
- [PingCastle - Get Active Directory Security At 80% In 20% Of The Time](http://feedproxy.google.com/~r/PentestTools/~3/6TeOKlPbhVc/pingcastle-get-active-directory.html)
- [Mondoo - Cloud-Native Security And Vulnerability Risk Management](http://feedproxy.google.com/~r/PentestTools/~3/414GCSMOF5M/mondoo-cloud-native-security-and.html)
- [BLUESPAWN - Windows Based Active Defense Tool To Empower Blue Teams](http://feedproxy.google.com/~r/PentestTools/~3/RmNxNQGa_EU/bluespawn-windows-based-active-defense.html)
- [EMAGNET - Tool For Find Leaked Databases With 97.1% Accurate To Grab Mail + Password Together From Pastebin Leaks](http://feedproxy.google.com/~r/PentestTools/~3/YIAfk2yhMRY/emagnet-tool-for-find-leaked-databases.html)
- [PyFuscation - Obfuscate Powershell Scripts By Replacing Function Names, Variables And Parameters](http://feedproxy.google.com/~r/PentestTools/~3/2_LXfCG2LUA/pyfuscation-obfuscate-powershell.html)
- [Btlejack - Bluetooth Low Energy Swiss-army Knife](http://feedproxy.google.com/~r/PentestTools/~3/gTLsCVExzTE/btlejack-bluetooth-low-energy-swiss.html)
- [mpDNS - Multi-Purpose DNS Server](http://feedproxy.google.com/~r/PentestTools/~3/f-YDWCOZkiI/mpdns-multi-purpose-dns-server.html)
- [Ehtools - Framework Of Serious Wi-Fi Penetration Tools](http://feedproxy.google.com/~r/PentestTools/~3/Nj2ggxc-tFY/ehtools-framework-of-serious-wi-fi.html)
- [Wordlister - A Simple Wordlist Generator And Mangler Written In Python](http://feedproxy.google.com/~r/PentestTools/~3/jdNG6fQGKNs/wordlister-simple-wordlist-generator.html)
- [Barq - The AWS Cloud Post Exploitation Framework!](http://feedproxy.google.com/~r/PentestTools/~3/Zz0dxpUW4lc/barq-aws-cloud-post-exploitation.html)
- [Telegram C# C2 - A Command and Control Tool for Telegram Bot Communication](http://feedproxy.google.com/~r/PentestTools/~3/xXizEoJzSSo/telegram-c-c2-command-and-control-tool.html)
- [HTTP Request Smuggler - Extension For Burp Suite Designed To Help You Launch HTTP Request Smuggling Attacks](http://feedproxy.google.com/~r/PentestTools/~3/YMARKd6NylA/http-request-smuggler-extension-for.html)
- [B-XSSRF - Toolkit To Detect And Keep Track On Blind XSS, XXE And SSRF](http://feedproxy.google.com/~r/PentestTools/~3/f0rtJh2UVH4/b-xssrf-toolkit-to-detect-and-keep.html)
- [0xsp Mongoose v1.7 - Linux/Windows Privilege Escalation intelligent Enumeration Toolkit](http://feedproxy.google.com/~r/PentestTools/~3/hf85UAI5b8Q/0xsp-mongoose-v17-linuxwindows.html)
- [Constellation - A Graph-Focused Data Visualisation And Interactive Analysis Application](http://feedproxy.google.com/~r/PentestTools/~3/Nzawsf4moWA/constellation-graph-focused-data.html)
- [Hashcatch - Capture Handshakes Of Nearby WiFi Networks Automatically](http://feedproxy.google.com/~r/PentestTools/~3/XDNJFnpc33w/hashcatch-capture-handshakes-of-nearby.html)
- [Nuages - A Modular C2 Framework](http://feedproxy.google.com/~r/PentestTools/~3/jvENRRXLO3Y/nuages-modular-c2-framework.html)
- [RedHunt OS v2 - Virtual Machine For Adversary Emulation And Threat Hunting](http://feedproxy.google.com/~r/PentestTools/~3/9CtJ2lp2pHw/redhunt-os-v2-virtual-machine-for.html)
- [Sudomy - Subdomain Enumeration & Analysis](http://feedproxy.google.com/~r/PentestTools/~3/mkilVC-4keE/sudomy-subdomain-enumeration-analysis.html)
- [NebulousAD - Automated Credential Auditing Tool](http://feedproxy.google.com/~r/PentestTools/~3/bTHHdRrAYEk/nebulousad-automated-credential.html)
- [PHPStan - PHP Static Analysis Tool (Discover Bugs In Your Code Without Running It!)](http://feedproxy.google.com/~r/PentestTools/~3/A-rMwI9lboA/phpstan-php-static-analysis-tool.html)
- [EVABS - Extremely Vulnerable Android Labs](http://feedproxy.google.com/~r/PentestTools/~3/WaMsoBOGlrA/evabs-extremely-vulnerable-android-labs.html)
- [4CAN - Open Source Security Tool to Find Security Vulnerabilities in Modern Cars](http://feedproxy.google.com/~r/PentestTools/~3/Hpal2tcA9oc/4can-open-source-security-tool-to-find.html)
- [AIL Framework - Framework for Analysis of Information Leaks](http://feedproxy.google.com/~r/PentestTools/~3/91FEC7M0yz8/ail-framework-framework-for-analysis-of.html)
- [Airgeddon v9.21 - A Multi-use Bash Script for Linux Systems to Audit Wireless Networ](http://feedproxy.google.com/~r/PentestTools/~3/lUMA75AQNOk/airgeddon-v921-multi-use-bash-script.html)
- [Sublert - Security And Reconnaissance Tool Which Leverages Certificate Transparency To Automatically Monitor New Subdomains Deployed By Specific Organizations And Issued TLS/SSL Certificate](http://feedproxy.google.com/~r/PentestTools/~3/AGTDH5ASc-U/sublert-security-and-reconnaissance.html)
- [IPRotate - Extension For Burp Suite Which Uses AWS API Gateway To Rotate Your IP On Every Request](http://feedproxy.google.com/~r/PentestTools/~3/t5h8C83KVMM/iprotate-extension-for-burp-suite-which.html)
- [LDAPDomainDump - Active Directory Information Dumper Via LDAP](http://feedproxy.google.com/~r/PentestTools/~3/NVmrl3qPNRU/ldapdomaindump-active-directory.html)
- [Covenant - A .NET Command And Control Framework For Red Teamers](http://feedproxy.google.com/~r/PentestTools/~3/FRnRVXGYQT8/covenant-net-command-and-control.html)
- [AutoRDPwn v5.0 - The Shadow Attack Framework](http://feedproxy.google.com/~r/PentestTools/~3/zJ75MJYF2V8/autordpwn-v50-shadow-attack-framework.html)
- [PoshC2 - C2 Server and Implants](http://feedproxy.google.com/~r/PentestTools/~3/cYFi81W7lAw/poshc2-c2-server-and-implants.html)
- [Hacktronian - All In One Hacking Tool For Linux & Android](http://feedproxy.google.com/~r/PentestTools/~3/yV_fdYg2NkU/hacktronian-all-in-one-hacking-tool-for.html)
- [Pyshark - Python Wrapper For Tshark, Allowing Python Packet Parsing Using Wireshark Dissectors](http://feedproxy.google.com/~r/PentestTools/~3/eTNAbeSDlQw/pyshark-python-wrapper-for-tshark.html)
- [Applepie - A Hypervisor For Fuzzing Built With WHVP And Bochs](http://feedproxy.google.com/~r/PentestTools/~3/U7xXM25iB_M/applepie-hypervisor-for-fuzzing-built.html)
- [PEpper - An Open Source Script To Perform Malware Static Analysis On Portable Executable](http://feedproxy.google.com/~r/PentestTools/~3/5c9MkEcVlaI/pepper-open-source-script-to-perform.html)
- [goDoH - A DNS-over-HTTPS C2](http://feedproxy.google.com/~r/PentestTools/~3/iJDgigWpX6A/godoh-dns-over-https-c2.html)
- [Truegaze - Static Analysis Tool For Android/iOS Apps Focusing On Security Issues Outside The Source Code](http://feedproxy.google.com/~r/PentestTools/~3/UP7CEeZKDqo/truegaze-static-analysis-tool-for.html)
- [pwnedOrNot v1.2.6 - OSINT Tool to Find Passwords for Compromised Email Addresses](http://feedproxy.google.com/~r/PentestTools/~3/SxvMbSv8GrY/pwnedornot-v126-osint-tool-to-find.html)
- ["Can I Take Over XYZ?" - A List Of Services And How To Claim (Sub)Domains With Dangling DNS Records](http://feedproxy.google.com/~r/PentestTools/~3/lPLIPkoIJeg/can-i-take-over-xyz-list-of-services.html)
- [Eyeballer - Convolutional Neural Network For Analyzing Pentest Screenshots](http://feedproxy.google.com/~r/PentestTools/~3/gVjosPt4DJc/eyeballer-convolutional-neural-network.html)
- ["Can I Take Over XYZ?" - A List Of Services And How To Claim (Sub)Domains With Dangling DNS Records.](http://feedproxy.google.com/~r/PentestTools/~3/lPLIPkoIJeg/can-i-take-over-xyz-list-of-services.html)
- [Dow Jones Hammer - Protect The Cloud With The Power Of The cloud(AWS)](http://feedproxy.google.com/~r/PentestTools/~3/e2XileK9-L8/dow-jones-hammer-protect-cloud-with.html)
- [Firmware Slap - Discovering Vulnerabilities In Firmware Through Concolic Analysis And Function Clustering](http://feedproxy.google.com/~r/PentestTools/~3/ZlHsrIesqEo/firmware-slap-discovering.html)
- [Iris - WinDbg Extension To Perform Basic Detection Of Common Windows Exploit Mitigations](http://feedproxy.google.com/~r/PentestTools/~3/ddVv17Euevs/iris-windbg-extension-to-perform-basic.html)
- [Diaphora - The Most Advanced Free And Open Source Program Diffing Tool](http://feedproxy.google.com/~r/PentestTools/~3/5zfOooxp39w/diaphora-most-advanced-free-and-open.html)
- [Airflowscan - Checklist And Tools For Increasing Security Of Apache Airflow](http://feedproxy.google.com/~r/PentestTools/~3/9rsGerchFug/airflowscan-checklist-and-tools-for.html)
- [DockerSecurityPlayground - A Microservices-based Framework For The Study Of Network Security And Penetration Test Techniques](http://feedproxy.google.com/~r/PentestTools/~3/SB-rKad-N3A/dockersecurityplayground-microservices.html)
- [DrMITM - Program Designed To Globally Log All Traffic Of A Website](http://feedproxy.google.com/~r/PentestTools/~3/7Oc-ng3zo7A/drmitm-program-designed-to-globally-log.html)
- [Sampler - A Tool For Shell Commands Execution, Visualization And Alerting (Configured With A Simple YAML File)](http://feedproxy.google.com/~r/PentestTools/~3/NJ1bUhTLgaE/sampler-tool-for-shell-commands.html)
- [Findomain v0.2.1 - The Fastest And Cross-Platform Subdomain Enumerator](http://feedproxy.google.com/~r/PentestTools/~3/769TW1TSpjw/findomain-v021-fastest-and-cross.html)
- [Goop - Google Search Scraper (Bypass CAPTCHA)](http://feedproxy.google.com/~r/PentestTools/~3/_q1nxXQczP4/goop-google-search-scraper-bypass.html)
- [ThreatHunting - A Splunk App Mapped To MITRE ATT&CK To Guide Your Threat Hunts](http://feedproxy.google.com/~r/PentestTools/~3/HUEVPwgh5aA/threathunting-splunk-app-mapped-to.html)
- [HackerTarget ToolKit v2.0 - Tools And Network Intelligence To Help Organizations With Attack Surface Discovery](http://feedproxy.google.com/~r/PentestTools/~3/p7tD_g2ZmJY/hackertarget-toolkit-v20-tools-and.html)
- [Seccomp Tools - Provide Powerful Tools For Seccomp Analysis](http://feedproxy.google.com/~r/PentestTools/~3/m-Wcp9n4Irg/seccomp-tools-provide-powerful-tools.html)
- [AbsoluteZero - Python APT Backdoor](http://feedproxy.google.com/~r/PentestTools/~3/4A8E633X560/absolutezero-python-apt-backdoor.html)
- [Osmedeus v1.5 - Fully Automated Offensive Security Framework For Reconnaissance And Vulnerability Scanning](http://feedproxy.google.com/~r/PentestTools/~3/n9aA6bMDWQI/osmedeus-v15-fully-automated-offensive.html)
- [WAES - Auto Enums Websites And Dumps Files As Result](http://feedproxy.google.com/~r/PentestTools/~3/lznYl-dDkGU/waes-auto-enums-websites-and-dumps.html)
- [BADministration - Tool Which Interfaces with Management or Administration Applications from an Offensive Standpoint](http://feedproxy.google.com/~r/PentestTools/~3/zZlZyR77e50/badministration-tool-which-interfaces.html)
- [SQLMap v1.3.8 - Automatic SQL Injection And Database Takeover Tool](http://feedproxy.google.com/~r/PentestTools/~3/tXw2LTJ-djQ/sqlmap-v138-automatic-sql-injection-and.html)
- [Commando VM v2.0 - The First Full Windows-based Penetration Testing Virtual Machine Distribution](http://feedproxy.google.com/~r/PentestTools/~3/qfDDkq3fmTU/commando-vm-v20-first-full-windows.html)
- [Skadi - Collect, Process, And Hunt With Host Based Data From MacOS, Windows, And Linux](http://feedproxy.google.com/~r/PentestTools/~3/ASo4pP2sP6k/skadi-collect-process-and-hunt-with.html)
- [KRF - A Kernelspace Randomized Faulter](http://feedproxy.google.com/~r/PentestTools/~3/t-YyBOLcysA/krf-kernelspace-randomized-faulter.html)
- [SET v8.0.1 - The Social-Engineer Toolkit](http://feedproxy.google.com/~r/PentestTools/~3/w4tiBuIcrYw/set-v801-social-engineer-toolkit.html)
- [Project iKy v2.1.0 - Tool That Collects Information From An Email And Shows Results In A Nice Visual Interface](http://feedproxy.google.com/~r/PentestTools/~3/4hKlInqj0IM/project-iky-v210-tool-that-collects.html)
- [Project iKy v2.1.0 - Tool That Collects Information From An Email And Shows Results In A Nice Visual Interface](http://feedproxy.google.com/~r/PentestTools/~3/4hKlInqj0IM/project-iky-v210-tool-that-collects.html)
- [Theo - Ethereum Recon And Exploitation Tool](http://feedproxy.google.com/~r/PentestTools/~3/MwZooLpZtBA/theo-ethereum-recon-and-exploitation.html)
- [Malcolm - A Powerful, Easily Deployable Network Traffic Analysis Tool Suite For Full Packet Capture Artifacts (PCAP Files) And Zeek Logs](http://feedproxy.google.com/~r/PentestTools/~3/eUbPxwEjhx8/malcolm-powerful-easily-deployable.html)
- [AutoRecon - Multi-Threaded Network Reconnaissance Tool Which Performs Automated Enumeration Of Services](http://feedproxy.google.com/~r/PentestTools/~3/OqnXDaJLqUc/autorecon-multi-threaded-network.html)
- [WiFiBroot - A WiFi Pentest Cracking Tool For WPA/WPA2 (Handshake, PMKID, Cracking, EAPOL, Deauthentication)](http://feedproxy.google.com/~r/PentestTools/~3/FX1exMAKSSk/wifibroot-wifi-pentest-cracking-tool.html)
- [HELK - The Hunting ELK](http://feedproxy.google.com/~r/PentestTools/~3/ZLYzopsUg1Q/helk-hunting-elk.html)
- [MemGuard - Secure Software Enclave For Storage Of Sensitive Information In Memory](http://feedproxy.google.com/~r/PentestTools/~3/YAq7BcxqcwQ/memguard-secure-software-enclave-for.html)
- [Usbrip - Simple Command Line Forensics Tool For Tracking USB Device Artifacts (History Of USB Events) On GNU/Linux](http://feedproxy.google.com/~r/PentestTools/~3/kreZO6BHsfE/usbrip-simple-command-line-forensics.html)
- [MSNM-S - Multivariate Statistical Network Monitoring-Sensor](http://feedproxy.google.com/~r/PentestTools/~3/8jr1oiWi1hw/msnm-s-multivariate-statistical-network.html)
- [W13Scan - Passive Security Scanner](http://feedproxy.google.com/~r/PentestTools/~3/ChH63pCUMoU/w13scan-passive-security-scanner.html)
- [XSpear - Powerfull XSS Scanning And Parameter Analysis Tool](http://feedproxy.google.com/~r/PentestTools/~3/1eiuhzEnVo4/xspear-powerfull-xss-scanning-and.html)
- [Slurp - S3 Bucket Enumerator](http://feedproxy.google.com/~r/PentestTools/~3/s1pFb3wEBBA/slurp-s3-bucket-enumerator.html)
- [Buster - Find Emails Of A Person And Return Info Associated With Them](http://feedproxy.google.com/~r/PentestTools/~3/y2mAo4j8218/buster-find-emails-of-person-and-return.html)
- [Xssizer - The Best Tool To Find And Prove XSS Flaws](http://feedproxy.google.com/~r/PentestTools/~3/LmLCMU0hGVQ/xssizer-best-tool-to-find-and-prove-xss.html)
- [WDExtract - Extract Windows Defender Database From Vdm Files And Unpack It](http://feedproxy.google.com/~r/PentestTools/~3/fRE010IajtQ/wdextract-extract-windows-defender.html)
- [WeebDNS - DNS Enumeration With Asynchronicity](http://feedproxy.google.com/~r/PentestTools/~3/aj8iNTv76KM/weebdns-dns-enumeration-with.html)
- [RedGhost v3.0 - Linux Post Exploitation Framework Written In Bash Designed To Assist Red Teams In Persistence, Reconnaissance, Privilege Escalation And Leaving No Trace](http://feedproxy.google.com/~r/PentestTools/~3/r5pc37rjXcE/redghost-v30-linux-post-exploitation.html)
- [Recon-ng v5.0.0 - Open Source Intelligence Gathering Tool Aimed At Reducing The Time Spent Harvesting Information From Open Sources](http://feedproxy.google.com/~r/PentestTools/~3/aJ03REwtdTs/recon-ng-v500-open-source-intelligence.html)
- [Uncompyle6 - A Cross-Version Python Bytecode Decompiler](http://feedproxy.google.com/~r/PentestTools/~3/4BqkUdipfRA/uncompyle6-cross-version-python.html)
- [OSXCollector - A Forensic Evidence Collection & Analysis Toolkit For OS X](http://feedproxy.google.com/~r/PentestTools/~3/iIrDdkpfB3I/osxcollector-forensic-evidence.html)
- [Vulnado - Purposely Vulnerable Java Application To Help Lead Secure Coding Workshops](http://feedproxy.google.com/~r/PentestTools/~3/3GWRhgE0P_Y/vulnado-purposely-vulnerable-java.html)
- [Orbit v2.0 - Blockchain Transactions Investigation Tool](http://feedproxy.google.com/~r/PentestTools/~3/wMLiz7Gx-5I/orbit-v20-blockchain-transactions.html)
- [Cloudcheck - Checks Using A Test String If A Cloudflare DNS Bypass Is Possible Using CloudFail](http://feedproxy.google.com/~r/PentestTools/~3/DUH7fx0yK74/cloudcheck-checks-using-test-string-if.html)
- [grapheneX - Automated System Hardening Framework](http://feedproxy.google.com/~r/PentestTools/~3/1c8Pd15Q3f0/graphenex-automated-system-hardening.html)
- [O365-Attack-Toolkit - A Toolkit To Attack Office365](http://feedproxy.google.com/~r/PentestTools/~3/5YBArQY7xbI/o365-attack-toolkit-toolkit-to-attack.html)
- [Pyattck - A Python Module To Interact With The Mitre ATT&CK Framework](http://feedproxy.google.com/~r/PentestTools/~3/M1JRpVeqmzc/pyattck-python-module-to-interact-with.html)
- [Evil-Winrm - The Ultimate WinRM Shell For Hacking/Pentesting](http://feedproxy.google.com/~r/PentestTools/~3/vNwEzZybqkk/evil-winrm-ultimate-winrm-shell-for.html)
- [Airopy - Get Clients And Access Points](http://feedproxy.google.com/~r/PentestTools/~3/_2hr62fH7Rc/airopy-get-clients-and-access-points.html)
- [AMIRA - Automated Malware Incident Response & Analysis](http://feedproxy.google.com/~r/PentestTools/~3/n9b89NWONDo/amira-automated-malware-incident.html)
- [VulnWhisperer - Create Actionable Data From Your Vulnerability Scans](http://feedproxy.google.com/~r/PentestTools/~3/F0Myf7GiesM/vulnwhisperer-create-actionable-data.html)
- [Dockernymous - A Script Used To Create A Whonix Like Gateway/Workstation Environment With Docker Containers](http://feedproxy.google.com/~r/PentestTools/~3/WbwiCRF568Y/dockernymous-script-used-to-create.html)
- [HiddenEye - Modern Phishing Tool With Advanced Functionality (Android-Support-Available)](http://feedproxy.google.com/~r/PentestTools/~3/GTRsshv5Lcs/hiddeneye-modern-phishing-tool-with.html)
- [SUDO_KILLER - A Tool To Identify And Exploit Sudo Rules Misconfigurations And Vulnerabilities Within Sudo](http://feedproxy.google.com/~r/PentestTools/~3/grcbPtCQkyg/sudokiller-tool-to-identify-and-exploit.html)
- [Hvazard - Remove Short Passwords & Duplicates, Change Lowercase To Uppercase & Reverse, Combine Wordlists!](http://feedproxy.google.com/~r/PentestTools/~3/V6_EesPs7B0/hvazard-remove-short-passwords.html)
- [GitGot - Semi-automated, Feedback-Driven Tool To Rapidly Search Through Troves Of Public Data On GitHub For Sensitive Secrets](http://feedproxy.google.com/~r/PentestTools/~3/a-tFgzEyrNg/gitgot-semi-automated-feedback-driven.html)
- [Git-Hound - Find Exposed Keys Across GitHub Using Code Search Keywords](http://feedproxy.google.com/~r/PentestTools/~3/-1BlVCAg-tw/git-hound-find-exposed-keys-across.html)
- [Parrot Security 4.7 - Security GNU/Linux Distribution Designed with Cloud Pentesting and IoT Security in Mind](http://feedproxy.google.com/~r/PentestTools/~3/Wi8FqE6jjoM/parrot-security-47-security-gnulinux.html)
- [Kali NetHunter App Store - The New Android Store Dedicated to Free Security Apps](http://feedproxy.google.com/~r/PentestTools/~3/FpkbVd5aohk/kali-nethunter-app-store-new-android.html)
- [Userrecon v1.1.0 - Recognition Usernames In 187 Social Networks](http://feedproxy.google.com/~r/PentestTools/~3/KQY5OR1xgQ0/userrecon-v110-recognition-usernames-in.html)
- [Brute_Force - BruteForce Gmail, Hotmail, Twitter, Facebook & Netflix](http://feedproxy.google.com/~r/PentestTools/~3/Bovu29IujOM/bruteforce-bruteforce-gmail-hotmail.html)
- [Detect It Easy - Program For Determining Types Of Files For Windows, Linux And MacOS](http://feedproxy.google.com/~r/PentestTools/~3/DTt4xwte7KE/detect-it-easy-program-for-determining.html)
- [Shellsum - A Defense Tool - Detect Web Shells In Local Directories Via Md5Sum](http://feedproxy.google.com/~r/PentestTools/~3/e2sVilO2ess/shellsum-defense-tool-detect-web-shells.html)
- [RedGhost v2.0 - Linux Post Exploitation Framework Designed To Assist Red Teams In Gaining Persistence, Reconnaissance And Leaving No Trace](http://feedproxy.google.com/~r/PentestTools/~3/VgaanjAU6kw/redghost-v20-linux-post-exploitation.html)
- [UACME - Defeating Windows User Account Control](http://feedproxy.google.com/~r/PentestTools/~3/SVc2u0HEg4k/uacme-defeating-windows-user-account.html)
- [JShielder v2.4 - Hardening Script For Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark G](http://feedproxy.google.com/~r/PentestTools/~3/Be1UlUqJu1E/jshielder-v24-hardening-script-for.html)
- [Project iKy v2.0.0 - Tool That Collects Information From An Email And Shows Results In A Nice Visual Interface](http://feedproxy.google.com/~r/PentestTools/~3/1W_lCE0_ys4/project-iky-v200-tool-that-collects.html)
- [Passpie - Multiplatform Command-Line Password Manager](http://feedproxy.google.com/~r/PentestTools/~3/2SEdl8ow5w8/passpie-multiplatform-command-line.html)
- [PasteHunter - Scanning Pastebin With Yara Rules](http://feedproxy.google.com/~r/PentestTools/~3/qShK4eTNtRs/pastehunter-scanning-pastebin-with-yara.html)
- [Pown-Duct - Essential Tool For Finding Blind Injection Attacks](http://feedproxy.google.com/~r/PentestTools/~3/mkfG1rnLQZQ/pown-duct-essential-tool-for-finding.html)
- [Dwarf - Full Featured Multi Arch/Os Debugger Built On Top Of PyQt5 And Frida](http://feedproxy.google.com/~r/PentestTools/~3/oR5kYVz0iVo/dwarf-full-featured-multi-archos.html)
- [Ghostfuscator - The Python Password-Protected Obfuscator Using AES Encryption](http://feedproxy.google.com/~r/PentestTools/~3/pWmfxngNPGI/ghostfuscator-python-password-protected.html)
- [Objection v1.6.6 - Runtime Mobile Exploration](http://feedproxy.google.com/~r/PentestTools/~3/_lHkwuwDics/objection-v166-runtime-mobile.html)
- [Commando VM v1.3 - The First Full Windows-based Penetration Testing Virtual Machine Distribution](http://feedproxy.google.com/~r/PentestTools/~3/QeW-17PeFBU/commando-vm-v13-first-full-windows.html)
- [Findomain - A Cross-Platform Tool That Use Certificate Transparency Logs To Find Subdomains](http://feedproxy.google.com/~r/PentestTools/~3/l3m2ksyqVss/findomain-cross-platform-tool-that-use.html)
- [Echidna - Ethereum Fuzz Testing Framework](http://feedproxy.google.com/~r/PentestTools/~3/LySyfq2ljRM/echidna-ethereum-fuzz-testing-framework.html)
- [Cloud Security Audit - A Command Line Security Audit Tool For Amazon Web Services](http://feedproxy.google.com/~r/PentestTools/~3/tsuJ2vB6UAU/cloud-security-audit-command-line.html)
- [WinObjEx64 - Windows Object Explorer 64-Bit](http://feedproxy.google.com/~r/PentestTools/~3/lhCOJeS8sSE/winobjex64-windows-object-explorer-64.html)
- [Regipy - An OS Independent Python Library For Parsing Offline Registry Hives](http://feedproxy.google.com/~r/PentestTools/~3/lsg0-CwurBg/regipy-os-independent-python-library.html)
- [Rifiuti2 - Windows Recycle Bin Analyser](http://feedproxy.google.com/~r/PentestTools/~3/NtgmgJ2cvWA/rifiuti2-windows-recycle-bin-analyser.html)
- [Linux-Smart-Enumeration - Linux Enumeration Tool For Pentesting And CTFs With Verbosity Levels](http://feedproxy.google.com/~r/PentestTools/~3/c13R99XYWMg/linux-smart-enumeration-linux.html)
- [Whonix v15 - Anonymous Operating System](http://feedproxy.google.com/~r/PentestTools/~3/-KywRX2KNas/whonix-v15-anonymous-operating-system.html)
- [SneakyEXE - Embedding "UAC-Bypassing" Function Into Your Custom Payload](http://feedproxy.google.com/~r/PentestTools/~3/X7fzoY6jRMg/sneakyexe-embedding-uac-bypassing.html)
- [NetSet - Operational Security Utility And Automator](http://feedproxy.google.com/~r/PentestTools/~3/sSGRFqUYMbE/netset-operational-security-utility-and.html)
- [DarkScrape - OSINT Tool For Scraping Dark Websites](http://feedproxy.google.com/~r/PentestTools/~3/S1O9ARRkIBk/darkscrape-osint-tool-for-scraping-dark.html)
- [Youzer - Fake User Generator For Active Directory Environments](http://feedproxy.google.com/~r/PentestTools/~3/QfF2tfS9U1E/youzer-fake-user-generator-for-active.html)
- [Rock-ON - An All In One Recon Tool That Will Just Get A Single Entry Of The Domain Name And Do All Of The Work Alone](http://feedproxy.google.com/~r/PentestTools/~3/3F0JVHl_rug/rock-on-all-in-one-recon-tool-that-will.html)
- [Wesng - Windows Exploit Suggester](http://feedproxy.google.com/~r/PentestTools/~3/S-0NXhKzPf0/wesng-windows-exploit-suggester.html)
- [Fbchecker - Facebook Mass Account Checker](http://feedproxy.google.com/~r/PentestTools/~3/PeOX84N6efU/fbchecker-facebook-mass-account-checker.html)
- [Slackor - A Golang Implant That Uses Slack As A Command And Control Server](http://feedproxy.google.com/~r/PentestTools/~3/SzRtcRYVjzE/slackor-golang-implant-that-uses-slack.html)
- [Hash-Identifier - Software To Identify The Different Types Of Hashes Used To Encrypt Data And Especially Passwords](http://feedproxy.google.com/~r/PentestTools/~3/CPuDEL0K_JI/hash-identifier-software-to-identify.html)
- [MIG - Distributed And Real Time Digital Forensics At The Speed Of The Cloud](http://feedproxy.google.com/~r/PentestTools/~3/VEm_8qyqqCM/mig-distributed-and-real-time-digital.html)
- [Icebox - Virtual Machine Introspection, Tracing & Debugging](http://feedproxy.google.com/~r/PentestTools/~3/fZoFz_cQD9s/icebox-virtual-machine-introspection.html)
- [SQLMap v1.3.7 - Automatic SQL Injection And Database Takeover Tool](http://feedproxy.google.com/~r/PentestTools/~3/D9B7vLLX4C8/sqlmap-v137-automatic-sql-injection-and.html)
- [Sherlock - Find Usernames Across Social Networks](http://feedproxy.google.com/~r/PentestTools/~3/eSJru-TKuEE/sherlock-find-usernames-across-social.html)
- [0xsp-Mongoose - Privilege Escalation Enumeration Toolkit (ELF 64/32), Fast, Intelligent Enumeration With Web API Integration](http://feedproxy.google.com/~r/PentestTools/~3/I5pWurWr6Zw/0xsp-mongoose-privilege-escalation.html)
- [Lst2X64Dbg - Extract labels from IDA .lst or Ghidra .csv file and export x64dbg database](http://feedproxy.google.com/~r/PentestTools/~3/OxAp_RBBjkQ/lst2x64dbg-extract-labels-from-ida-lst.html)
- [Spyse.Py - Python API Wrapper And Command-Line Client For The Tools Hosted On Spyse.Com](http://feedproxy.google.com/~r/PentestTools/~3/U5Ijood5kOA/spysepy-python-api-wrapper-and-command.html)
- [PTF v2.3 - The Penetration Testers Framework Is A Way For Modular Support For Up-To-Date Tools](http://feedproxy.google.com/~r/PentestTools/~3/WmNEm49gvEk/ptf-v23-penetration-testers-framework.html)
- [Scapy - The Python-based Interactive Packet Manipulation Program & Library](http://feedproxy.google.com/~r/PentestTools/~3/ZU-eexqu3f0/scapy-python-based-interactive-packet.html)
- [TwitterShadowBan - Twitter Shadowban Tests](http://feedproxy.google.com/~r/PentestTools/~3/xIWKkM5Hleo/twittershadowban-twitter-shadowban-tests.html)
- [PivotSuite - A Network Pivoting Toolkit](http://feedproxy.google.com/~r/PentestTools/~3/hSWxn6OAoOs/pivotsuite-network-pivoting-toolkit.html)
- [Lynis 2.7.5 - Security Auditing Tool for Unix/Linux Systems](http://feedproxy.google.com/~r/PentestTools/~3/gBCubq1rp1w/lynis-275-security-auditing-tool-for.html)
- [Project iKy - Tool That Collects Information From An Email And Shows Results In A Nice Visual Interface](http://feedproxy.google.com/~r/PentestTools/~3/M4KiPTUKSVo/project-iky-tool-that-collects.html)
- [Getwin - FUD Win32 Payload Generator And Listener](http://feedproxy.google.com/~r/PentestTools/~3/nJnC39lKrHQ/getwin-fud-win32-payload-generator-and.html)
- [Seccubus - Easy Automated Vulnerability Scanning, Reporting And Analysis](http://feedproxy.google.com/~r/PentestTools/~3/V6X3rDBzIjs/seccubus-easy-automated-vulnerability.html)
- [Terminus - A Terminal For A More Modern Age](http://feedproxy.google.com/~r/PentestTools/~3/H3gcYftgMws/terminus-terminal-for-more-modern-age.html)
- [Quarantyne - Modern Web Firewall: Stop Account Takeovers, Weak Passwords, Cloud IPs, DoS Attacks, Disposable Emails](http://feedproxy.google.com/~r/PentestTools/~3/HEnNuHgyhms/quarantyne-modern-web-firewall-stop.html)
- [Prithvi - Report Generation Tool](http://feedproxy.google.com/~r/PentestTools/~3/QN-fodx1gP4/prithvi-report-generation-tool.html)
- [Kippo - SSH Honeypot](http://feedproxy.google.com/~r/PentestTools/~3/E7sOMZsNTbU/kippo-ssh-honeypot.html)
- [Konan - Advanced Web Application Dir Scanner](http://feedproxy.google.com/~r/PentestTools/~3/00MhPW6Sun0/konan-advanced-web-application-dir.html)
- [Seth - Perform A MitM Attack And Extract Clear Text Credentials From RDP Connections](http://feedproxy.google.com/~r/PentestTools/~3/otGqqcWw2mo/seth-perform-mitm-attack-and-extract.html)
- [Rdpscan - A Quick Scanner For The CVE-2019-0708 "BlueKeep" Vulnerability](http://feedproxy.google.com/~r/PentestTools/~3/mCI0mRVoYKo/rdpscan-quick-scanner-for-cve-2019-0708.html)
- [DNSlivery - Easy Files And Payloads Delivery Over DNS](http://feedproxy.google.com/~r/PentestTools/~3/d-u-FwvPkdQ/dnslivery-easy-files-and-payloads.html)
- [GhostSquadHackers - Encrypt/Encode Your Javascript Code](http://feedproxy.google.com/~r/PentestTools/~3/z4tt0Ri7Xag/ghostsquadhackers-encryptencode-your.html)
- [BackBox Linux 6.0 - Ubuntu-based Linux Distribution Penetration Test and Security Assessment](http://feedproxy.google.com/~r/PentestTools/~3/TKLYMNDAekg/backbox-linux-60-ubuntu-based-linux.html)
- [URLextractor - Information Gathering and Website Reconnaissance](http://feedproxy.google.com/~r/PentestTools/~3/yeRbR31P73k/urlextractor-information-gathering-and.html)
- [MozDef - Mozilla Enterprise Defense Platform](http://feedproxy.google.com/~r/PentestTools/~3/rO38ouawMjA/mozdef-mozilla-enterprise-defense.html)
- [Sliver - Implant Framework](http://feedproxy.google.com/~r/PentestTools/~3/_uSxw_sH1Fg/sliver-implant-framework.html)
- [Simplify - Generic Android Deobfuscator](http://feedproxy.google.com/~r/PentestTools/~3/0TKRmeyRmf8/simplify-generic-android-deobfuscator.html)
- [BoomER - Framework For Exploiting Local Vulnerabilities](http://feedproxy.google.com/~r/PentestTools/~3/xNb62x9VIwI/boomer-framework-for-exploiting-local.html)
- [WhatBreach - OSINT Tool To Find Breached Emails And Databases](http://feedproxy.google.com/~r/PentestTools/~3/EI6tCAyZ1-c/whatbreach-osint-tool-to-find-breached.html)
- [BlueGhost - A Network Tool Designed To Assist Blue Teams In Banning Attackers From Linux Servers](http://feedproxy.google.com/~r/PentestTools/~3/pFM6w1Spwtc/blueghost-network-tool-designed-to.html)
- [Vxscan - Comprehensive Scanning Tool](http://feedproxy.google.com/~r/PentestTools/~3/0ZDcFApPJl8/vxscan-comprehensive-scanning-tool.html)
- [RedGhost - Linux Post Exploitation Framework Designed To Gain Persistence And Reconnaissance And Leave No Trace](http://feedproxy.google.com/~r/PentestTools/~3/Gy75mmZWdEY/redghost-linux-post-exploitation.html)
- [One-Lin3r v2.0 - Gives You One-Liners That Aids In Penetration Testing Operations, Privilege Escalation And More](http://feedproxy.google.com/~r/PentestTools/~3/tpDLaHMBIEQ/one-lin3r-v20-gives-you-one-liners-that.html)
- [Tourmaline - Telegram Bot Framework For Crystal](http://feedproxy.google.com/~r/PentestTools/~3/b2eIBVRuc7c/tourmaline-telegram-bot-framework-for.html)
- [VulnX v1.7 - An Intelligent Bot Auto Shell Injector That Detect Vulnerabilities In Multiple Types Of CMS](http://feedproxy.google.com/~r/PentestTools/~3/ABEnXceM1lo/vulnx-v17-intelligent-bot-auto-shell.html)
- [Cryptr - A Simple Shell Utility For Encrypting And Decrypting Files Using OpenSSL](http://feedproxy.google.com/~r/PentestTools/~3/NXXuaKDq9VY/cryptr-simple-shell-utility-for.html)
- [Amass - In-depth DNS Enumeration And Network Mapping](http://feedproxy.google.com/~r/PentestTools/~3/CU7t9RWRUVE/amass-in-depth-dns-enumeration-and.html)
- [Userrecon-Py - Find Usernames In Social Networks](http://feedproxy.google.com/~r/PentestTools/~3/XDi8ASQbqK0/userrecon-py-find-usernames-in-social.html)
- [Metabigor - Command Line Search Engines Without Any API Key](http://feedproxy.google.com/~r/PentestTools/~3/bwTS0tOubeM/metabigor-command-line-search-engines.html)
- [autoPwn - Automate Repetitive Tasks For Fuzzing](http://feedproxy.google.com/~r/PentestTools/~3/LtbIQEba06g/autopwn-automate-repetitive-tasks-for.html)
- [Finshir - A Coroutines-Driven Low And Slow Traffic Sender, Written In Rust](http://feedproxy.google.com/~r/PentestTools/~3/Wj-iLgszhts/finshir-coroutines-driven-low-and-slow.html)
- [Facebash - Facebook Brute Forcer In Shellscript Using TOR](http://feedproxy.google.com/~r/PentestTools/~3/f3cso_9atWo/facebash-facebook-brute-forcer-in.html)
- [Vthunting - A Tiny Script Used To Generate Report About VirusTotal Hunting And Send It By Email, Slack Or Telegram](http://feedproxy.google.com/~r/PentestTools/~3/oKh1run6pi8/vthunting-tiny-script-used-to-generate.html)
- [Python-Iocextract - Advanced Indicator Of Compromise (IOC) Extractor](http://feedproxy.google.com/~r/PentestTools/~3/FJzGewoG5dE/python-iocextract-advanced-indicator-of.html)
- [PcapXray v2.5 - A Network Forensics Tool To Visualize A Packet Capture Offline As A Network Diagram](http://feedproxy.google.com/~r/PentestTools/~3/EbsP_Xce8HA/pcapxray-v25-network-forensics-tool-to.html)
- [ANDRAX v3 - The First And Unique Penetration Testing Platform For Android Smartphones](http://feedproxy.google.com/~r/PentestTools/~3/3jIpU7zeiJg/andrax-v3-first-and-unique-penetration.html)
- [Vulners Scanner for Android - Passive Vulnerability Scanning Based On Software Version Fingerprint](http://feedproxy.google.com/~r/PentestTools/~3/jjXLZCER0Bk/vulners-scanner-for-android-passive.html)
- [ripVT - Virus Total API Maltego Transform Set For Canari](http://feedproxy.google.com/~r/PentestTools/~3/n4rLmMXJVa4/ripvt-virus-total-api-maltego-transform.html)
- [ReverseTCPShell - PowerShell ReverseTCP Shell, Client & Server](http://feedproxy.google.com/~r/PentestTools/~3/pWymKYDrZz8/reversetcpshell-powershell-reversetcp.html)
- [GhostDelivery - This Tool Creates A Obfuscated .vbs Script To Download A Payload Hosted On A Server To %TEMP% Directory, Execute Payload And Gain Persistence](http://feedproxy.google.com/~r/PentestTools/~3/oWV8asKvS20/ghostdelivery-this-tool-creates.html)
- [H8Mail v2.0 - Email OSINT And Password Breach Hunting](http://feedproxy.google.com/~r/PentestTools/~3/d_I-lDRN9Ak/h8mail-v20-email-osint-and-password.html)
- [PhoneSploit v1.2 - Using Open Adb Ports We Can Exploit A Andriod Device](http://feedproxy.google.com/~r/PentestTools/~3/iQzE7P61W8c/phonesploit-v12-using-open-adb-ports-we.html)
- [Zydra - File Password Recovery Tool And Linux Shadow File Cracker](http://feedproxy.google.com/~r/PentestTools/~3/6ATnAnKScCs/zydra-file-password-recovery-tool-and.html)
- [Recsech - Tool For Doing Footprinting And Reconnaissance On The Target Web](http://feedproxy.google.com/~r/PentestTools/~3/fA2yZMgyywc/recsech-tool-for-doing-footprinting-and.html)
- [LiveHiddenCamera - Library Which Record Live Video And Audio From Android Device Without Displaying A Preview](http://feedproxy.google.com/~r/PentestTools/~3/F4Bo_N9vCsw/livehiddencamera-library-which-record.html)
- [Shellphish - Phishing Tool For 18 Social Media (Instagram, Facebook, Snapchat, Github, Twitter...)](http://feedproxy.google.com/~r/PentestTools/~3/5hBi829B8IU/shellphish-phishing-tool-for-18-social.html)
- [TOR Router - A Tool That Allow You To Make TOR Your Default Gateway And Send All Internet Connections Under TOR](http://feedproxy.google.com/~r/PentestTools/~3/gvVN-pwmU4Y/tor-router-tool-that-allow-you-to-make.html)
- [Userrecon - Find Usernames Across Over 75 Social Networks](http://feedproxy.google.com/~r/PentestTools/~3/UJORLhp0zY8/userrecon-find-usernames-across-over-75.html)
- [WhatWeb v0.5.0 - Next Generation Web Scanner](http://feedproxy.google.com/~r/PentestTools/~3/47Pvc2gPpgM/whatweb-v050-next-generation-web-scanner.html)
- [Faraday v3.8 - Collaborative Penetration Test and Vulnerability Management Platform](http://feedproxy.google.com/~r/PentestTools/~3/vOafEiELgog/faraday-v38-collaborative-penetration.html)
- [RecScanSec - Reconnaisance Scanner Security](http://feedproxy.google.com/~r/PentestTools/~3/oiNIb-2z3TU/recscansec-reconnaisance-scanner.html)
- [Crashcast-Exploit - This Tool Allows You Mass Play Any YouTube Video With Chromecasts Obtained From Shodan.io](http://feedproxy.google.com/~r/PentestTools/~3/xeXSGXnN_xA/crashcast-exploit-this-tool-allows-you.html)
- [Tool-X - A Kali Linux Hacking Tool Installer](http://feedproxy.google.com/~r/PentestTools/~3/JqzGZm7j4JQ/tool-x-kali-linux-hacking-tool-installer.html)
- [SQLMap v1.3 - Automatic SQL Injection And Database Takeover Tool](http://feedproxy.google.com/~r/PentestTools/~3/RNZTk3qTooc/sqlmap-v13-automatic-sql-injection-and.html)
- [Stretcher - Tool Designed To Help Identify Open Elasticsearch Servers That Are Exposing Sensitive Information](http://feedproxy.google.com/~r/PentestTools/~3/PdXu9zuRDIg/stretcher-tool-designed-to-help.html)
- [Aztarna - A Footprinting Tool For Robots](http://feedproxy.google.com/~r/PentestTools/~3/Q9CYfShlqRA/aztarna-footprinting-tool-for-robots.html)
- [Hediye - Hash Generator & Cracker Online Offline](http://feedproxy.google.com/~r/PentestTools/~3/p0oO5qBUFoI/hediye-hash-generator-cracker-online.html)
- [Killcast - Manipulate Chromecast Devices In Your Network](http://feedproxy.google.com/~r/PentestTools/~3/rMCHdNb3sTI/killcast-manipulate-chromecast-devices.html)
- [bypass-firewalls-by-DNS-history - Firewall Bypass Script Based On DNS History Records](http://feedproxy.google.com/~r/PentestTools/~3/4GvtphGIZmM/bypass-firewalls-by-dns-history.html)
- [WiFi-Pumpkin v0.8.7 - Framework for Rogue Wi-Fi Access Point Attack](http://feedproxy.google.com/~r/PentestTools/~3/HogR4BTI3tM/wifi-pumpkin-v087-framework-for-rogue.html)
- [H8Mail - Email OSINT And Password Breach Hunting](http://feedproxy.google.com/~r/PentestTools/~3/u6x3-7n6oMI/h8mail-email-osint-and-password-breach.html)
- [Kube-Hunter - Hunt For Security Weaknesses In Kubernetes Clusters](http://feedproxy.google.com/~r/PentestTools/~3/Dr1bT8peAAc/kube-hunter-hunt-for-security.html)
- [Metasploit 5.0 - The Worlds Most Used Penetration Testing Framework](http://feedproxy.google.com/~r/PentestTools/~3/WdwaF60VaxA/metasploit-50-worlds-most-used.html)
- [Interlace - Easily Turn Single Threaded Command Line Applications Into Fast, Multi Threaded Ones With CIDR And Glob Support](http://feedproxy.google.com/~r/PentestTools/~3/WogS-qr4dno/interlace-easily-turn-single-threaded.html)
- [Twifo-Cli - Get User Information Of A Twitter User](http://feedproxy.google.com/~r/PentestTools/~3/Sbc3gunRkBE/twifo-cli-get-user-information-of.html)
- [Sitadel - Web Application Security Scanner](http://feedproxy.google.com/~r/PentestTools/~3/zfPWuXefLsw/sitadel-web-application-security-scanner.html)
- [Pe-Sieve - Recognizes And Dumps A Variety Of Potentially Malicious Implants (Replaced/Injected PEs, Shellcodes, Hooks, In-Memory Patches)](http://feedproxy.google.com/~r/PentestTools/~3/MV1mlXFmkpg/pe-sieve-recognizes-and-dumps-variety.html)
- [Malboxes - Builds Malware Analysis Windows VMs So That You Don'T Have To](http://feedproxy.google.com/~r/PentestTools/~3/sZXmRx1pB7E/malboxes-builds-malware-analysis.html)
- [Snyk - CLI And Build-Time Tool To Find & Fix Known Vulnerabilities In Open-Source Dependencies](http://feedproxy.google.com/~r/PentestTools/~3/elMWRHLI054/snyk-cli-and-build-time-tool-to-find.html)
- [Shed - .NET Runtime Inspector](http://feedproxy.google.com/~r/PentestTools/~3/byWGTLrRRMA/shed-net-runtime-inspector.html)
- [Stardox - Github Stargazers Information Gathering Tool](http://feedproxy.google.com/~r/PentestTools/~3/kAWqztoZ97E/stardox-github-stargazers-information.html)
- [Commix v2.7 - Automated All-in-One OS Command Injection And Exploitation Tool](http://feedproxy.google.com/~r/PentestTools/~3/mjOk7rQhp2Y/commix-v27-automated-all-in-one-os.html)
- [AutoSploit v3.0 - Automated Mass Exploiter](http://feedproxy.google.com/~r/PentestTools/~3/nDoUfG2uHQg/autosploit-v30-automated-mass-exploiter.html)
- [Faraday v3.5 - Collaborative Penetration Test and Vulnerability Management Platform](http://feedproxy.google.com/~r/PentestTools/~3/Fq1vFkcIIFI/faraday-v35-collaborative-penetration.html)
- [Recaf - A Modern Java Bytecode Editor](http://feedproxy.google.com/~r/PentestTools/~3/mAzq3GzpHIg/recaf-modern-java-bytecode-editor.html)
- [dnSpy - .NET Debugger And Assembly Editor](http://feedproxy.google.com/~r/PentestTools/~3/JZaPW594CQE/dnspy-net-debugger-and-assembly-editor.html)