Clik here to view.
Apktool v2.2.0 – A tool for reverse engineering Android apk files.
Changelog v2.2.0: * Migration Instructions from 2.1.1 to 2.2.0 * Updated smali/baksmali to v2.1.3 +-+ Fixed upstream issue where debug comment indexes can cause out of bounds exception. (Issue 1269) *...
View ArticleClik here to view.
POOFITEE – Linux Scripting “Perfect Owner Only Firewall – Invisible To...
BULLET-PROOF YOUR “OWNER-ACCESS-ONLY” LINUX SERVER FROM HACKERS WITH IPTABLES AND ROBUST SHELL SCRIPTING. Bare minimum packages and whitelist-only access to your Linux home surveillance &/or...
View ArticleClik here to view.
Mara framework v0.2(beta) – Mobile Application Reverse Engineering & Analysis...
Changelog v0.2(beta): * Adding Preliminary Analysis (*new Features) * Adding APK Manifest Analysis (*new Features) * Tools Update ++ tools/editors/com.maskyn.fileeditor-59.apk ++...
View ArticleClik here to view.
wlscrape – A tool for scrapping the possible malware from the Wikileaks AKP...
Wikileaks has released a large set of e-mails leaked from the Turkish party AKP. Unfortunately, no processing of any kind has been performed on these e-mails – they are just a raw dump. Since many of...
View ArticleClik here to view.
SEC-AUDIT ~ PowerShell Script for Windows Server Compliance / Security...
sec-audit is a powershell script for checks on various security settings / controls / policies applied on the host machine. The script also tells what the recommended value of a setting / control /...
View ArticleClik here to view.
Lynis v2.3.3 : is a system and security auditing tool for Unix/Linux.
CHANGELOG Lynis v2.3.3 (2016-08-23): Upgrade note:Customized profiles that included sysctl settings need to be altered. See default.prf for the correct format of the lines. * Additions ++ OpenStack...
View ArticleClik here to view.
safeprint – Format Strings Vulnerabilities Prevention.
The printf function in C is vulnerable to attacks using incorrect format specifiers and corresponding incorrect or unequal parameters. ‘safeprintf’ is a library that would prevent such unaccounted...
View ArticleClik here to view.
nfqueue-packet-delay is a libnetfilter_queue handler intended to mitigate...
nfqueue-packet-delay is a libnetfilter_queue handler intended to mitigate various timing attacks. It was created in particular to mitigate a covert channel based on the observation that ping latency is...
View ArticleClik here to view.
revealrk – Reveal Rootkit detects processes hidden by rootkits on POSIX systems.
Reveal Rootkit detects processes hidden by rootkits. It is intended to run out of cron or similar services on a regular base and avoids verbose output as long as nothing was found. It’s fast and...
View ArticleClik here to view.
ir-rescue ~ A Windows Batch script to comprehensively collect host forensic...
ir-rescue is a Windows Batch script that collects a myriad of forensic data from 32-bit and 64-bit Windows systems while respecting the order of volatility. It is intended for incident response use at...
View ArticleClik here to view.
looter.py is an automated looting script will collect relevant data for...
looter.py is an automated looting script will collect relevant data for someone who gained root access to a box. This script will crawl through a box and quickly collect useful information for an...
View ArticleClik here to view.
dnstwist v1.03 – Domain name permutation engine for detecting typo squatting,...
Changelog dnstwist v1.03: + Add new options + Updated GeoIP database file. dnstwist v1.03 Latest change 2/1/2016: + dnstwist.py ; Added new feature: JSON output + Added another similar projects The...
View ArticleClik here to view.
ssh-audit v1.0 is a tool for ssh server auditing.
Changelog ssh-audit v1.0.20160917: + Create tests for Dropbear SSH version comparison. + Add Prospector (Python Static Analysis) config and run script. + Signed mpint. + Implement OpenSSH version...
View ArticleClik here to view.
Process-Dump v2.0 ~ Windows tool for dumping malware PE files from memory.
Changelog Process-Dump v2.0: + Added new flag ‘-closemon’ which runs Process Dump in a monitoring mode. It will pause and dump any process just as it closes. This is designed to work well with malware...
View ArticleClik here to view.
radare2 v0.10.6 codename: Sleepy Autumn – unix-like reverse engineering...
Changelog radare2 0.10.6 codename Sleepy Autumn: Commands * Implement oom to reopen file in malloc:// * Add zs as an alias for z/ * Implement zo command * Rename command Vvm to Vvr * Implement...
View ArticleClik here to view.
malware-jail v0.6 – sandbox for semi-automatic Javascript malware analysis...
Changelog malware-jail v0.6: + Env: Fixed MSXML2.XMLHTTP async=false + Malware: New example added. + Another example. Version 0.6 malware-jail v0.6 .Sandbox for semi-automatic Javascript malware...
View ArticleClik here to view.
POOFITEE v0.0.1 – Linux Scripting “Perfect Owner Only Firewall – Invisible To...
Changelog POOFITEE v0.0.1: – At first blush, we thought POOFITEE was operational 2016-09-16, but a few bugs remained until 2016-10-01. After 2016-10-01 this “Original” branch is only expected to...
View ArticleClik here to view.
mitmcanary – Tool/service to detect Man in the Middle attacks.
mitmcanary is a Tool/service to detect Man in the Middle attacks with Canary Requests, this tool can detect MITMf, MITMPRoxy, & Responder. Dependencies: + Python 2.7.x + Kivy, plyer Module +...
View ArticleClik here to view.
ssh-audit v1.6 is a tool for ssh server auditing.
Changelog ssh-audit v1.6.0 (2016-10-14): * implement algorithm recommendations section (based on recognized software) * implement full libssh support (version history, algorithms, security, etc) * fix...
View ArticleClik here to view.
RATDecoders NanoCore version – Python Decoders for Common Remote Access Trojans
Changelog NanoCore version 20/10/2016: + All Code Scripting has been update at nano core version. ratdecoders nano core versions Ratdecoders : a collection of Python Scripts that will extract and...
View Article