410f64c957
Merge pull request #262 from meitar/periods
...
Style guide conformance fixes, mostly adding periods to end of lines.
2018-11-10 17:27:07 -06:00
3bfdb24a10
Merge pull request #261 from meitar/dwf
...
Add Distributed Weakness Filing, a researcher-run distributed CNA.
2018-11-10 17:26:38 -06:00
aa6a188877
Merge pull request #263 from Beyarz/patch-1
...
Changed the url to the repo
2018-11-10 17:26:14 -06:00
ab16921114
Update README.md
...
Changed the link to their open-source project instead.
2018-11-10 21:55:35 +01:00
55323c516b
Style guide conformance fixes, mostly adding periods to end of lines.
2018-11-09 14:10:49 -05:00
b91c0fdd0c
Add Distributed Weakness Filing, a researcher-run distributed CNA.
2018-11-05 13:02:19 -05:00
a4393d7ce3
Merge pull request #260 from meitar/hak5-tools
...
Add Bash Bunny and Packet Squirrel from Hak5. Closes #203 .
2018-11-03 15:09:38 -05:00
500664df21
Merge branch 'master' into hak5-tools
2018-11-03 15:09:21 -05:00
a327e76a2d
Merge pull request #259 from meitar/ci-fixes
...
Fix Travis CI build errors, largely due to stale links.
2018-11-03 15:07:27 -05:00
2165117198
Merge pull request #258 from meitar/at-commands
...
Add "AT Commands" Python scripts for exploiting Android devices.
2018-11-03 15:07:07 -05:00
93ec5e7b67
Merge pull request #254 from HrushikeshK/master
...
Add OS in Penetration Testing Distributions
2018-11-03 15:06:44 -05:00
a562c85830
Merge pull request #257 from meitar/certgraph
...
Add CertGraph, crawl TLS certs for certificate alternative names.
2018-11-03 15:04:47 -05:00
2d20fc6269
Merge pull request #256 from brainfucksec/patch-1
...
Update README.md
2018-11-03 15:04:22 -05:00
d2d1e2d9ff
Add Bash Bunny and Packet Squirrel from Hak5. Closes #203 .
2018-11-02 10:49:33 -04:00
3297075b7e
Fix Travis CI build errors, largely due to stale links.
...
This commit fixes numerous CI build issues related to stale or broken
links. These include:
* Removal of Zoom username enumeration tool, covered by WPScan anyway.
* Removal of old Google dork database that is unmaintained/has vanished.
* Removal of `OSVDB.org` zone, which no longer resolves via DNS.
* Fix link to NoSQLmap tool (domain expired, use GitHub.com link now).
* Update link to Social Engineering in IT book from legacy URL.
* Update link to OWASP's AppSecUSA conference; now uses second-level domain.
Further, this commit simplifies the `.travis.yml` file in order to use a
plainer (more standard) certificates bundle. Two URLs have been added to
the whitelist: `www.shodan.io`, which returns a 403 Forbidden error when
accessed by Awesome Bot, and `www.mhprofessional.com`, which generates
an SSLv3 certificate validation error.
Prior to this commit, a custom SSL certificate bundle was generated and
then placed in the `/tmp` directory for use, but this is no longer
required as the latest `ca-certificates` bundle shipped with Ubuntu
contains the root certificates needed for the domains that once required
this custom bundle to be used.
2018-11-01 14:48:34 -04:00
dcfc07e36b
Add "AT Commands" Python scripts for exploiting Android devices.
2018-11-01 14:22:08 -04:00
ccdba4d647
Add CertGraph, crawl TLS certs for certificate alternative names.
...
This tool can connect to a domain over HTTP or SMTP, or search Certificate
Transparency (CT) logs in order to create a directed graph that
visualizes a domain's certificate's certificate alternative names. These
are other domain names that the certificate can be used to authenticate,
even if those domain names are not in public DNS records. Can be used as
an OSINT investigative tool as a task in the reconnaisance phase of a
pentesting engagement in order to easily discover additional targets.
2018-10-30 13:42:03 -04:00
4592571df4
Update README.md
2018-10-24 14:07:13 +02:00
85b403f870
Merge pull request #255 from meitar/regex-dos
...
Add RegEx-DoS, an analyzer for regular expressions susceptible to DoS attacks.
2018-10-19 15:42:37 -04:00
b60ae1b320
Add RegEx-DoS, an analyzer for regular expressions susceptible to DoS attacks.
2018-10-19 14:43:31 -04:00
cd27f6c85b
Add OS in Penetration Testing Distributions
...
Add Android Tamer OS in Penetration Testing Distributions.
2018-10-08 12:26:09 +05:30
0e279aa90f
Merge pull request #252 from meitar/hex-editors
...
Add some good hex editors for GNU/Linux: Bless, wxHexEditor, `hexedit`.
2018-10-01 15:15:21 -05:00
18fd39ab5c
Add some good hex editors for GNU/Linux: Bless, wxHexEditor, `hexedit`.
2018-10-01 15:20:56 -04:00
e1261ffa31
Merge pull request #251 from meitar/dns-tools
...
Amass is now an official OWASP project. Add Python3 port of `fierce`.
2018-09-18 18:39:03 -05:00
7b861e1f8a
Amass is now an official OWASP project. Add Python3 port of `fierce`.
2018-09-18 15:55:50 -04:00
877a84cfca
Merge pull request #250 from l50/master
...
Update WebGoat docker entry
2018-09-18 14:42:55 -05:00
1de7eb13ce
Merge branch 'master' into master
2018-09-18 14:42:47 -05:00
b65f9eb109
Merge pull request #249 from meitar/templates-and-docker-fixes
...
Templates and docker fixes.
2018-09-18 14:39:45 -05:00
233d9596e3
Update WebGoat docker entry
...
Add official WebGoat docker images
- 7.1 (older and best-known by the security community)
- 8.0 (newest release with numerous changes and revisions)
2018-09-10 10:03:20 -07:00
f5d3b0ff04
Fix the Docker for Penetration Testing section: punctuation, etc.
2018-09-06 13:47:24 -04:00
a7e3fdb18e
Fix the Pentesting Report Template.
...
This commit removes items from the Pentesting Report Template section
that are either not templates or have been removed from the source.
Further, line items are updated to use meaningful descriptions and to
follow the Awesome List style guides (capitalization and punctuation).
2018-09-06 13:44:59 -04:00
300ae73467
Merge pull request #248 from sundaysec/patch-2
...
Added Awesome list
2018-08-23 11:54:09 -05:00
5688f8dd1e
Added Awesome list
...
Android Exploitation and Hacks
2018-08-23 10:17:23 +03:00
86b673b941
Merge pull request #246 from meitar/evilosx
...
Add EvilOSX, a macOS RAT with several out-of-the-box exfil tools.
2018-08-08 16:54:39 -05:00
fcfd2d9d14
Merge pull request #247 from meitar/tools
...
Add several new phishing and anonymity tools:
2018-08-08 16:54:02 -05:00
8b73e1251f
Add several new phishing and anonymity tools:
...
* SocialFish, a social media phishing framework.
* ShellPhish, a social media site cloner built on SocialFish.
* dos-over-tor, a torifid DoS and stress test tool.
* oregano, a MITM proxy that accepts direct Tor client requests.
2018-08-08 16:01:47 -04:00
306458f22e
Add EvilOSX, a macOS RAT with several out-of-the-box exfil tools.
2018-08-08 15:47:16 -04:00
c9c1df653f
Merge pull request #245 from meitar/scomdecrypt
...
Add SCOMDecrypt, a tool to retrieve and decrypt stored RunAs creds.
2018-08-05 17:47:39 -05:00
4c254776ab
Merge pull request #244 from meitar/stegcracker
...
Add StegCracker, tool that brute forces steganographic data in files.
2018-08-05 17:47:09 -05:00
07e6025a12
Add SCOMDecrypt, a tool to retrieve and decrypt stored RunAs creds.
2018-08-05 17:25:42 -04:00
e3c19c6d98
Add StegCracker, tool that brute forces steganographic data in files.
2018-08-05 17:10:22 -04:00
a276857a73
Merge pull request #243 from fheuer/patch-1
...
Added Btfm book
2018-08-01 20:01:34 -05:00
c88b19587d
Added Btfm book
2018-08-01 16:59:22 +02:00
16ccc45735
Merge pull request #240 from abhishekbundela/master
...
Added pentestbox.
2018-07-31 19:48:37 -05:00
33dcacdde4
Update README.md
2018-07-31 19:48:15 -05:00
c77337ef0e
Merge pull request #241 from meitar/ruler
...
Add Ruler, a tool to abuse client-side Outlook features to pwn Exchange.
2018-07-31 19:46:06 -05:00
35257be346
Merge pull request #242 from meitar/bella
...
Fix link for Bella, a post-exploitation agent for MacOS.
2018-07-31 19:45:22 -05:00
081241efc6
Fix link for Bella, a post-exploitation agent for MacOS.
2018-07-31 17:17:00 -04:00
f0cba27bf0
Add Ruler, a tool to abuse client-side Outlook features to pwn Exchange.
2018-07-31 16:57:03 -04:00
c14d026566
Added pentestbox.
2018-07-31 18:05:47 +05:30
Samar Dhwoj Acharya
Beyar
Meitar M
Brainfuck
HrushikeshK
Jayson Grace
PHILEMON SUNDAY JOEL
Florian Heuer
Abhishek bundela