From 08432c2bc2f243199b6f2f233adefed2e9c1b53e Mon Sep 17 00:00:00 2001 From: santosomar Date: Thu, 25 May 2023 13:45:12 +0000 Subject: [PATCH] Adding new tools --- new_tools.md | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+) diff --git a/new_tools.md b/new_tools.md index d4eac09..81240f4 100644 --- a/new_tools.md +++ b/new_tools.md @@ -2,6 +2,31 @@ The following are a collection of recently-released pen test tools. I update this list every time that there is a new post and when I find a new one around the Internet. The rest of the repository has hundreds of additional cybersecurity and pen test tools. ---- +- [REcollapse Is A Helper Tool For Black-Box Regex Fuzzing To Bypass Validations And Discover Normalizations In Web Applications](https://www.kitploit.com/2023/05/recollapse-is-helper-tool-for-black-box.html) +- [hardCIDR - Linux Bash Script To Discover The Netblocks, Or Ranges, Owned By The Target Organization](https://www.kitploit.com/2023/03/hardcidr-linux-bash-script-to-discover.html) +- [Metlo - An Open-Source API Security Platform](https://www.kitploit.com/2023/05/metlo-open-source-api-security-platform.html) +- [Teler-Waf - A Go HTTP Middleware That Provides Teler IDS Functionality To Protect Against Web-Based Attacks And Improve The Security Of Go-based Web Applications](https://www.kitploit.com/2023/05/teler-waf-go-http-middleware-that.html) +- [Spartacus - DLL Hijacking Discovery Tool](https://www.kitploit.com/2023/05/spartacus-dll-hijacking-discovery-tool.html) +- [Fuzztruction - Prototype Of A Fuzzer That Does Not Directly Mutate Inputs (As Most Fuzzers Do) But Instead Uses A So-Called Generator Application To Produce An Input For Our Fuzzing Target](https://www.kitploit.com/2023/05/fuzztruction-prototype-of-fuzzer-that.html) +- [NTLMRecon - A Tool For Performing Light Brute-Forcing Of HTTP Servers To Identify Commonly Accessible NTLM Authentication Endpoints](https://www.kitploit.com/2023/05/ntlmrecon-tool-for-performing-light.html) +- [Nimbo-C2 - Yet Another (Simple And Lightweight) C2 Framework](https://www.kitploit.com/2023/05/nimbo-c2-yet-another-simple-and.html) +- [Domain-Protect - OWASP Domain Protect - Prevent Subdomain Takeover](https://www.kitploit.com/2023/05/domain-protect-owasp-domain-protect.html) +- [SpiderSuite - Advance Web Spider/Crawler For Cyber Security Professionals](https://www.kitploit.com/2023/05/spidersuite-advance-web-spidercrawler.html) +- [Indicator-Intelligence - Finds Related Domains And IPv4 Addresses To Do Threat Intelligence After Indicator-Intelligence Collects Static Files](https://www.kitploit.com/2023/05/indicator-intelligence-finds-related.html) +- [TLDHunt - Domain Availability Checker](https://www.kitploit.com/2023/05/tldhunt-domain-availability-checker.html) +- [Lfi-Space - LFI Scan Tool](https://www.kitploit.com/2023/05/lfi-space-lfi-scan-tool.html) +- [PassMute - PassMute - A Multi Featured Password Transmutation/Mutator Tool](https://www.kitploit.com/2023/05/passmute-passmute-multi-featured.html) +- [ShadowSpray - A Tool To Spray Shadow Credentials Across An Entire Domain In Hopes Of Abusing Long Forgotten GenericWrite/GenericAll DACLs Over Other Objects In The Domain](https://www.kitploit.com/2023/05/shadowspray-tool-to-spray-shadow.html) +- [Cbrutekrag - Penetration Tests On SSH Servers Using Brute Force Or Dictionary Attacks. Written In C](https://www.kitploit.com/2023/05/cbrutekrag-penetration-tests-on-ssh.html) +- [RustChain - Hide Memory Artifacts Using ROP And Hardware Breakpoints](https://www.kitploit.com/2023/05/rustchain-hide-memory-artifacts-using.html) +- [Wafaray - Enhance Your Malware Detection With WAF + YARA (WAFARAY)](https://www.kitploit.com/2023/05/wafaray-enhance-your-malware-detection.html) +- [KoodousFinder - A Simple Tool To Allows Users To Search For And Analyze Android Apps For Potential Security Threats And Vulnerabilities](https://www.kitploit.com/2023/05/koodousfinder-simple-tool-to-allows.html) +- [Dumpulator - An Easy-To-Use Library For Emulating Memory Dumps. Useful For Malware Analysis (Config Extraction, Unpacking) And Dynamic Analysis In General (Sandboxing)](https://www.kitploit.com/2023/05/dumpulator-easy-to-use-library-for.html) +- [Bypass-403 - A Simple Script Just Made For Self Use For Bypassing 403](https://www.kitploit.com/2023/05/bypass-403-simple-script-just-made-for.html) +- [Hades - Go Shellcode Loader That Combines Multiple Evasion Techniques](https://www.kitploit.com/2023/05/hades-go-shellcode-loader-that-combines.html) +- [Acheron - Indirect Syscalls For AV/EDR Evasion In Go Assembly](https://www.kitploit.com/2023/05/acheron-indirect-syscalls-for-avedr.html) +- [Jsfinder - Fetches JavaScript Files Quickly And Comprehensively](https://www.kitploit.com/2023/05/jsfinder-fetches-javascript-files.html) +- [rebindMultiA - Tool To Perform a Multiple A Record Rebind Attack](https://www.kitploit.com/2023/05/rebindmultia-tool-to-perform-multiple.html) - [Jsfinder - Fetches JavaScript Files Quickly And Comprehensively](https://www.kitploit.com/2023/05/jsfinder-fetches-javascript-files.html) - [Acheron - Indirect Syscalls For AV/EDR Evasion In Go Assembly](https://www.kitploit.com/2023/05/acheron-indirect-syscalls-for-avedr.html) - [Hades - Go Shellcode Loader That Combines Multiple Evasion Techniques](http://www.kitploit.com/2023/05/hades-go-shellcode-loader-that-combines.html)