Profile cover photo
Profile photo
Sumate jitpukdebodin
365 followers
365 followers
About
Communities and Collections
Posts

Post has attachment
Tools: IronSAP : SAP Exploitation
IronSAP : SAP Exploitation Made Easy... (BETA) Usage :
1. download all the files in github into folder IronWasp/modules/IronSAP
2. Start Ironwasp
3. From menu click ... Modules -> My Downloads -> IronSAP
5. Enter the IP Address of SAP host in text box and...
Add a comment...

Post has attachment
Add a comment...

Post has attachment
Tools: HTTP Security Headers Powershell script
PowerShell script to quickly test for HTTP Security Headers. Source:: https://pentestn00b.wordpress.com/2016/01/22/http-security-headers-script/
Add a comment...

Post has attachment
Howto: install and use bettercap in Kali 2.0
1. Install Ruby-Dev # apt-get install ruby-dev libpcap-dev 2. Download source code bettercap # git clone https://github.com/evilsocket/bettercap 3. Install bettercap # cd bettercap # gem build bettercap.gemspec # gem install bettercap*.gem 4. Start monitor ...
Add a comment...

Post has attachment
Tools: Stream Detector - Alternate Data Streams (ADS) Detector
NoVirusThanks Stream Detector is a useful utility which finds all hidden
Alternate Data Streams (ADS) on NTFS drives. After finding the
alternate data streams, you can extract these streams, delete the file,
delete unwanted streams, or export the list of...
Add a comment...

Post has attachment
Tools: MassBleed - MassBleed SSL Vulnerability Scanner
USAGE:
sh massbleed.sh [CIDR|IP] [single|port|subnet] [port] [proxy] ABOUT:
This script has four main functions with the ability to proxy all connections: To mass scan any CIDR range for OpenSSL vulnerabilities via port 443/tcp (https) (example: sh massble...
Add a comment...

Post has attachment
Tools: Windows Remote Access Trojan (RAT)
Windows Remote Access Trojan (RAT) using .NET Sockets Client-server binaries and source-code for controlling a remote
machine behind a NAT with a command-line shell in Windows. Although the
core provides support for communication with multiple RATs, the
...
Add a comment...

Post has attachment
Tools: 0d1n - Web security tool to make fuzzing at HTTP inputs, made in C with libCurl
 0d1n is a tool for automating customized attacks against web applications. *brute force passwords in auth forms *diretory disclosure ( use PATH list to brute, and find HTTP status code ) *test list on input to find SQL Injection and XSS vulnerabilities oth...
Add a comment...

Post has attachment
Tools: Bonesi - Simulate a HTTP GET BotNet DDoS Attack
 How does TCP Spoofing work? BoNeSi sniffs for TCP packets on the network interface and responds to
all packets in order to establish TCP connections. For this feature, it
is necessary, that all traffic from the target webserver is routed back
to the hos...
Add a comment...

Post has attachment
Tools: Sn1per – Automated Pentest Recon Scanner
Sn1per is an automated open source scanner that you can use during
penetration testing. the tool allow to use some compilation of pentest
utility such as the harvester , nmap and brute force against your
target. some of the features are: Automatically co...
Add a comment...
Wait while more posts are being loaded