Leaderboard

SharpFruit SharpFruit is a c# port of Find-Fruit.ps1 SharpFruit is intended to aid Penetration Testers in finding juicy targets on internal networks without nmap scanning. As an example, one could execute SharpFruit.exe through Cobalt Strike's Beacon "execute-assembly" module. Example usage beacon>execute-assembly /root/SharpFruit/SharpFruit.exe --cidr 10.10.1.0/24 --port 8080 OR an example using SSL beacon>execute-assembly /root/SharpFruit/SharpFruit.exe --cidr 10.10.1.0/24 --port 9443 --ssl+ --useragent "GoogleBotIsInsideYourNetwork" Source: https://github.com/rvrsh3ll/SharpFruit.git

Salut incearca aici https://arbaleta.ro/shop/page/24/ .

Nu chiar... Din cate imi dau seama, scopul acestei jucarii e sa fie rulata prin CobaltStrike: clientul CobaltStrike citeste exe-ul, il trimite Beacon-ului, acesta il executa din memorie si iti returneaza output-ul. Exe-ul nu ajunge ca fisier pe la victima. Corolar si pentru https://github.com/rvrsh3ll/SharpPrinter

Nu e mai simplu sa folosesti php? Eu lucrez cu feeduri csv de sute de mb si le bag una-doua in baza. Comentariile sunt cringe rau

A new day and a new tool from the Blackhat USA 2012 tool arsenal – XMPPloit! Before we talk about the tool itself, let us first know what XMPP is. XMPP stands for Extensible Messaging and Presence Protocol and is a streaming XML protocol that was previously named Jabber. It is an open technology for real-time communication, which powers a wide range of applications including instant messaging, presence, multi-party chat, voice and video calls, collaboration, lightweight middleware, content syndication, and generalized routing of XML data. Back to the actual tool now. XMPPloit is an open source, command-line tool that can help you to attack XMPP connections. Successful attacks can allow you, (the attacker) to place a gateway between the client and the server and perform different attacks on the client stream. It exploits implementation vulnerabilities at the client & server side in the XMPP protocol. Precisely put, XMPPloit is an application to establish a gateway between the client and server, allowing you to monitor and manipulate XMPP traffic between them (taking advantage of vulnerabilities in implementations client / server and the protocol itself). By default the application is configured to work with Google Talk so that, if you want to use it for another system, you must specify the IP or XMPP server domain. The main goal is that all the process is transparently for the user and never replace any certificate (like HTTPS attacks). Features of XMPPloit: Downgrade the authentication mechanism (can obtain the user credentials) Force the client not to use an encrypted communication Set filters for traffic manipulation Filters that have been implemented in this version for Google Talk are: Read all the the user’s account mails Read and modify all the user’s account contacts (being or not in the roster). The open source tool has been programmed in Java and only requires the Librería HttpClient (Apache). We actually had to wait for this one to be released since without authentication, we could not download the tool. Download XMPPloit: XMPPloit 1.0 – XMPPloit.7z/XMPPloit_src.7z Sursa PenTestiT