Nytro Posted June 2, 2017 Report Posted June 2, 2017 Black Hat Arsenal USA 2017 On June 1, 2017 @toolswatch announced the tools selected for Black Hat Arsenal USA 2017. Most of the selected tools are already present on GitHub and some are yet to be uploaded. This article contains the links to their respective repositories. The tools are arranged according to their tracks. If you like the tool, go to its repository and click Watch to keep updated on the latest commits and pushes. Some tools will be updated during/after the Arsenal event. Links to the GitHub repositories of those tools will be eventually updated in this article. Android, iOS and Mobile Hacking Android Tamerhttps://github.com/AndroidTamer DiffDroidhttps://github.com/antojoseph/diff-droid Kwetzahttps://github.com/sensepost/kwetza Needlehttps://github.com/mwrlabs/needle NoPE Proxy (Non-HTTP Proxy Extension)https://github.com/summitt/Burp-Non-HTTP-Extension Code Assessment Puma Scanhttps://github.com/pumasecurity/puma-scan Tintorera: Source Code Intelligence (Code not yet uploaded)https://github.com/vulnex/Tintorera Cryptography Hashviewhttps://github.com/hashview/hashview Gibber Sensehttps://github.com/smxlabs/gibbersense Data Forensics and Incident Response PcapDB: Optimized Full Network Packet Capture for Fast and Efficient Retrievalhttps://github.com/dirtbags/pcapdb SCOT (Sandia Cyber Omni Tracker) Threat Intelligence and Incident Response Management Systemhttps://github.com/sandialabs/scot Security Monkeyhttps://github.com/Netflix/security_monkey ThreatResponse: An Open Source Toolkit for Automating Incident Response in AWShttps://github.com/ThreatResponse Yalda — Automated Bulk Intelligence Collection (Code not yet uploaded)https://github.com/gitaziabari/Yalda Exploitation and Ethical Hacking AVET — AntiVirus Evasion Toolhttps://github.com/govolution/avet GDB Enhanced Features (GEF)https://github.com/hugsy/gef Leviathan Frameworkhttps://github.com/leviathan-framework/leviathan MailSniperhttps://github.com/dafthack/MailSniper Sethhttps://github.com/SySS-Research/Seth Hardware/Embedded ChipWhispererhttps://github.com/newaetech/chipwhisperer DYODE, a DIY, Low-Cost Data Diode for ICShttps://github.com/arnaudsoullie/dyode FTW: Framework for Testing WAFshttps://github.com/fastly/ftw The Bicho: An Advanced Car Backdoor Makerhttps://github.com/UnaPibaGeek/CBM Internet of Things Hacker Modehttps://github.com/xssninja/Alexa-Hacker-Mode Universal Radio Hacker: Investigate Wireless Protocols Like a Bosshttps://github.com/jopohl/urh Malware Defense Aktaion v2 — Open Source Machine Learning and Active Defense Toolhttps://github.com/jzadeh/Aktaion Cuckoo Sandboxhttps://github.com/cuckoosandbox/cuckoo LimaCharliehttps://github.com/refractionPOINT/limacharlie Malboxeshttps://github.com/GoSecure/malboxes Network Attacks BloodHound 1.3 https://github.com/BloodHoundAD/BloodHound CrackMapExec v4https://github.com/byt3bl33d3r/CrackMapExec DELTA: SDN Security Evaluation Frameworkhttps://github.com/OpenNetworkingFoundation/DELTA eaphammerhttps://github.com/s0lst1c3/eaphammer gr-lora: An Open-Source SDR Implementation of the LoRa PHYhttps://github.com/BastilleResearch/gr-lora Yasuohttps://github.com/0xsauby/yasuo Network Defense Assimilatorhttps://github.com/videlanicolas/assimilator Noddoshttps://github.com/noddos/noddos Sweet Securityhttps://github.com/TravisFSmith/SweetSecurity OSINT — Open Source Intelligence Datasploit — Automated Open Source Intelligence (OSINT) Toolhttps://github.com/DataSploit/datasploit Dradis: 10 Years Helping Security Teams Spend More Time Testing and Less Time Reportinghttps://github.com/dradis/dradis-ce OSRFramework: Open Sources Research Frameworkhttps://github.com/i3visio/osrframework Reverse Engineering BinGrephttps://github.com/m4b/bingrep Vulnerability Assessment Aardvark and Repokidhttps://github.com/square/Aardvark SERPICOhttps://github.com/SerpicoProject/Serpico SimpleRiskhttps://github.com/simplerisk/code Web AppSec BurpSmartBuster: A Smart Way to Find Hidden Treasureshttps://github.com/pathetiq/BurpSmartBuster CSP Auditorhttps://github.com/GoSecure/csp-auditor Easily Exploit Timing Attacks in Web Applications with the ‘timing_attack’ Gemhttps://github.com/ffleming/timing_attack Fuzzapi — Fuzzing Your RESTAPIs Since Yesterdayhttps://github.com/lalithr95/fuzzapi Offensive Web Testing Framework (OWASP OWTF)https://github.com/owtf/owtf PyMultiTorhttps://github.com/realgam3/pymultitor ThreadFix Web Application Attack Surface Calculationhttps://github.com/denimgroup/threadfix WaToBo — The Web Application Toolboxhttps://github.com/siberas/watobo WSSiP: A WebSocket Manipulation Proxyhttps://github.com/nccgroup/wssip If you haven’t looked at the selected tools, check the below embed to view the complete details of the tools and its presenters. The Black Hat Arsenal USA 2017 Phenomenal Line-Up Announced Just a BIG w00w !! Over 90 tools covering hardware/embedded, IoT, Malware defense, exploitations and more ! We had…www.toolswatch.org Sursa: https://medium.com/hack-with-github/black-hat-arsenal-usa-2017-3fb5bd9b5cf2 6 Quote
