Darknet – Page 38 – WindowsTechs.com

movfuscator – Compile Into ONLY mov Instructions

Posted on June 6, 2016 by Darknet

The M/o/Vfuscator (short ‘o’, sounds like “mobfuscator”) helps programs compile into only mov instructions, and nothing else – no cheating. Arithmetic, comparisons, jumps, function calls, and everything else a program needs are all performed through mov operations; there is no self-modifying code, no transport-triggered calculation, and no other…

Read the full post at darknet.org.uk

Continue reading movfuscator – Compile Into ONLY mov Instructions→

TeamViewer Hacked? It Certainly Looks Like It

Posted on June 2, 2016 by Darknet

So is TeamViewer Hacked? There’s no definitive answer for now as they aren’t admitting to anything – but it does look very suspicious. The whole service was down for a few hours, the domains were apparently pointing to Chinese IP addresses (DNS Hijacking?) and no-one could login. A whole bunch of users also turned up […]

The post TeamViewer…

Read the full post at darknet.org.uk

Continue reading TeamViewer Hacked? It Certainly Looks Like It→

Wfuzz – Web Application Brute Forcer

Posted on May 31, 2016 by Darknet

Wfuzz is a Python based flexible web application brute forcer which supports various methods and techniques to expose web application vulnerabilities. This allows you to audit parameters, authentication, forms with brute-forcing GET and POST parameters… Continue reading Wfuzz – Web Application Brute Forcer→

wildpwn – UNIX Wildcard Attack Tool

Posted on May 27, 2016 by Darknet

wildpwn is a Python UNIX wildcard attack tool that helps you generate attacks, based on a paper by Leon Juranic. It’s considered a fairly old-skool attack vector, but it still works quite often. The simple trick behind this technique is that when using shell wildcards, especially asterisk (*), the UNIX shell will interpret files beginning…

Read the full post at darknet.org.uk

Continue reading wildpwn – UNIX Wildcard Attack Tool→

CapTipper – Explore Malicious HTTP Traffic

Posted on May 23, 2016 by Darknet

CapTipper is a Python tool to explore malicious HTTP traffic, it can also help analyse and revive captured sessions from PCAP files. It sets up a web server that acts exactly as the server in the PCAP file and contains internal tools with a powerful interactive console for analysis and inspection of the hosts, objects […]

The post CapTipper…

Read the full post at darknet.org.uk

Continue reading CapTipper – Explore Malicious HTTP Traffic→

SubBrute – Subdomain Brute-forcing Tool

Posted on May 20, 2016 by Darknet

SubBrute is a community driven project with the goal of creating the fastest, and most accurate subdomain brute-forcing tool. Some of the magic behind SubBrute is that it uses open resolvers as a kind of proxy to circumvent DNS rate-limiting. This design also provides a layer of anonymity, as SubBrute does not send traffic directly […]

The…

Read the full post at darknet.org.uk

Continue reading SubBrute – Subdomain Brute-forcing Tool→

The Backdoor Factory (BDF) – Patch Binaries With Shellcode

Posted on May 16, 2016 by Darknet

The Backdoor Factory or BDF is a tool which enables you to patch binaries with shellcode and continue normal execution exactly as the executable binary would have in its’ pre-patched state. Some executables have built in protection, as such this tool will not work on all binaries. It is advisable that you test target binaries […]

The post…

Read the full post at darknet.org.uk

Continue reading The Backdoor Factory (BDF) – Patch Binaries With Shellcode→

Gdog – Python Windows Backdoor With Gmail Command & Control

Posted on May 13, 2016 by Darknet

Gdog is a stealthy Python Windows backdoor that uses Gmail as a command and control server, it’s inspired by Gcat and pushes a little beyond a proof of concept with way more features. And don’t forget, Gcat also inspired Twittor – Backdoor Using Twitter For Command & Control. Features Encrypted transportation messages (AES) + SHA256…

Read the full post at darknet.org.uk

Continue reading Gdog – Python Windows Backdoor With Gmail Command & Control→

SPF (SpeedPhish Framework) – E-mail Phishing Toolkit

Posted on May 9, 2016 by Darknet

SPF (SpeedPhish Framework) is a an e-mail phishing toolkit written in Python designed to allow for quick recon and deployment of simple social engineering phishing exercises. There are also other popular Phishing tools are frameworks such as: – Phishing Frenzy – E-mail Phishing Framework – Gophish – Open-Source Phishing Framework – sptoolkit…

Read the full post at darknet.org.uk

Continue reading SPF (SpeedPhish Framework) – E-mail Phishing Toolkit→

WAFW00F – Fingerprint & Identify Web Application Firewall (WAF) Products

Posted on May 6, 2016 by Darknet

WAFW00F is a Python tool to help you fingerprint and identify Web Application Firewall (WAF) products. It is an active reconnaissance tool as it actually connects to the web server, but it starts out with a normal HTTP response and escalates as necessary. You can override or include your own headers, it has SOCKS and […]

The post WAFW00F…

Read the full post at darknet.org.uk

Continue reading WAFW00F – Fingerprint & Identify Web Application Firewall (WAF) Products→