Offensive Security Tool: HExHTTP
HExHTTP is a tool designed to perform tests on HTTP headers and analyze the results to identify vulnerabilities and interesting behaviors.
Recon Tool: getJS
getJS is a tool designed for extracting JavaScript sources from web pages, HTTP responses, and URLs.
Digital Forensics Tool: MemProcFS-Analyzer
MemProcFS-Analyzer is a PowerShell script designed to streamline memory forensics by integrating with MemProcFS (Memory Process File System).
Offensive Security Tool: Penelope
Penelope is a shell handler designed to be easy to use and intended to replace netcat when exploiting RCE vulnerabilities.
Offensive Security Tool: ACEshark
ACEshark is a Python-based utility that facilitates the rapid extraction and analysis of Windows service configurations and Access Control Entries (ACEs). It removes the dependency on external tools like accesschk.exe or other non-native binaries.
Offensive Security Tool: XSRFProbe
XSRFProbe is a tool designed to detect, audit, and exploit Cross-Site Request Forgery (CSRF/XSRF) vulnerabilities. It combines a robust crawling engine with systematic checks to identify vulnerabilities, assess related bypasses, and generate exploitative proof-of-concept scripts.
Recent News
GitVenom: Fake GitHub Repositories Spreading Malware to Developers
Massive Botnet Attack Targets Microsoft 365: 130,000 Devices Exploiting Legacy Authentication
Bybit Crypto Exchange Hacked: $1.4 Billion ETH Stolen from Cold Wallet
Fake Browser Updates Now Spread New FrigidStealer Malware to Mac, Windows, and Android
OpenSSH Patches Two Critical Vulnerabilities, One Undetected for a Decade
New Golang Backdoor Uses Telegram API for Covert Command and Control
FinalDraft Malware Uses Outlook Drafts for Covert C2
whoAMI Attack Lets Hackers Gain Code Execution in AWS Accounts via AMI Name Confusion
Critical SonicWall VPN Flaw Lets Hackers Hijack Sessions
Massive Brute Force Attack Using 2.8 Million IPs Targets Networking Devices
