PatrowlHears (Vulnerability Intelligence Center) :: Tools

<p style="text-align: center;"> <a href="#" style="margin-left: 1em; margin-right: 1em;"><img alt="PatrowlHears - Vulnerability Intelligence Center" border="0" data-original-height="95" data-original-width="426" height="142" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg78Yi-fUn6UnelJNfinTL6GmFcle_rN2kJVvbZkCeqyMWPTE-1c0Uo0rhirqcu-htF2eTBr5F4EYy0qj6L6eKHXBSOd387DApVooZ6SjJo612jyJVpfoFrQ1IfveC9EfrYrc_MsYqZrVpm/w640-h142-rw/logo-patrowl-light.png" title="PatrowlHears - Vulnerability Intelligence Center" width="640" /> </a></p><p style="text-align: justify;"><span style="font-size: medium;"><span style="font-family: arial;"><span>PatrowlHears provides a unified source of vulnerability, exploit and threat Intelligence feeds. Users accesses a comprehensive and continuously updated vulnerability database scored and enriched with exploit and threat news information. These metadata are collected from public OSINT and private feeds. As today, it’s one of the most extended database.</span></span></span></p><code></code><p style="text-align: justify;"><span style="font-size: medium;"><b>Tutorial: </b><a href="https://makyotox.medium.com/patrowlhears-open-source-vulnerability-intelligence-center-a8577c462257" rel="nofollow" target="_blank">Click Here</a></span></p><p style="text-align: justify;"><span style="font-size: medium;"></span></p><div class="separator" style="clear: both; text-align: center;"><span style="font-size: medium;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgESDSSt8WN9e9FE8jTgauibslgmGYU-gxlA2KUNFhYXA77F5I2MfmxBDStpGCL335dQ6qq1X5nkgMYcGg91nl3KL7F1-bI7rb4o9QUYieLnTPuGrttTYC1Dd5UiZuR_jFIOTJWyPrO0p25/s700/1+2BX5kinORfnh_Y0cJA5XFA.png" rel="nofollow" style="margin-left: 1em; margin-right: 1em;" target="_blank"><img alt="PatrowlHears" border="0" data-original-height="313" data-original-width="700" height="179" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgESDSSt8WN9e9FE8jTgauibslgmGYU-gxlA2KUNFhYXA77F5I2MfmxBDStpGCL335dQ6qq1X5nkgMYcGg91nl3KL7F1-bI7rb4o9QUYieLnTPuGrttTYC1Dd5UiZuR_jFIOTJWyPrO0p25/w400-h179-rw/1+2BX5kinORfnh_Y0cJA5XFA.png" title="PatrowlHears" width="400" /></a></span></div><p></p><p style="text-align: justify;"><span style="font-size: medium;"><b>Download</b>: </span></p><p style="text-align: justify;"><span style="font-size: medium;">Linux: </span></p><pre><code>git clone https://github.com/Patrowl/PatrowlHears cd PatrowlHears ./install.sh </code></pre><pre><code><span style="font-size: small;"><code><span style="font-family: arial;"><b>For Detailed Installation Guide:</b> <a href="https://github.com/Patrowl/PatrowlHears/blob/master/INSTALL.md" rel="nofollow" target="_blank">Click Here</a></span> </code></span> </code></pre><p style="text-align: justify;"><span style="font-size: medium;"><b>Submitted By:</b> <a href="https://twitter.com/makyotox" rel="nofollow" target="_blank">makyotox</a></span><br /></p>

PatrowlHears (Vulnerability Intelligence Center) :: Tools

    PatrowlHears provides a unified source of vulnerability, exploit and threat Intelligence feeds. Users accesses a comprehensive and conti...

Read more »

Creepy (A Geolocation OSINT Tool) :: Tools

<p style="text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgTMXR4-ayRdnriidUVQ4oZz3fyWm7PYeRQO3N5-pTyBtsw5Y4l_w6u_0VdPVfnV5IYPkcMwFhxmtgg2HZ8inLe_DG4acjmxSsWAQMA_5a4e_FZV4LPDsm5TOoHb7ZFBZmgMwaPRgSmuk1q/s1854/creepy.png" style="margin-left: 1em; margin-right: 1em;"><img alt="Creepy - A Geolocation OSINT Tool" border="0" data-original-height="1080" data-original-width="1854" height="233" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgTMXR4-ayRdnriidUVQ4oZz3fyWm7PYeRQO3N5-pTyBtsw5Y4l_w6u_0VdPVfnV5IYPkcMwFhxmtgg2HZ8inLe_DG4acjmxSsWAQMA_5a4e_FZV4LPDsm5TOoHb7ZFBZmgMwaPRgSmuk1q/w400-h233-rw/creepy.png" title="Creepy - A Geolocation OSINT Tool" width="400" /> </a></p><p style="text-align: justify;">Creepy is an open-source Geolocation intelligence tool. It collects information about Geolocation by using various social networking platforms and image hosting services that are already published somewhere else. Creepy presents the reports on the map, using a search filter based on the exact location and date. These reports are available in CSV or KML format to export for additional analysis.</p><h3>Quick Start Instructions</h3> <ul><li>Download creepy ( source code or the installers provided here for your platform )</li><li>Configure the plugins. Edit -> Plugins Configuration -> Select plugin and run the wizards, following the instructions</li><li>Create a new project : Creepy -> New Project -> Person Based Project . Search for the target selecting the available plugins.</li><li>Right click on the project -> Analyze Current Project</li><li>Wait :)</li><li>The locations will be drawn on the map, once the analysis is complete.</li><li>Filter locations, export locations, view them on the map.</li></ul><div style="text-align: left;"><b>Installation:</b><a href="https://www.geocreepy.com/" target="_blank"><b> </b>Installation Guide</a></div><div style="text-align: left;"> </div><div style="text-align: left;"><div style="text-align: left;"><b>Download Here:  </b></div><div style="text-align: left;"><a href="https://github.com/jkakavas/creepy/releases/download/v1.4.1/creepy_setup_v1.4.1_x86_64.exe" target="_blank">Creepy v1.4.1 Windows x64</a></div><div style="text-align: left;"><a href="https://github.com/jkakavas/creepy/releases/download/v1.4.1/creepy_setup_v1.4.1_x86_32.exe" rel="nofollow" target="_blank">Creepy v1.4.1 Windows x32</a></div><div style="text-align: left;"><a href="https://github.com/jkakavas/creepy/releases/download/v1.4.1/cree.py_1.4.1.dmg.zip" rel="nofollow" target="_blank">Creepy v1.4.1 OSX</a><br /></div></div>

Creepy (A Geolocation OSINT Tool) :: Tools

    Creepy is an open-source Geolocation intelligence tool. It collects information about Geolocation by using various social networking ...

Read more »

SubBrute (Subdomain Bruteforcer) :: Tools

<p style="text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEir8Vkrnp22NNcwJ4TRgPi1YAm_XJvNmKenaVQ0w98RW2yv5rqslLJflOiKfr0HEHmjopBvu_-nmjjxc3eYsn0w8kMP6PHuX9xMhvRigmyxoBDd-bwTEbnjX-H_haEpL0DfBWjSX9-CfDA/s1600/SubBrute.jpg" style="margin-left: 1em; margin-right: 1em;"><img alt="subbrute subdomain bruteforce" border="0" data-original-height="900" data-original-width="1600" height="225" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEir8Vkrnp22NNcwJ4TRgPi1YAm_XJvNmKenaVQ0w98RW2yv5rqslLJflOiKfr0HEHmjopBvu_-nmjjxc3eYsn0w8kMP6PHuX9xMhvRigmyxoBDd-bwTEbnjX-H_haEpL0DfBWjSX9-CfDA/w400-h225-rw/SubBrute.jpg" title="subbrute subdomain bruteforce" width="400" /> </a></p><p style="text-align: justify;">SubBrute is a community driven project with the goal of creating the fastest, and most accurate subdomain enumeration tool. Some of the magic behind SubBrute is that it uses open resolvers as a kind of proxy to circumvent DNS rate-limiting. This design also provides a layer of anonymity, as SubBrute does not send traffic directly to the target's name servers.</p><p><span style="font-size: medium;"><b>I<span>nstallation & Use:</span></b> </span></p><p>No install required for Windows, just cd into the 'windows' folder:</p> <ul><li>subbrute.exe google.com</li></ul> <p>Easy to install: You just need and python2.7 or python3. This tool should work under any operating system: bsd, osx, windows, linux...</p> <p>(On a side note giving a makefile root always bothers me, it would be a great way to install a backdoor...)</p> <p>Under Ubuntu/Debian all you need is:</p> <ul><li>sudo apt-get install python-dnspython</li></ul> <p>On other operating systems you may have to install dnspython manually:</p> <p>Easy to use:</p> <ul><li>./subbrute.py google.com</li></ul> <p>Tests multiple domains:</p> <ul><li>./subbrute.py google.com gmail.com blogger.com</li></ul> <p>or a newline delimited list of domains:</p> <ul><li>./subbrute.py -t list.txt</li></ul> <p>Also keep in mind that subdomains can have subdomains (example: _xmpp-server._tcp.gmail.com):</p> <ul><li> <p>./subbrute.py gmail.com > gmail.out</p> </li><li> <p>./subbrute.py -t gmail.out</p> </li></ul><p style="text-align: justify;"><b><span style="font-size: small;">Download: <a href="https://github.com/TheRook/subbrute" target="_blank">Subbrute v1.2.1</a><br /></span></b></p>

SubBrute (Subdomain Bruteforcer) :: Tools

    SubBrute is a community driven project with the goal of creating the fastest, and most accurate subdomain enumeration tool. Some of th...

Read more »

Sublist3r - Subdomain Enumeration / Scanner : Tools

<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiX9xrud6fayQX7f2OmbYU-qjmsBfi35Y0IOMLeMSt1J-XnREvEI3TP99ySPRbENncML8CtP-8Nj8ppzVMR1nkfJWP_4ACocVhp1ZkHhCTFlQlNxlDPkC0htQNyVAN8KELdRTWwRfydGVt3/s1600/Sublist3r.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="Sublist3r - Subdomain Enumeration" border="0" data-original-height="413" data-original-width="867" height="190" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiX9xrud6fayQX7f2OmbYU-qjmsBfi35Y0IOMLeMSt1J-XnREvEI3TP99ySPRbENncML8CtP-8Nj8ppzVMR1nkfJWP_4ACocVhp1ZkHhCTFlQlNxlDPkC0htQNyVAN8KELdRTWwRfydGVt3/s400-rw/Sublist3r.JPG" title="Sublist3r - Subdomain Scanner" width="400" /></a></div> <div style="text-align: justify;"> Sublist3r is a python tool designed to enumerate subdomains of websites using OSINT. It helps penetration testers and bug hunters collect and gather subdomains for the domain they are targeting. Sublist3r enumerates subdomains using many search engines such as Google, Yahoo, Bing, Baidu, and Ask. Sublist3r also enumerates subdomains using Netcraft, Virustotal, ThreatCrowd, DNSdumpster, and ReverseDNS.</div> <div style="text-align: justify;"> <br /></div> <h2 style="text-align: justify;"> <span style="font-size: large;">Installation:</span></h2> <blockquote class="tr_bq"> <pre><code>git clone https://github.com/aboul3la/Sublist3r.git</code></pre> </blockquote> <b><span style="font-size: small;">Dependencies:</span></b><br /> <blockquote class="tr_bq"> <pre><code>sudo pip install -r requirements.txt</code></pre> </blockquote> <b><span style="font-size: small;">How To Use:</span></b> <br /> <blockquote class="tr_bq"> <span style="font-size: large;"> </span><code>python sublist3r.py -v -d example.com</code></blockquote> where -V : Verbose, -d : Domain<br /> <br /> <h3> <b>Download:: </b> </h3> Linux & Windows : <a href="https://github.com/aboul3la/Sublist3r" rel="nofollow" target="_blank">Sublis3r (Official Page)</a>

Sublist3r - Subdomain Enumeration / Scanner : Tools

Sublist3r is a python tool designed to enumerate subdomains of websites using OSINT. It helps penetration testers and bug hunters collec...

Read more »

Raptor (Web Application Firewall) :: Tools

<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiadcCxjJTdux51f0JnZ23ps_ghlV5q5tBnR2Xv4ExUOtd8LXLQSWTjZCMEyLd7dUktgn7BL70xkpRD5Hh2v461lGfjvlUGFsntnBgcuOUEU_JBZhfqZHYDfF-NPfiBj6aYlvqwxsQHwQ-z/s1600/Raptor.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="Download Web Application Firewall Raptor" border="0" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiadcCxjJTdux51f0JnZ23ps_ghlV5q5tBnR2Xv4ExUOtd8LXLQSWTjZCMEyLd7dUktgn7BL70xkpRD5Hh2v461lGfjvlUGFsntnBgcuOUEU_JBZhfqZHYDfF-NPfiBj6aYlvqwxsQHwQ-z/s1600-rw/Raptor.png" title="Raptor Web Application Firewall" /></a></div> <div style="text-align: justify;"> <b>Raptor</b> is an Open Source Tool, your focus is study of attacks and find intelligent ways to block attacks. Raptor is made in pure C, don’t use regex or other common ways to block attacks, use deterministic finite automaton, yes is diferent and fast like a raptor dinosaur, Raptor follow principle KISS (Keep It Simple), you can use Raptor to simulate attacks and learning new ways to bypasses.</div> <div style="text-align: justify;"> <br /></div> <div style="text-align: justify;"> WAF stands for Web Application Firewall. It is widely used nowadays to detect and defend SQL Injections and XSS...</div> <ul> <li>    You can block XSS, SQL injection attacks and path traversal with Raptor</li> <li>    You can use blacklist of IPs to block some users at config/blacklist ip.txt</li> <li>    You can use IPv6 and IPv4 at communications</li> <li>    At the future DoS protector, request limit, rule interpreter and Malware detector at uploads.</li> <li>    At the future SSL/TLS...</li> </ul> <b>Installation: </b><br /> to run:<br />$ git clone https://github.com/CoolerVoid/raptor_waf<br />$ cd raptor_waf; make; bin/raptor<br /> <br /> <b>Usage: </b><br /> Up some HTTPd server at port 80<br />$ bin/Raptor -h localhost -p 80 -r 8883 -w 4 -o loglog.txt<br /> <b> </b><br /> <b>Documentation: </b><a href="https://github.com/CoolerVoid/raptor_waf/blob/master/doc/raptor.pdf" rel="nofollow" target="_blank">Click Here</a><b> </b><br /> <h3> <b>Download: </b></h3> <b>Linux: </b><a href="http://sourceforge.net/projects/raptorwaf/files/latest/download" rel="nofollow" target="_blank">Raptor</a>  <b><br /></b>

Raptor (Web Application Firewall) :: Tools

Raptor is an Open Source Tool, your focus is study of attacks and find intelligent ways to block attacks. Raptor is made in pure C, don’...

Read more »

Katana (Penetration Testing) :: Framework

<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhw1qTlDYqNtKvMj9NxyH9Z1j3SfWPp0LHjUlIvAoh3fymYv3sUWHQ5obhS3z3ZjfPDr8j-FcvHs27sgD2ea_KOxRs-iXdsa31FWYMOA5E8hajACfsjq2Q23aDoRo334OJnAsTMUjM7Cfo_/s1600/Katana+Framework.png" imageanchor="1"><img alt="Download Katana Framework For Penetration Testing" border="0" height="130" loading="lazy" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhw1qTlDYqNtKvMj9NxyH9Z1j3SfWPp0LHjUlIvAoh3fymYv3sUWHQ5obhS3z3ZjfPDr8j-FcvHs27sgD2ea_KOxRs-iXdsa31FWYMOA5E8hajACfsjq2Q23aDoRo334OJnAsTMUjM7Cfo_/s400-rw/Katana+Framework.png" title="Katana Framework" width="400" /></a></div> <div style="text-align: justify;"> <b>Katana</b> is a framework written in <b>python</b> for making penetration testing, based on a simple and comprehensive structure for anyone to use, modify and share, the goal is to unify tools serve for professional when making a penetration test or simply as a routine tool, The current version is not completely stable, is recommended update ever that you use it.</div> <h3> <b>Installation::</b></h3> Installation of Katana framework: is necesary install all dependencies for a good performance. <br /> <blockquote class="tr_bq"> <pre><i>git clone https://github.com/PowerScript/KatanaFramework.git cd KatanaFramework sudo sh dependencies sudo python install </i></pre> <div style="text-align: justify;"> <br /></div> </blockquote> <b>How to Use:: </b><a href="https://github.com/PowerScript/KatanaFramework/wiki/How-to-use" rel="nofollow" target="_blank">Click Here</a> <br /> <div style="text-align: justify;"> <br /></div> <div style="text-align: justify;"> <b>Video Tutorial: </b></div> <div style="text-align: justify;"> <br /></div> <div class="separator" style="clear: both; text-align: center;"> <iframe allowfullscreen="" class="YOUTUBE-iframe-video" data-thumbnail-src="https://i.ytimg.com/vi/B0QsDwYTrnI/0.jpg" frameborder="0" height="330px" src="https://www.youtube.com/embed/B0QsDwYTrnI?feature=player_embedded" width="100%"></iframe></div> <div style="text-align: justify;"> <h3> <b>Download:</b></h3> <b>Linux:  </b><a href="https://github.com/PowerScript/KatanaFramework" rel="nofollow" target="_blank">Katana Framework</a><br /> <br /> <b>Submitted By: </b>RedToor</div>

Katana (Penetration Testing) :: Framework

Katana is a framework written in python for making penetration testing, based on a simple and comprehensive structure for anyone to us...

Read more »