Search the Community

Intensio-Obfuscator Intensio-Obfuscator tool takes a python source code and transforms it into an obfuscated python code Replace all names of variables/classes/functions/files-name to random strings with a length defined and all chars to their hexadecimal value Remove all comments, all spaces lines Padding random scripts with always different values Changelog 07-09-2020 [upgrade] to version 1.0.9.9 [fix] issue #53 [fix] issue #44 with pull request #52 [hide][Hidden Content]]

TikTok Video Downloader lets you download Image or/Video post from TikTok by just a Video URL. Our tool automatically Generates download link of the video. Demo: [Hidden Content] [hide][Hidden Content]]

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester, and a broad range of switches including database fingerprinting, over data fetching from the database, accessing the underlying file system, and executing commands on the operating system via out-of-band connections. Changelog v1.4.7 Commits on Jul 01, 2020 Minor patch Adding support for generic phpass (Wordpress, Drupal, PHPBB3, etc.) Minor update (phpass) Commits on Jan 01, 2020 Version bump Copyright year bump [hide][Hidden Content]]

A Ransomware and Ransomware Builder for Windows written purely in Python Created for security researchers, enthusiasts and educators, Crypter allows you to experience ransomware first hand. The newly released v3.0 is a complete overhaul that drastically simplifies setup and brings the package up-to-date to work with Python 3.6 and above. Crypter - Python3 based builder and ransomware compiled to Windows executable using PyInstaller What's New? (v3.0) Decryption key validation check before attempting decryption Overhaul to support Python 3.6 and above Drastically simplified dependency installation Crypter - 3.4 Released this on 6 May Numerous fixes and improvements [hide][Hidden Content]]

Commix (short for [comm]and njection e[x]ploiter) is an automated tool written by Anastasios Stasinopoulos (@ancst) that can be used from web developers, penetration testers or even security researchers in order to test web-based applications with the view to find bugs, errors or vulnerabilities related to command injection attacks. By using this tool, it is very easy to find and exploit a command injection vulnerability in a certain vulnerable parameter or HTTP header. Changelog Version 3.1 Fixed: Multiple bug-fixes regarding several reported unhandled exceptions. Added: A script “setup.py” has been added (i.e. easier installation). Revised: Improvement regarding checking if the provided value has boundaries (e.g. ‘param=/value/’). Revised: Improvement regarding dynamic code evaluation technique’s heurstic checks. Revised: Improvement regarding identifying the indicated web-page charset. Revised: Minor improvement regarding verbose mode (i.e. debug messages). Fixed: Bug-fix regarding Basic HTTP authentication. Revised: Minor improvement regarding redirection mechanism. Fixed: Bug-fix regarding defining wildcard character “*” in nested JSON objects. Revised: Minor improvement regarding Flatten_json (third party) module. Revised: Minor improvement regarding parsing nested JSON objects. Added: New tamper script “doublequotes.py” that adds double-quotes (“”) between the characters of the generated payloads (for *nix targets). Fixed: Bug-fix regarding parsing raw HTTP headers from a file (i.e. -r option). Revised: Improvements regarding data in the detailed message about occurred unhandled exception. Revised: Minor bug-fixes and improvements regarding HTTP authentication dictionary-based cracker. [hide][Hidden Content]]

PHP malware scanner Traversing directories for files with php extensions and testing files against text or regexp rules, the rules-based on self-gathered samples and publicly available malwares/webshells. The goal is to find infected files and fight against kiddies, because too easy to bypass rules. Changelog v1.0.5 Combined whitelist updated [hide][Hidden Content]]

GDBFrontend GDBFrontend is an easy, flexible and extension able gui debugger. Changelog v0.1.1 beta Added debugging without debugging symbols support. Added breakpoint support to disassembly. Added disassembly tab/view in addition to the disassembly section on the right side. Colorized instruction mnemonics and addresses. Improved exception messages. Notes GDBFrontend is iterating instructions to ret/retq with a max limit: hardcoded 1000. (This will be a setting in future versions.) If your application is using a symbol table, it will disassembly code from the address of the function of the selected frame. “Disassemble everything” for PIEs is a TODO. It will disassembly executable/dynamic-linked objects and use PIE mappings. [hide][Hidden Content]]

Universal Reddit Scraper This is a universal Reddit scraper that can scrape Subreddits, Redditors, and comments on posts. Scrape speeds will be determined by the speed of your internet connection. Changelog v3.1 New in 3.1.0: Scrapes will now be exported to the scrapes/ directory within a subdirectory corresponding to the date of the scrape. These directories are automatically created for you when you run URS. Added log decorators that record what is happening during each scrape, which scrapes were ran, and any errors that might arise during runtime in the log file scrapes.log. The log is stored in the same subdirectory corresponding to the date of the scrape. Replaced bulky titles with minimalist titles for a cleaner look. Added color to terminal output. Improved naming convention for scripts. Integrating Travis CI and Codecov. Updated community documents located in the .github/ directory: BUG_REPORT, CONTRIBUTING, FEATURE_REQUEST, PULL_REQUEST_TEMPLATE, and STYLE_GUIDE Numerous changes to README. The most significant change was splitting and storing walkthroughs in docs/. [HIDE][Hidden Content]]

httpx httpx is a fast and multi-purpose HTTP toolkit allow to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads. Features Simple and modular codebase making it easy to contribute. Fast And fully configurable flags to probe multiple elements. Supports vhost, urls, ports, title, content-length, status-code, response-body probbing. Smart auto fallback from https to http as default. Supports hosts, URLs, and CIDR as input. Handles edge cases doing retries, backoffs, etc for handling WAFs. Changelog v0.0.4 2842f9c Added asn2cidr helper script [HIDE][Hidden Content]]

Support Board - Chat And Help Desk | Support & Chat Support Board for WordPress Support Board is a WordPress plugin that helps you automate your customers’ communication with artificial intelligence-driven bots and a chat system integrated with the most-used platforms. Save time and use the software you already know and love. Communicate with your customers directly in Slack. Connect Dialogflow and use rich messages on the fly. [Hidden Content] [HIDE][Hidden Content]]

GDBFrontend is an easy, flexible and extensionable gui debugger. Changelog v0.1 beta Added –plugins-dir option. Added –workdir option. Added random ports option. [HIDE][Hidden Content]]

Earn big money by creating your own payments gateway with lots of features. Are you looking for a custom online payment solution for your country’s local currency to integrate with your local business? or maybe you want to start your own Payment Gateway Site like PayPal. phpWallet is the script solution you where looking for. With payment gateway Script you can easily accept any physical financial company/bank or online payment platform as deposits and withdrawal methods for your site. And, set a fee amount to earn on every online store purchase linked to your site API and Money transfers made through phpWallet . Demo: [Hidden Content] [HIDE][Hidden Content]]

Perfex CRM Email Builder is a design tool that helps you to effortlessly customize the emails that Perfex CRM is sending to your clients and team; for example, the order confirmation email sent to all customers when they make a purchase. Demo: [Hidden Content] [HIDE][Hidden Content]]

Introduction LoGiC.NET is a free and open-source .NET obfuscator that uses dnlib for folks that want to see how obfuscation works with more complex obfuscations than Goldfuscator for example. Before obfuscation After obfuscation Better obfuscation and understanding Added more comments in the code. Improved the randomizer and a bit the string encryption. Removed a lot of repetitions in the code by adding a "GetRenamed" function that renames a member with the random length of 50-70. Removed useless methods in the InjectHelper class. Optimized some code. [HIDE][Hidden Content]]

APK Utilities A cross-platform suite of scripts and utilities for working with APK files Features Pull adb-pull - pull an app's APK files from a connected device to the project directory adb-lp-pull - pull all LP modified files to the project directory clean - clean the project directory Extract apktool-decode - decode an apk to sources baksmali - decompile a dex to smali aapt-dump - dump Android-specific data (resources, manifest) from an apk enjarify - convert an apk to a jar dexify - convert a jar to a dex Build apktool-build - build previously decoded sources to a patched apk smali - build previously decompiled smali to a patched dex sign - sign a patched apk to a signed apk Push adb-install - install an apk file adb-install-multiple - install multiple apk files adb-lp-push - push files to the LP data directory [HIDE][Hidden Content]]

FazScan is a Perl program to do some vulnerability scanning and pentesting. This program has 18 ultimate options. FazScan, Program for Vulnerability Scanning and Pentesting Options Available : 1. SQL Injection Pentester 2. Common SQLi Vulnerability Scanner 3. Advanced SQLi Vulnerability Scanner 4. Common Web Vulnerability Scanner 5. Automated CMS Detector 6. Web CMS WordPress Vulnerability Scanner 7. Web CMS Magento Vulnerability Scanner 8. Web CMS Joomla Vulnerability Scanner 9. Web CMS Lokomedia Vulnerability Scanner 10. Web CMS Drupal Vulnerability Scanner + Shell Uploader 11. Web Information Gathering Kit Update's New Feature [18 Options] 12. CloudFlare WAF Protection Bypasser Update's New Feature 13. Dork Scanner 14. Automated Open Port Scanner 15. Denial of Service Attack 16. Admin Page Detector (7475 Pages Will be Scanned) 17. About the Programmer 18. Exit the Program [HIDE][Hidden Content]]

Mirasat – Internet Provider and Satellite TV WordPress Theme created especially for Internet Service Provider, Satellite TV, Broadband, Online TV, Cable Television, IPTV, Telecom Company, Online Cinema. It can also be suitable for Voip, Mobile Operator, Internet and TV store, Digital TV, Online Movies,Cinema, Computer Networks and many others. . Mirasat includes all the necessary pages of the online store WooCommerce ready. So that you can sell Modems, WiFi routers, Cable, TV Shows, Digital Gadgets, Satellite Dish, Internet Provider Services and other. This theme contains everything you need: professional design homepages, amazing animations, creative headers, 20+ unique shortcodes, galleries, blogs, testimonials, products catalog, product page, about, shopping cart, order and other. Also the theme includes additional pages with different content elements such as typography, headers, icons, lists, tabs, sliders, 404 page, and many others. This theme is compatible with a bundle of premium plugin: WP Bakery Page Builder (Visual Composer). This Plugin is easy to use drag and drop page builder that will help you to create any layout you can imagine fast and easy. No coding skills required! And finally the theme translation ready and compatible with the WPML plugin. [Hidden Content] [HIDE][Hidden Content]]

OXOO TV v1.0.3 - Android TV, Android TV Box And Amazon Fire TV Support for OVOO and OXOO OXOO TV is an extention of OXOO & OVOO.You can you this script to make Android TV & Android TV Box Supupport.It’s build for make a best Smart TV Experience.Easily user can navigate movie,Serie and Live TV form All kind on Android OS Based Smart TV.To use this you must have to purchase OXOO or OVOO first. Demo: [Hidden Content] [HIDE][Hidden Content]]

Burp Bounty – Scan Check Builder This Burp Suite extension allows you, in a quick and simple way, to improve the active and passive burpsuite scanner by means of personalized rules through a very intuitive graphical interface. Through an advanced search of patterns and an improvement of the payload to send, we can create our own issue profiles both in the active scanner and in the passive. Examples of vulnerabilities that you can find So, the vulnerabilities identified, from which you can make personalized improvements are: Active Scan: XSS reflected and Stored SQL Injection error based Blind SQL injection Blind SQL injection time-based XXE Blind XXE SSRF CRLF Information disclosure Nginx off-by-slash vulnerability – From Orange Tsai Command injection Web cache poisoning Blind command injection Open Redirect Local File Inclusion Remote File Inclusion Path Traversal LDAP Injection XML Injection SSI Injection XPath Injection etc Passive Response Scan Security Headers Cookies attributes Endpoints extract Software versions Error strings In general any string or regular expression in the response. Passive Request Scan Interesting params and values In general any string or regular expression in the request. Changelog 3.3.0 20200607 Fixed bug with windows systems New look and feel A lot of code rewritten for further optimization [HIDE][Hidden Content]]

EvilOffice v1.0 - Inject Macro and DDE code into Excel and Word documents (reverse shell) Features: Inject malicious Macro on formats: docm, dotm, xlsm, xltm Inject malicious DDE code on formats: doc, docx, dot, xls, xlsx, xlt, xltx Python2/Python3 Compatible Tested: Win10 (MS Office 14.0) Requirements: Microsoft Office (Word/Excel) pywin32: python -m pip install -r requirements.txt Forwarding requirements: Ngrok Authtoken (for TCP Tunneling): Sign up at: [Hidden Content] Your authtoken is available on your dashboard: [Hidden Content] Install your auhtoken: ./ngrok authtoken <YOUR_AUTHTOKEN> [HIDE][Hidden Content]]

ChargePanda is a Laravel based PHP script that helps you to Sell Downloads, Sell Files and Sell Services on your own website. No matter, you are a graphics designer, web developer, business consultant, with its Custom Checkout Form builder help you to sell all kind of services and files. You can charge your customers for your services with PayPal and Stripe payment methods (more methods are coming soon). With ChargePanda you can also communicate with your customers by sending and receiving messages about the orders. Demo: [Hidden Content] [Hidden Content]

VFM is a simple and flexible plug-and-play file manager, easy to use and plenty of options. Send files to your customers, create new users with dedicated folders, or simply use it as your personal file cloud. Access from any device, manage users and general settings from an intuitive administration panel, customize it to your brand. Demo: [Hidden Content] [HIDE][Hidden Content]]

What is this ? Intensio-Obfsucator tool takes a python source code and transform it into an obfuscated python code Replace all names of variables/classes/functions/files-name to random strings with length defined then all chars to their hexadecimal value Delete all comments, all spaces lines Padding random snippets code/functions/classes with an always differents values CHANGELOG of Intensio-Obfuscator project 05-30-2020 [update] isse template file [update] documentation for code compatibility documentation [HIDE][Hidden Content]]

Linux Kodachi operating system is based on Debian 9.5 Xbuntu 18.04 LTS, that it will provide you with a secure, anti-forensic, an anonymous operating system considering all features that a person who is concerned about privacy would need to have in order to be secure. Kodachi is very easy to use all you have to do is boot it up on your PC via USB drive then you should have a fully running operating system with established VPN connection + Tor Connection established + DNScrypt service running. No setup or Linux knowledge is required from your side we do it all for you. The entire OS is functional from your temporary memory RAM so once you shut it down no trace is left behind all your activities are wiped out. Kodachi is a live operating system, that you can start on almost any computer from a DVD, USB stick, or SD card. It aims at preserving your privacy and anonymity and helps you to: Use the Internet anonymously. All connections to the Internet are forced to go through the VPN then Tor network with DNS encryption. Leave no trace on the computer you are using unless you ask it explicitly. Use state-of-the-art cryptographic and privacy tools to encrypt your files, emails and instant messaging. Kodachi is based on the solid Linux Debian with customized XFCE this makes Kodachi stable, secure, and unique. Changelog v7.1 + Kernel upgrade from 5.0.0-27 to 5.4.0-26 + Added FDN DNS + Added Next DNS + Added Cloudflare Family malware and adult content filtering + Added Neustar Family malware and adult content filtering + Added exfat file system support + Added Enigmail plugin for Thunderbird + Added Tilix + Added USBGuard + Added USBKill + Added proxychains + Concky improved new display items like Torrify ip/country and font size + Added MPV player + Added new options to Ip source control and sys logs scripts – Jaxx wallet remove – Exoduse wallet removed – Xelcore wallet removed – Bisq exchange removed – Tox chat removed – Ring chat removed – VLC removed – Full system update – Removed Tenta and Fourth estate DNS / slow and dead – Kodachi browser changes – DuckDuckGo plugin removed – Disable JavaScript removed – BP Privacy Block All Font and Glyph Detection replaced WITH trace – Canvas Defender replaced WITH trace – Canvas Blocker replaced WITH trace – AudioContext Fingerprint Defender replaced WITH trace – Adnauseam added – uBlock Origin replaced WITH Nano Adblocker – CSS Exfil Protection Added – HTTPZ Added – Privacy Badger and Privacy Possum removed – Added Buster – Discord link added – MYKI plugin added – anonymousspeech link added to mails – ctemplar.com link added to mails – restoreprivacy link added to privacy bucket – Added get.webgl.org to Security check to test WebGl – Added WebGL Fingerprint Defender plugin – Public IP Display replaced with My Public IP plugin – Kodachi settings json added to browser ! Fixed VPN <-> Torrify to VPN -> Torrify on screen score status ! Fixed i2p now is working ! Proton VPN moved to location 5 of VPN lists ! Fixed light browser spelling mistake ! Fixed Bisq wrong place on XFCE menu ! Fixed onion sites not working with Kodachi browser ! All scripts have been changed and improved to work with json ! All settings were moved to a single file json ! Casper,dkms and geoip were updated from latest Ubuntu release with kernal [HIDE][Hidden Content]]

DWARF Aka my wip gui for android reverse engineers and crackers. Built on top of pyqt5 (compatible with all os’s), Frida and some terrible code. Features Quick spawn, inject and sleep at application onCreate Hook natives, java and loading modules cycle before initializations Hooks conditions and js script logic Manipulate memory and arguments Memory and disasm view (Powered by capstone) Switch between hooks on different threads Inputs are evaluated. Frida js api and dwarf shortcuts are usable in almost any input field Variables creation Save and load back hooks and variables [HIDE][Hidden Content]]