Search the Community

vCity is an online browser game platform that is developed with the latest web technologies. vCity is multifunctional game script that will help you to create your own online browser game to your liking, because it has many options and settings by which to modify and create your desired browser game. [Hidden Content] [hide][Hidden Content]]

The all-in-one Red Team browser extension for Web Pentesters HackTools is a web extension facilitating your web application penetration tests, it includes cheat sheets as well as all the tools used during a test such as XSS payloads, Reverses shells, and much more. Current functions: Dynamic Reverse Shell generator (PHP, Bash, Ruby, Python, Perl, Netcat) Shell Spawning (TTY Shell Spawning) XSS Payloads Basic SQLi payloads Local file inclusion payloads (LFI) Base64 Encoder / Decoder Hash Generator (MD5, SHA1, SHA256, SHA512) Useful Linux commands (Port Forwarding, SUID) Changelog v0.5 Completely redesign the revershell component New transfert methods component Fix the MSF Builder component [hide][Hidden Content]]

Decrypt passwords/cookies/history/bookmarks from the browser. HackBrowserData is an open-source tool that could help you decrypt data ( password|bookmark|cookie|history|credit card|download|localStorage|extension ) from the browser. It supports the most popular browsers on the market and runs on Windows, macOS and Linux. Disclaimer: This tool is limited to security research only, and the user assumes all legal and related responsibilities arising from its use! The author assumes no legal responsibility! hack-browser-data-v0.4.2 Latest Changes feat: support export extension @moonD4rk (#129) feat: enhance cmd color log output @moonD4rk (#129) docs: add logo for HackBrowserData @moonD4rk (#128) Supported Browser Windows Browser Password Cookie Bookmark History Google Chrome ✅ ✅ ✅ ✅ Google Chrome Beta ✅ ✅ ✅ ✅ Chromium ✅ ✅ ✅ ✅ Microsoft Edge ✅ ✅ ✅ ✅ 360 Speed ✅ ✅ ✅ ✅ QQ ✅ ✅ ✅ ✅ Brave ✅ ✅ ✅ ✅ Opera ✅ ✅ ✅ ✅ OperaGX ✅ ✅ ✅ ✅ Vivaldi ✅ ✅ ✅ ✅ Yandex ✅ ✅ ✅ ✅ CocCoc ✅ ✅ ✅ ✅ Firefox ✅ ✅ ✅ ✅ Firefox Beta ✅ ✅ ✅ ✅ Firefox Dev ✅ ✅ ✅ ✅ Firefox ESR ✅ ✅ ✅ ✅ Firefox Nightly ✅ ✅ ✅ ✅ Internet Explorer ❌ ❌ ❌ ❌ [hide][Hidden Content]]

This article explores a phishing technique that simulates a browser window within the browser to spoof a legitimate domain. Introduction For security professionals, the URL is usually the most trusted aspect of a domain. Yes there’s attacks like IDN Homograph and DNS Hijacking that may degrade the reliability of URLs but not to an extent that makes URLs unreliable. All of this eventually lead me to think, is it possible to make the “Check the URL” advice less reliable? After a week of brainstorming I decided that the answer is yes. Disclaimer Usage of these templates for attacking targets without prior consent is illegal. It's the end user's responsibility to obey all applicable laws. The developer is not responsible for any misuse of these templates. [hide][Hidden Content]]

hack-browser-data is an open-source tool that could help you decrypt data[passwords|bookmarks|cookies|history] from the browser. It supports the most popular browsers on the market and runs on Windows, macOS, and Linux. Changelog v0.4 feat: support Go 1.18 generics, refactor project layout feat: add support for all published firefox feat: add color output for command line logs feat: add support chromium when some Linux distributions does not use D-Bus to get master key fix: getting wrong Chromium cookie file path error fix: check AES block size when decrypting Chromium password under Windows fix: export credit card failed for windows [hide][Hidden Content]]

Download: [Hidden Content] Guide:

Pentesters HackTools is a web extension facilitating your web application penetration tests, it includes cheat sheets as well as all the tools used during a test such as XSS payloads, Reverses shells, and much more. Current functions: Dynamic Reverse Shell generator (PHP, Bash, Ruby, Python, Perl, Netcat) Shell Spawning (TTY Shell Spawning) XSS Payloads Basic SQLi payloads Local file inclusion payloads (LFI) Base64 Encoder / Decoder Hash Generator (MD5, SHA1, SHA256, SHA512) Useful Linux commands (Port Forwarding, SUID) Changelog v0.4 The new update is out! 🥳 Theme switcher, you can now switch between dark and white theme Powershell scripts has been added Obfuscated Files or Information is now available New SQLi payloads [hide][Hidden Content]]

HackBrowserData hack-browser-data is an open-source tool that could help you decrypt data[passwords|bookmarks|cookies|history] from the browser. It supports the most popular browsers on the market and runs on Windows, macOS, and Linux. Changelog v0.3.7 Feature feat: add Yandex browser for macOS and Windows by @moonD4rk 0f2a541 feat: add CocCoc browser for macOS and Windows by @moonD4rk a9f36d6 Fix bugs Optimize the Chinese version of README by @lc6464 in #88 Add ciphertext length check in AES decryption by @SignorMercurio in #92 chore(deps): bump github.com/tidwall/gjson from 1.6.0 to 1.9.3 by @dependabot in #101 [hide][Hidden Content]]

crawlergo is a browser crawler that uses chrome headless mode for URL collection. It hooks key positions of the whole web page with DOM rendering stage, automatically fills and submits forms, with intelligent JS event triggering, and collects as many entries exposed by the website as possible. The built-in URL de-duplication module filters out a large number of pseudo-static URLs, still maintains a fast parsing and crawling speed for large websites, and finally gets a high-quality collection of request results. crawlergo currently supports the following features: chrome browser environment rendering Intelligent form filling, automated submission Full DOM event collection with automated triggering Smart URL de-duplication to remove most duplicate requests Intelligent analysis of web pages and collection of URLs, including javascript file content, page comments, robots.txt files and automatic Fuzz of common paths Support Host binding, automatically fix and add Referer Support browser request proxy Support pushing the results to passive web vulnerability scanners [hide][Hidden Content]]

RS Browser Forensics es una herramienta muy interesante que ofrecerá a sus usuarios la posibilidad de recuperar los datos de navegación de cualquier explorador, incluso de aquellos que hayan quedado registrados durante las sesiones en modo incógnito o hayan intentado ser eliminados. Perfecto para aquellos que quieran llevar un seguimiento preciso de la actividad que se lleva a cabo en su ordenador, RS Browser Forensics se presenta como la herramienta definitiva con la que complementar a otros limitadores de uso. Utilizar RS Browser Forensics es realmente sencillo: una vez hayamos ejecutado el programa este se encargará de analizar, de forma completamente automática, el explorador que hayamos seleccionado. En cuestión de segundos tendremos acceso al historial de navegación, contraseñas guardadas, sesiones almacenadas, marcadores, archivos almacenados en la memoria caché y otros datos de interés. Si lo deseamos, podremos configurar un sistema de recuperación más profundo que se encargará de acceder a datos que hayan intentado ser borrados y reconstruir cualquier registro de información que haya podido realizarse durante una sesión de exploración en modo incógnito. RS Browser Forensics es fácil, eficaz y cuenta con una serie de funciones únicas que conseguirán resaltarla muy por encima de otras herramientas similares. [Hidden Content] [hide][Hidden Content]]

HackTools is a web extension facilitating your web application penetration tests, it includes cheat sheets as well as all the tools used during a test such as XSS payloads, Reverses shells, and much more. Current functions: Dynamic Reverse Shell generator (PHP, Bash, Ruby, Python, Perl, Netcat) Shell Spawning (TTY Shell Spawning) XSS Payloads Basic SQLi payloads Local file inclusion payloads (LFI) Base64 Encoder / Decoder Hash Generator (MD5, SHA1, SHA256, SHA512) Useful Linux commands (Port Forwarding, SUID) Changelog v0.3.8 The new update is out! New RFI Payload #102 New ZSH reverse shell #101 [hide][Hidden Content]]

The all-in-one Red Team browser extension for Web Pentesters HackTools, is a web extension facilitating your web application penetration tests, it includes cheat sheets as well as all the tools used during a test such as XSS payloads, Reverse shells and much more. With the extension you no longer need to search for payloads in different websites or in your local storage space, most of the tools are accessible in one click. HackTools is accessible either in pop up mode or in a whole tab in the Devtools part of the browser with F12. Current functions: Dynamic Reverse Shell generator (PHP, Bash, Ruby, Python, Perl, Netcat) Shell Spawning (TTY Shell Spawning) XSS Payloads Basic SQLi payloads Local file inclusion payloads (LFI) Base64 Encoder / Decoder Hash Generator (MD5, SHA1, SHA256, SHA512) Useful Linux commands (Port Forwarding, SUID) Changelog v0.3.3 Adding persistence on the app (When you close the app it will now open at the same place) URL Decoder [hide][Hidden Content]]

Pentesters HackTools is a web extension facilitating your web application penetration tests, it includes cheat sheets as well as all the tools used during a test such as XSS payloads, Reverses shells, and much more. Current functions: Dynamic Reverse Shell generator (PHP, Bash, Ruby, Python, Perl, Netcat) Shell Spawning (TTY Shell Spawning) XSS Payloads Basic SQLi payloads Local file inclusion payloads (LFI) Base64 Encoder / Decoder Hash Generator (MD5, SHA1, SHA256, SHA512) Useful Linux commands (Port Forwarding, SUID) Changelog v0.3 Adding SM3 hash support! 👍 Adding new RSS Feeds from CXSECURITY ✅ New button for the fullscreen mode 👀 [hide][Hidden Content]]

The all-in-one Red Team browser extension for Web Pentesters HackTools is a web extension facilitating your web application penetration tests, it includes cheat sheets as well as all the tools used during a test such as XSS payloads, Reverses shells, and much more. Current functions: Dynamic Reverse Shell generator (PHP, Bash, Ruby, Python, Perl, Netcat) Shell Spawning (TTY Shell Spawning) XSS Payloads Basic SQLi payloads Local file inclusion payloads (LFI) Base64 Encoder / Decoder Hash Generator (MD5, SHA1, SHA256, SHA512) Useful Linux commands (Port Forwarding, SUID) Changelog v0.2.1 Adding SM3 hash support! 👍 Adding new RSS Feeds from CXSECURITY ✅ New button for the fullscreen mode 👀 [hide][Hidden Content]]

HackBrowserData hack-browser-data is an open-source tool that could help you decrypt data[passwords|bookmarks|cookies|history] from the browser. It supports the most popular browsers on the market and runs on Windows, macOS, and Linux. Supported Browser Windows Browser Password Cookie Bookmark History Google Chrome (Full Version) ✅ ✅ ✅ ✅ Firefox ✅ ✅ ✅ ✅ Microsoft Edge ✅ ✅ ✅ ✅ 360 Speed Browser ✅ ✅ ✅ ✅ QQ Browser ✅ ✅ ✅ ✅ Internet Explorer ❌ ❌ ❌ ❌ [hide][Hidden Content]]

The all-in-one Red Team browser extension for Web Pentesters HackTools is a web extension facilitating your web application penetration tests, it includes cheat sheets as well as all the tools used during a test such as XSS payloads, Reverses shells, and much more. Current functions: Dynamic Reverse Shell generator (PHP, Bash, Ruby, Python, Perl, Netcat) Shell Spawning (TTY Shell Spawning) XSS Payloads Basic SQLi payloads Local file inclusion payloads (LFI) Base64 Encoder / Decoder Hash Generator (MD5, SHA1, SHA256, SHA512) Useful Linux commands (Port Forwarding, SUID) Changelog v0.2 Handling CVE Search Exception ( AJAX error ) that cause extension crash Adding File Transfers snippets ( Exfiltration over BASH with TCP and HTTP / Python 2 / 3 http server +WGET and SCP ). [hide][Hidden Content]]

How to always open Chrome browser in safe and anonymous mode? ✓Normally, all your web browsing information is saved, including cookies, passwords, and even the URL of the site you visited. * If you don't want this to happen and always browse the web anonymously and this information is not saved + Do the following steps * ShortCut from the Chrome browser on your desktop * Right-click on Chrome shortcuts and tap Properties * Come on the Shortcut tab * Find the target path Go to the end and close a space (Space) and write this phrase incognito- * In this case, every time you open the browser, it is in safe mode.

HackTools is a web extension facilitating your web application penetration tests, it includes cheat sheets as well as all the tools used during a test such as XSS payloads, Reverses shells, and much more. Current functions: Dynamic Reverse Shell generator (PHP, Bash, Ruby, Python, Perl, Netcat) Shell Spawning (TTY Shell Spawning) XSS Payloads Basic SQLi payloads Local file inclusion payloads (LFI) Base64 Encoder / Decoder Hash Generator (MD5, SHA1, SHA256, SHA512) Useful Linux commands (Port Forwarding, SUID) HackTools 0.1.2 for Chromium New features : Obfuscated PHP webshell payloads UI Menu is set to icon similar to the firefox version Installation Steps : Extract hacktools_build_chromium.zip (you will obtain a folder named 'dist') In your chromium based web-browser upload the folder as an unpacked Extension. Enjoy ! [hide][Hidden Content]]

BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser. Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context. Video: [HIDE] Download: [HIDE][Hidden Content]]

TOR for Browser v3.1.6 is a tool to surf the internet completly anonymous by using 2 incapsulations. How to use: 1) Select a number from Circuit 1 2) Select a number from Circuit 2 3) Select Access type 4) Type the site to visit 5) Hit Go! There is in each Circuit 20 proxy servers. This proxy servers must be combined using Circuit 1 and Circuit 2. Using this will increase the anonymity of the connection. Also there is two options in Access: Restricted - Blocks Cookies, JavaScript and Objects Unrestricted - Allow Cookies, JavaScript and Objects Download: [HIDE][Hidden Content]] Password: level23hacktools.com

Firefox Extension of HackBar without license A HackBar for new firefox (Firefox Quantum). This addon is written in webextension and alternatives to the XUL version of original Hackbar. How to use Press F12 to open hackbar Feature Load, split, execute url from address bar. Custom/add referrer url, User Agent, cookie. Tools: md5, sha1, sha256, rot13 encryption, url, base64 encoding, beautifier json data, sql, xss features. Shortcut Ctrl + Enter to execute FOREVER FREE Download && Code Source [Hidden Content]

[Hidden Content]

[Hidden Content]

Xiaomi Mi Browser version 10.5.6-g and Mint Browser version 1.5.3 suffer from a URL spoofing vulnerability. View the full article

[Hidden Content]