Search the Community

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible. EyeWitness is designed to run on Kali Linux. It will auto-detect the file you give it with the -f flag as either being a text file with URLs on each new line, nmap xml output, or Nessus xml output. The -t (timeout) flag is completely optional, and lets you provide the max time to wait when trying to render and screenshot a web page. Changelog v20220307.1 b214b59 Merge branch ‘master’ of github.com:FortyNorthSecurity/EyeWitness 73bd6f3 added signatures FortyNorth Security has created a Windows client (thanks to the massive help of Matt Grandy (@Matt_Grandy_) with the stability fixes). All you need to do is build it locally (or check the releases), and then provide a path to a file containing the URLs you want to be scanned! EyeWitness will generate the report within your “AppData\Roaming” directory. The latest version of the C# EyeWitness supports parsing and taking screenshots of Internet Explorer and Chrome bookmarks without having to supply a list of URLs. This version is also small enough to be delivered through Cobalt Strike’s execute-assembly. [hide][Hidden Content]]

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible. EyeWitness is designed to run on Kali Linux. It will auto-detect the file you give it with the -f flag as either being a text file with URLs on each new line, nmap xml output, or Nessus xml output. The -t (timeout) flag is completely optional, and lets you provide the max time to wait when trying to render and screenshot a web page. Changelog v20211025.1 c7eca23 Updated setup to use newest geckodriver (v.0.30.0) FortyNorth Security has created a Windows client (thanks to the massive help of Matt Grandy (@Matt_Grandy_) with the stability fixes). All you need to do is build it locally (or check the releases), and then provide a path to a file containing the URLs you want to be scanned! EyeWitness will generate the report within your “AppData\Roaming” directory. The latest version of the C# EyeWitness supports parsing and taking screenshots of Internet Explorer and Chrome bookmarks without having to supply a list of URLs. This version is also small enough to be delivered through Cobalt Strike’s execute-assembly. [hide][Hidden Content]]

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible. EyeWitness is designed to run on Kali Linux. It will auto-detect the file you give it with the -f flag as either being a text file with URLs on each new line, nmap xml output, or Nessus xml output. The -t (timeout) flag is completely optional, and lets you provide the max time to wait when trying to render and screenshot a web page. Changelog v20210302.1 8f4c391 Updated signatures FortyNorth Security has created a Windows client (thanks to the massive help of Matt Grandy (@Matt_Grandy_) with the stability fixes). All you need to do is build it locally (or check the releases), and then provide a path to a file containing the URLs you want to be scanned! EyeWitness will generate the report within your “AppData\Roaming” directory. The latest version of the C# EyeWitness supports parsing and taking screenshots of Internet Explorer and Chrome bookmarks without having to supply a list of URLs. This version is also small enough to be delivered through Cobalt Strike’s execute-assembly. [hide][Hidden Content]]

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible. EyeWitness is designed to run on Kali Linux. It will auto-detect the file you give it with the -f flag as either being a text file with URLs on each new line, nmap xml output, or Nessus xml output. The -t (timeout) flag is completely optional, and lets you provide the max time to wait when trying to render and screenshot a web page. Changelog v20201002.2 0b999fd Merge pull request #507 from jps3/master ad6ee1d Update Dockerfile FROM line FortyNorth Security has created a Windows client (thanks to the massive help of Matt Grandy (@Matt_Grandy_) with the stability fixes). All you need to do is build it locally (or check the releases), and then provide a path to a file containing the URLs you want to be scanned! EyeWitness will generate the report within your “AppData\Roaming” directory. The latest version of the C# EyeWitness supports parsing and taking screenshots of Internet Explorer and Chrome bookmarks without having to supply a list of URLs. This version is also small enough to be delivered through Cobalt Strike’s execute-assembly. [hide][Hidden Content]]

Stealth Screenshot Saver + Uploader is a combination of windows utilities to create a malicious program without requiring any heavy coding. The executable file contain: file.bat - Batch file contains the screenshot batch line + ftp credentials main.exe - Execute the hidden file.bat README.txt - dummy file with credits svchost.exe - Command line utility to take screenshots How to use? Open file.bat with notepad and change line 2, 4, 5, 6. In line 2, change between loop and savescreenshot. The first value is by default 60 (60 screenshots before upload) Also in the same line by default is 10000 (Wait 10 seconds between screenshots) In line 4 is the ftp server (Default is ftp.uploaded.net) In line 5 is the ftp username In line 6 is the ftp password Why Uploaded.net Uploaded.net is a public free file hosting service with ftp enabled by default. The advantage of Uploaded.net is that you can share the username and password in plain text and if anyone grab it and try to access the files it won't be possible to modify or delete without confirming by email. Developed using the following Technologies WinRAR, Q Compiler, UPX, Simple Batch Example Download: [Hidden Content] Virustotal: [Hidden Content]