Facebook CTF is Now Open Source!
The Facebook CTF is a platform to host Jeopardy and “King of the Hill” style Capture the Flag competitions. How…
Web Application
Web Application
Weeman v1.7 – HTTP Server for Phishing
HTTP server for phishing in python. (and framework) Usually you will want to run Weeman with DNS spoof attack. (see…
SQLMap – Automatic SQL Injection And Database Takeover Tool
sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and…
VBScan – a Black Box vBulletin Vulnerability Scanner
VBScan is an opensource project in perl programming language to detect VBulletin CMS vulnerabilities and analyses them Why VBScan ?…
Bluto – DNS Recon, DNS Zone Transfer, and Email Enumeration
BLUTO DNS recon | Brute forcer | DNS Zone Transfer | Email Enumeration The target domain is queried for MX…
WordPress XML RPC Brute Force Exploit by 1N3
WordPress XML-RPC Brute Force Amplification PoC by 1N3, this is a small PoC exploit to launch a brute force amplification…
B374K – PHP Webshell with handy features
This PHP Shell is a useful tool for system or web administrator to do remote management without using cpanel, connecting…
Weeman – HTTP Server for Phishing
Weeman – HTTP server for phishing in python. Weeman has support for most of the (bigest) websites. Usually you will…
WPHardening – Fortify the security of any WordPress Installation
Installation: Installing WPHardening requires you to execute one console command: $ pip install -r requirements.txt Usage: $ python wphardening.py -h…
Weevely3 – Weaponized PHP Web Shell
Weevely is a command line web shell dynamically extended over the network at runtime designed for remote administration and pen…