The Documentary Zero days – Security leaks for sale

VPRO International created a interesting documentary on Zero Day exploits. There is a lot of Blackhat / Defcon footage for those waiting for this years conference T minus two weeks from now. The video can be found below. It is work the watch. Enjoy

By Offensive Sec

Read More

Cyber Attack Management Tool - Armitage

Armitage is a graphical cyber attack management tool for Metasploit that visualizes your targets, recommends exploits, and exposes the advanced capabilities of the framework. Armitage aims to make Metasploit usable for security practitioners who understand hacking but don’t use Metasploit every day. If you want to learn Metasploit and grow into the advanced features, Armitage can help you.

Cyber Attack Management Tool

Features

Armitage is a scriptable red team collaboration tool built on top of the Metasploit Framework. Through Armitage, you may launch scans and exploits, get exploit recommendations, and use the advanced features of the Metasploit Framework’s meterpreter. Armitage was originally made for Cyber Defense Exercises, but a lot of penetration testers use Armitage for its collaboration capabilities and its time-saving GUI.

ºCortana Scripting.
ºDynamic Workspaces.
ºGraphical User Interface.
º“Hail Mary” Attack.
ºRed Team Collaboration.


At first glance, it may seem that Armitage is just a pretty front-end on top of Metasploit. That’s not quite true. Armitage is a scriptable red team collaboration tool. It has a server component to allow a team of hackers to share their accesses to compromised hosts.

It’s also possible to write bots that connect to this team server and extend Armitage with scripts written in a language called Cortana. This Cortana piece was funded by DARPA’s Cyber Fast Track program. There’s a lot here.

Installing

Your version of Kali Linux may not include Armitage. To install it, type:

apt-get install armitage

Next, you need to start the Metasploit service. Armitage does not use the Metasploit service, but starting it once will setup a database.yml file for your system. This is a necessary step. You only need to do this once:

service metasploit start
service metasploit stop

Starting

Before you can use Armitage, you must start the postgresql database. This does not happen on boot, so you must run this command each time you restart Kali:

service postgresql start

To start Armitage in Kali Linux, open a terminal and type:

armitage

Armitage will immediately pop up a dialog and ask where you would like to connect to. These parameters only matter if you want to connect to an Armitage team server. Since we’re getting started, we don’t care.  Just press Connect.

Next, Armitage will try to connect to the Metasploit Framework. Big surprise, the Metasploit Framework is not running. Armitage will realize this and it will ask you if you would like it to start Metasploit for you. The correct answer is Yes. Press this button and wait.

You will see connection refused messages for up to a few minutes. If this is your first time starting the Metasploit Framework, this may take literally a few minutes. The Metasploit Framework is the largest Ruby codebase out there and it takes time to load all of its modules for the first time. Be patient.

If all went well, you will see a GUI that looks like this:

You’re now ready to use Armitage.

MANUEL

Download Armitage

Read More

Multithreaded Admin Panel Finder - Adminator

Adminator is the fastest multithreaded Admin panel finder tool. it has many other features : whois , portscanner , intelligence gatherer , HTTP fuzzer.

Multithreaded Admin Panel Finder

ºwhoisip => Finding Whois information about the IP hosting the website
ºwhoisdomain => Fetching Domain Whois information
ºportscanner => Finding Important open ports
ºintelligence => Getting Intelligence data from a website(HTTP server,Software,Last update)
ºsubdomain => Multithreaded Subdomain Finder using a wordlist
ºadmin => Multithreaded Admin Finder using a wordlist
ºfuzzer => HTTP Fuzzer to Fuzz HTTP servers
ºusage => prints this help section

Download  Adminator

Read More

Anonymous Twitter - AnonTwi

AnonTwi is a free software python client designed to navigate anonymously on social networks. It supports Identi.ca and Twitter.com. It can leverages proxying, randomization of header values, send fake geolocation data, and more.





Anonymous Twitter

AnonTwi supports:

ºAES + HMAC-SHA1 encryption on Tweets and Direct Messages –> [More Info]
ºSecure Sockets Layer (SSL) to interact with API Anonymous Twitter: AnonTwi
ºProxy Socks (for example, to connect to the TOR network)
ºRandom HTTP header values
ºSend long messages splitted automatically
ºAutomatic decryption of tweet’s urls or raw inputs
ºBackup messages to your disk (max: 3200)
ºSend fake geolocation places
ºRemove data and close account (suicide)
ºView global Trending Topics
ºUTF-8 + Unicode support (chinese, arabic, symbols, etc)
ºMultiplatform: GNU/Linux, MacOS, Win32
ºDetailed colourful output results
ºGenerate tools and modules
ºGTK + WebGUI interfaces
ºAn IRC bot slave

Download AnonTwi

Read More

Audit SIP Based VoIP Systems - SIPVicious

SIPVicious suite is a set of tools that can be used to audit SIP based VoIP systems.

Audit SIP Based VoIP Systems

ºsvmap – this is a sip scanner. Lists SIP devices found on an IP range
ºsvwar – identifies active extensions on a PBX
ºsvcrack – an online password cracker for SIP PBX
ºsvreport – manages sessions and exports reports to various formats
ºsvcrash – attempts to stop unauthorized svwar and svcrack scans

The idea behind the tools is to aid administrators and security folks make informed decisions when evaluating the security of their SIP-based servers and devices. The tools are intended to be used for educational and demonstrational purposes. We advise people to request permission before making use of the tool suite against any network. Just like a knife, it can be used for good and bad. We hope that SIPVicious tool suite proves to be a very sharp one.

Download SIPVicious

Read More

Pen Test Drop Box Distro - PwnPI

Pen Test Drop Box Distro

PwnPi is a Linux-based penetration testing dropbox distribution for the Raspberry Pi. It currently has 200+ network security tools pre-installed to aid the penetration tester. It is built a stripped down version of the Debian Wheezy image from the Raspberry Pi foundation’s website and uses Openbox as the window manager. PwnPi can be easily setup to send reverse connections from inside a target network by editing a simple configuration file.

Download  PwnPI

Read More

Android Application Analysis - Androguard

Androguard is mainly a tool written in python to play with :

ºDex/Odex (Dalvik virtual machine) (.dex) (disassemble, decompilation),
ºAPK (Android application) (.apk),
ºAndroid’s binary xml (.xml),
ºAndroid Resources (.arsc).

Android Application Analysis

Features:

ºMap and manipulate DEX/ODEX/APK/AXML/ARSC format into full Python objects,
ºDiassemble/Decompilation/Modification of DEX/ODEX/APK format,
ºDecompilation with the first native (directly from dalvik bytecodes to java source codes) dalvik decompiler (DAD),
ºAccess to the static analysis of the code (basic blocks, instructions, permissions (with database from http://www.android-permissions.org/) …) and create your own static analysis tool,
ºAnalysis a bunch of android apps,
ºAnalysis with ipython/Sublime Text Editor,
ºDiffing of android applications,
ºMeasure the efficiency of obfuscators (proguard, …),
ºDetermine if your application has been pirated (plagiarism/similarities/rip-off indicator),
ºCheck if an android application is present in a database (malwares, goodwares ?),
ºOpen source database of android malware (this opensource database is done on my free time, of course my free time is limited, so if you want to help, you are welcome !),
ºDetection of ad/open source librairies (WIP),
ºRisk indicator of malicious application,
ºReverse engineering of applications (goodwares, malwares),
ºTransform Android’s binary xml (like AndroidManifest.xml) into classic xml,
ºVisualize your application with gephi (gexf format), or with cytoscape (xgmml format), or ºPNG/DOT output,
ºIntegration with external decompilers (JAD+dex2jar/DED/…)

Download Androguard

Read More

The System

Somos vítimas de um roubo gigantesco A grandiosa mentira que oprime toda a humanidade!.

By Offensive Sec

Read More

Extreme Security Scanning - ESSPEE

ESSPEE is a derivetive of Back | Track 5, based on Ubuntu 12.04. Designed for users who wish to use only free software. It is packed with featured security tools with stable configurations. This version consolidates the Unity desktop interface; a brand new way to find and manage your applications.

Features

ºA Perfect Forensics Mode – Read-Only Mount
ºA Perfect Stealth Mode – Networking Disabled
ºLatest kernel with aufs support (Kernel 3.7.4)
ºMetasploit Framework v4.6.0-dev [core:4.6 api:1.0]
ºOSSEC – Open Source Host-based Intrusion Detection System
ºGnome-fallback Desktop Environment.
ºGnome-Pie – All your favourite applications at single click
ºSuricata – Open Source Next Generation IDS/ IPS.
ºSnorby – Suricata IDS/IPS Monitoring Web Interface.
ºMeld – A visual diff and merge tool for compare files and directories.
ºMySQL Workbench – A visual MySQL database designing tool.
ºESSPEE Personal Firewall – Realtime Pop-up Notification. (Thanks to Leopard Flower)
ºNet Activity Viewer – A graphical network connections viewer.
ºLOIQ – Open source network stress testing application.
ºGuymager – Forensics imaging tool (GUI)
ºOstinato – Open-source network packet crafter/traffic generator.
ºFSlint – Find and clean various unwanted extraneous files.
ºRuby 1.9.3p327 (2012-11-10 revision 37606)
ºFern Wi-Fi Cracker
ºVirtualbox – Create your own virtual lab
ºNemiver – A standalone graphical C and C++ debugger
ºOpen Audit – Network inventory, audit and management tool
ºMobile Phone Forensics tools

ºAnonymity – Tor network and many more...

Download  ESSPEE

Read More