background preloader

Security

Facebook Twitter

Fbchecker - Facebook Mass Account Checker. Brute_Force - BruteForce Gmail, Hotmail, Twitter, Facebook & Netflix. Lynis 2.7.5 - Security Auditing Tool for Unix/Linux Systems. We are excited to announce this major release of auditing tool Lynis.

Lynis 2.7.5 - Security Auditing Tool for Unix/Linux Systems

Several big changes have been made to core functions of Lynis. These changes are the next of simplification improvements we made. There is a risk of breaking your existing configuration. Lynis is an open source security auditing tool. Used by system administrators, security professionals, and auditors, to evaluate the security defenses of their Linux and UNIX-based systems. Supported operating systems The tool has almost no dependencies, therefore it runs on almost all Unix-based systems and versions, including: AIXFreeBSDHP-UXLinuxMac OSNetBSDOpenBSDSolarisand others It even runs on systems like the Raspberry Pi and several storage devices! Installation optional Lynis is light-weight and easy to use. How it works Lynis performs hundreds of individual tests, to determine the security state of the system. Steps Besides the data displayed on the screen, all technical details about the scan are stored in a log file.

Use cases. HomeApp Centre. PhoneSploit v1.2 - Using Open Adb Ports We Can Exploit A Andriod Device. Using open Adb ports we can exploit an Andriod device. you can find open ports here To find out how to access a local device --> Recent News (New Update v.1.2) Port Forwarding NetStat Grab wpa_supplicant Turn WiFi On/Off Show Mac/Inet Remove Password Extract apk from app Use Keycode Get Battery Status Get Current Activity git clone extract adb.rar to the phonesploit directory cd PhoneSploit pip install colorama python2 main.py HOW TO INSTALL Linux git clone cd PhoneSploit pip install colorama python2 main_linux.py.

PhoneSploit v1.2 - Using Open Adb Ports We Can Exploit A Andriod Device

Google Stored Plaintext Passwords Since 2005. Google has admitted that some of its enterprise customers’ passwords have been erroneously stored in plaintext, in a security issue dating back 14 years.

Google Stored Plaintext Passwords Since 2005

The tech giant’s VP of engineering, Suzanne Frey, explained that the problem occurred when it introduced a new way for G Suite domain administrators to upload and manually set new passwords for their employees, to help with onboarding and account recovery. “We made an error when implementing this functionality back in 2005: The admin console stored a copy of the unhashed password. This practice did not live up to our standards,” she added. “To be clear, these passwords remained in our secure encrypted infrastructure. This issue has been fixed and we have seen no evidence of improper access to or misuse of the affected passwords.” Reposcanner - Python Script To Scan Git Repos For Interesting Strings. Reposcanner is a python script to search through the commit history of Git repositories looking for interesting strings such as API keys, inspires by truffleHog.

Reposcanner - Python Script To Scan Git Repos For Interesting Strings

Installation The python Git module is required (python-git on Debian). Usage . /reposcanner -r <repository> Options: optional arguments: -h, --help show this help message and exit -r REPO, --repo REPO Repo to scan -c COUNT, --count COUNT Number of commits to scan (default 500) -e ENTROPY, --entropy ENTROPY Minimum entropy to report (default 4.3) -l LENGTH, --length LENGTH Maxmimum line length (default 500) -a, --all-branches Scan all branches -b BRANCH, --branch BRANCH Scan a specific branch -v, --verbose Verbose output Example:

Crips - IP Tools To quickly get information about IP Address's, Web Pages and DNS records. This Tools is a collection of online IP Tools that can be used to quickly get information about IP Address's, Web Pages and DNS records.

Crips - IP Tools To quickly get information about IP Address's, Web Pages and DNS records

Menu Whois lookupTracerouteDNS LookupReverse DNS LookupGeoIP LookupPort ScanReverse IP LookupINSTALL & UPDATEExit Whois lookup Determine the registered owner of a domain or IP address block with the whois tool. Traceroute Using mtr an advanced traceroute tool trace the path of an Internet connection. DNS Lookup Find DNS records for a domain, results are determined using the dig DNS tool Reverse DNS Lookup Find Reverse DNS records for an IP address or a range of IP addresses. GeoIP Lookup Find the location of an IP address using the GeoIP lookup location tool. Port Scan A simple TCP Port Scan to quickly determine the status of an Internet facing service or firewall. Reverse IP Lookup Discover web hosts sharing an IP address with a reverse IP lookup. INSTALL & UPDATE To install the tools directly in the system and get new update directly using terminal.

Archery - Open Source Vulnerability Assessment And Management Helps Developers And Pentesters To Perform Scans And Manage Vulnerabilities. Archery is an opensource vulnerability assessment and management tool which helps developers and pentesters to perform scans and manage vulnerabilities.

Archery - Open Source Vulnerability Assessment And Management Helps Developers And Pentesters To Perform Scans And Manage Vulnerabilities

Archery uses popular opensource tools to perform comprehensive scaning for web application and network. It also performs web application dynamic authenticated scanning and covers the whole applications by using selenium. The developers can also utilize the tool for implementation of their DevOps CI/CD environment. Demo Overview of the tool:Perform Web and Network vulnerability Scanning using opensource tools.Correlates and Collaborate all raw scans data, show them in a consolidated manner.Perform authenticated web scanning.Perform web application scanning using selenium.Vulnerability Managment.Enable REST API's for developers to perform scaning and Vulnerability Managment.Useful for DevOps teams for Vulnerability Managment.Note Currently project is in developement phase and still lot of work going on.