Monthly Archives: October 2018

WiFi-Pumpkin – Framework for Rogue Wi-Fi Access Point Attack

WiFi-Pumpkin is a rogue AP framework to easily create these fake networks, all while forwarding legitimate traffic to and from the unsuspecting target.

Kube-hunter – Hunt for security weaknesses in Kubernetes clusters

Kube-hunter is a tool that you can use to scan and secure your Kubernetes clusters

pwnedOrNot – Find Compromised Email Passwords

pwnedOrNot is a tool that you can use to verify if your email address have been breached in the past. This will be important to test the account information and credentials and see if they were posted online.

Gokey – simple vaultless password manager in Go

gokey is a password manager, which does not require a password vault. Instead of storing your passwords in a vault it derives your password on the fly from your master password and supplied realm string (for example, resource URL)

Endgame Red Team Automation (RTA) Framework

Red Team Automation (RTA) provides a framework of scripts designed to allow blue teams to test their detection capabilities against malicious tradecraft, modeled after MITRE ATT&CK.

LORG – Apache Logfile Security Analyzer

LORG (Logfile Outlier Recognition and Gathering) is a tool aimed at security professionals and administrators to simplify the job of finding the 'needle in a haystack' (aka vulnerable web application) in the scenario of post-attack forensics.

SimplyEmail – Email Recon Tool

SimplyEmail is a tool that will allow user to collect email addresses from online services. The tool include 28 modules that will search different online resource such as AskSearch, GitHub, Google, YahooSearch and more.