Category Archives: Pentesting

Subdomain3 – Tool for Discovering Subdomains

Subdomain3 is a new generation of tool , It helps penetration testers to discover more information in a shorter time than other tools

FireProx – AWS API Gateway Tool to Rotate Source IP

FireProx leverages the AWS API Gateway to create pass-through proxies that rotate the source IP address with every request.

Htcap -Web Application Scanner

htcap is a web application scanner able to crawl single page application (SPA) recursively. Htcap is vulnerability scanner since it's focused on crawling

SharpShooter – Payload Generation Framework

SharpShooter is a payload creation framework for the retrieval and execution of arbitrary CSharp source code. SharpShooter is capable of creating payloads.

XSpear – Powerfull XSS Scanning and Parameter Analysis Tool

XSpear is XSS Scanner on ruby gems. Cross site scripting vulnerabilities are common on web application and they are exploited by attacker to execute

Flashlight – Automated Information Gathering Tool

Flashlight (Fener) provides services to scan network/ports and gather information rapidly on target networks.This should be the choice to automate discovery

Airgeddon – Multi-use Bash Script to Audit Wireless Network

Airgeddon is a multi-use bash script for Linux systems to audit wireless networks. This will allow security tester to test DoS over wireless networks using different methods (mdk3, mdk4, aireplay-ng).