Regular Hacking tools and scripts share

1 JULY 2023

HyperDeceit: https://github.com/Xyrem/HyperDeceit Vm Clarity: VMClarity is an open-source tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and security threats such as vulnerabilities, exploits, malware, rootkits, misconfigurations, and leaked secrets https://github.com/openclarity/vmclarity ModuleShifting: Module Shifting is a stealthier variation of Module Stomping and Module overloading injection techniques. It is actually implemented in Python types so that it can be executed fully in memory via a Python interpreter and Pyramid, thus avoiding the usage of compiled loaders. https://github.com/naksyn/ModuleShifting Review Analyzer:

A Chrome Extension for #extracting valuable insights from reviews, generating concise summaries, sentiment analysis, and keyword extraction. https://github.com/serpapi/review-analyzer Malwoverview:

A first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT. https://github.com/alexandreborges/malwoverview VMwareCloak

A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analysis. https://github.com/d4rksystem/VMwareCloak js-x-ray

JavaScript & Node.js open-source SAST scanner. A static analyzer for detecting the most common malicious patterns. https://github.com/NodeSecure/js-x-ray Meta BugBounty

Collection of Facebook Bug Bounty Writeups. https://github.com/jaiswalakshansh/Facebook-BugBounty-Writeups

CryptoTester A utility for playing with cryptography, geared towards ransomware analysis. https://github.com/Demonslay335/CryptoTester Google Searcher A custom Google search (to bypass some limitations on Google and VPNs) https://github.com/AssassinUKG/googleSearcher Rusty-Radamsa Rusty Radamsa is a general-purpose fuzzer. It modifies given sample data in ways, which might expose errors in programs intended to process the data https://github.com/microsoft/rusty-radamsa Pyrrha Pyrrha is a filesystem cartography and correlation software focusing on visualization. It currently focuses on relationship between executable files, but aims at enabling anyone mapping and visualizing any kind of relationships. It uses the open-source code source explorer Sourcetrail to provide user a easy way to navigate through and search for path to function. https://github.com/quarkslab/pyrrha Apk sh apk.sh is a Bash script that makes reverse engineering Android apps easier, automating some repetitive tasks like pulling, decoding, rebuilding and patching an APK. https://github.com/ax/apk.sh SR-IOV Network Metrics Exporter An exporter that reads metrics for SR-IOV Virtual Functions and exposes them in the Prometheus format. https://github.com/k8snetworkplumbingwg/sriov-network-metrics-exporter Java-gate The Java-gate project allows for the implementation of various techniques related to "Hell's Gate" using simple Java code, which involves direct system calls. https://github.com/4ra1n/java-gate RedCloud OS A Cloud Adversary Simulation Operating System for Red Teams to Assess the Cloud Security of Leading Cloud Service Providers (CSPs) https://github.com/RedTeamOperations/RedCloud-OS Superman Kill the Protected Process https://github.com/b1-team/superman