Category Archives: Open-Source

J2EEScan Burp Suite Plugin to Test J2EE Applications

J2EEScan is a plugin that you can add on Burp Suite security scanning tool. The goal of this plugin is to improve the test coverage during web application penetration tests on J2EE applications. The plugin is fully integrated into the

rop-tool – Tool to help you write binary exploits

rop-tool is a set of tools that you can use to search gadgets, Patch binaries , Print info about binary, Display heap structure and Disassemble the binary. the tool is open source and consists of a set of internal controls,

Zarp Network Attack tool

Corporate local area networks may have several vulnerabilities that allow attackers disrupt services or exploit the detected vulnerabilities. One of the tool that you can use to pentest local networks is Zarp Network Attack tool.  Zarp allows to perform network

PyPhisher – Python Tool for Phishing

phlishing

Tools for running a phishing campaign may exist in several format. phishing tests can be used during  a penetration testing or a security awareness program to provide users the type of attacks that hackers perform to compromise credentials. If you

CANard – Vehicle Hacking Platform

CAN car hacking

Hacking cars have been demonstrated several times this year. New technologies that were implemented served in improving Cars connectivity and usability, but on the other hand have opened some security gaps that car manufactures should fix. Today cars include CAN

RDPY- tool to perform MITM attack on RDP Sessions

Remote Desktop Protocol is used on almost any network, This allow user to manage windows servers remotely and to have server desktop full control. Some user feel more comfortable with it to schedule tasks or install applications. Others prefer to

YSO Mobile Security Framework- Mobile application pen-testing framework

YSO Mobile Security Framework is an intelligent, all-in-one open source mobile application (Android/iOS) automated pen-testing framework capable of performing static and dynamic analysis. YSO Mobile Security Framework can be used for effective and fast security analysis of Android APK/Android app