Tools

Open-source security tools and utilities developed to assist with penetration testing, vulnerability research, and security assessments.

InterceptReady

Tool

An automated toolkit for configuring Android emulators with Frida and Burp Suite for mobile security testing. It handles the installation of Frida, configuration of Burp Suite certificates, and setting up proxy settings for a fully-functional mobile testing environment.

Features:

  • Frida integration for Android emulators
  • Automatic Burp Suite CA certificate installation
  • System-wide proxy configuration
  • Enhanced SSL pinning bypass script
  • Multiple emulator support
GitHubDownload

AspXVenom

Tool

Automates the process of generating encoded shellcode and embedding it into ASPX webshells, providing a smooth workflow for penetration testers during security assessments. The tool is specifically designed for testing ASPX-enabled web servers and .NET environments.

Features:

  • Generates encoded shellcode for ASPX webshells
  • Streamlines testing of .NET environments
  • Simplified workflow for penetration testers
  • Designed for ASPX-enabled web servers
GitHubDownload

MacroPhantom

Tool

MacroPhantom automates the process of generating XOR+Caesar encrypted shellcode and embedding it into VBA macros for Microsoft Office documents. The tool streamlines the workflow for security professionals during penetration tests and security assessments, particularly for phishing simulations.

Features:

  • Generates XOR+Caesar encrypted shellcode
  • Creates VBA macros for Microsoft Office documents
  • Designed for phishing simulations
  • Streamlines workflow for penetration testers
GitHubDownload

GoPhish Deploy

Tool

Python script to automate the deployment and configuration of the GoPhish phishing framework. The script installs all necessary dependencies, configures SSL certificates, and sets up the environment for a production-ready deployment.

Features:

  • Automated dependency installation
  • SSL certificate configuration
  • Production-ready environment setup
  • Security hardening
  • Easy deployment process
GitHubDownload

AutoMSF

Tool

Script to automate the process of generating multiple types of reverse_https payloads using msfvenom and setting up a multi/handler in Metasploit.

Features:

  • Generates C#, EXE, VBS, and PS1 payloads
  • Copies payloads to web server directory
  • Creates base64-encoded PowerShell commands
  • Starts multi/handler for incoming connections
  • Optimized for OSEP challenges and exams
GitHubDownload