FeatherDuster (and Cryptanalib)
FeatherDuster is a cryptanalysis tool designed to identify and exploit weaknesses in cryptographic systems. The tool automates the process of analyzing ciphertext files to detect vulnerable encryption implementations and attempts to break them through various cryptanalytic techniques. The framework includes Cryptanalib, which serves as the underlying cryptographic analysis library that can be used independently of the main FeatherDuster interface. This modular approach allows users to leverage the cryptanalytic capabilities in custom implementations or integrate them into other security testing workflows. FeatherDuster accepts multiple ciphertext files as input and applies automated analysis techniques to identify potential vulnerabilities in the cryptographic implementation. The tool focuses on detecting common cryptographic weaknesses and misconfigurations that may allow for successful cryptanalytic attacks. The project is currently in beta release status, indicating ongoing development and potential for bugs or incomplete features. Users can run the tool through Python scripts or use the installed command-line interface to analyze target ciphertext files.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
SharpShares efficiently enumerates and maps network shares and resolves names within a domain.
Advanced command and control tool for red teaming and adversary simulation with extensive features and evasion capabilities.
A command that builds and executes command lines from standard input, allowing for the execution of commands with multiple arguments.
Interactive online malware sandbox for real-time analysis and threat intelligence
SauronEye helps in identifying files containing sensitive data such as passwords through targeted directory searches.
A CVE compliant archive of public exploits and corresponding vulnerable software, and a categorized index of Internet search engine queries designed to uncover sensitive information.
Tool for enumerating proxy configurations and generating CobaltStrike-compatible shellcode.
A collection of Python scripts for password spraying attacks against Lync/S4B & OWA, featuring Atomizer, Vaporizer, Aerosol, and Spindrift tools.
PINNED
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.