Burp-LFI-tests
A collection of tests for Local File Inclusion (LFI) vulnerabilities using Burp Suite.
I'm developing Habu to teach (and learn) some concepts about Python and Network Hacking. Some techniques implemented in the current version are: - ARP Poisoning and Sniffing - DHCP Discover and Starvation - Subdomains Identification - Certificate Cloning - TCP Analysis (ISN, Flags) - Username check on social networks - Web Technologies Identification The development of this software is supported by Securetia SRL. Various useful usage scenarios are detailed in the provided link. For installation, the recommended way is to use: $ python3 -m pip install --upgrade git+https://github.com/fportantier/habu.git
A collection of tests for Local File Inclusion (LFI) vulnerabilities using Burp Suite.
Utilizing Alternate Data Streams (ADS) to bypass AppLocker default policies by loading DLL/CPL binaries.
ISF (Industrial Exploitation Framework) - An exploitation framework for industrial systems with various ICS protocol clients and exploit modules.
A week-long series of articles and talks on evading Microsoft Advanced Threat Analytics (ATA) detection
A PowerShell toolkit for attacking Azure environments
A reminder that technology alone is not enough to stay secure against social engineering tactics.