Slurp- Blackbox/Whitebox S3 Bucket EnumeratorTo Evaluate the security of S3 bucketsOverviewCredit to all the vendor packages to develop Slurp possible.Slurp is for pen-testers and security professionals to perform audits of s3 buckets.FeaturesScan via domain(s); you can target a single domain […]

PowerHub- A Post Exploitation Suite To Bypass Endpoint ProtectionPowerHub is a convenient post exploitation tool which aids a pentester in transferring files, in particular code which may get flagged by endpoint protection.During an engagement where you have a test client available, one of the […]

Phantom Tap (PhanTap) - An ‘Invisible’ Network Tap Aimed at Red Teams.With limited physical access to a target building, this tap can be installed inline between a network device and the corporate network.PhanTap is silent in the network and does not affect the victim’s traffic, […]

CloudCheck- To Test String If A Cloudflare DNS Bypass is Possible Cloudcheck is made to be used in the same folder as CloudFail. Make sure all files in this repo are in the same folder before using.CloudFail is a tactical reconnaissance tool which aims to gather enough information about a […]

This shell is the ultimate WinRM shell for hacking/pentesting.WinRM (Windows Remote Management) is the Microsoft implementation of WS-Management Protocol. A standard SOAP based protocol that allows hardware and operating systems from different vendors to interoperate. Microsoft included it in […]