Scripts and tools to help query and parse the Unified security log in Office 365
This tool is designed to help with quick testing, however it can be used for specific uses which are pre-built with in the script.
A compiled version of Hyperion-1.2 - all credits to http://nullsecurity.net/tools/binary.html
A sqlmap tamper script for manipulating parameters within a serialized PHP array.
PowerShell install script and supporting binaries/config files to add a layer 2 VPN in Simulated Attack engagements
Basic scripts for rolling packet capture, and a web script to download filtered PCAPs
A compiled Win32 portable version of Ncat 5.59BETA1 against openssl-1.0.1d
Really basic/hacked command execution/database backup with Joomla!
A perl script to enumerate hidden VHOSTS on a remote webserver
Client/server scripts designed to test outbound (egress) firewall rules.
Small script to parse the output of NTDSExtract (Perl)
PHP framework to test User-Agents and intermediary content inspection devices for denial-of-service vulnerabilities with respect to HTTP response decompression.
Burp Suite Extension to convert a POST request to JSON message, moving any .NET request verification token to HTTP headers if present
A server-side PHP script to manipulate HTTP Response Headers, designed to identify weaknesses in perimeter filtering devices (e.g. web proxies and next generation firewalls)
XSS-Harvest - a proof of concept harvesting tool for demonstrating the real power of XSS attacks
Webscour is a Perl script (with gnome dependencies) to help identify interesting websites during a penetration test.
Very small implementation of fake web and DNS servers, written in Perl.
Perl script to detect the existence of transparent proxies
Expect scripts to assist in auditing Linux and Unix hosts
A Perl script to test access controls on large web applications