Tools & Programs

Ofcourse I can do all this stuff manually through the CLI, but sometimes I might want to have some stuff run automatically..

I order to not loose site of the plethora of tools that are available, I wanted to collect some of my favorites.

So I created this collection of tools and programs that I find to be very usefull and might help others out in the process. I think I said it before, but I learned most of my stuff looking at what other people are doing/using.

\\\\====== Enrich your knowledge by scrolling down ======////

Subjects

• DNS
• Domain Enumeration
• Phishing
• SSH
• XSS - Cross Site Scripting

DNS

DNSChef

ℹ️ DNSChef - DNS proxy for Penetration Testers and Malware Analysts. Helped me solve an issue in the TryHackMe Red Team Capstone when using Bloodhound in combination with Proxychains.

🔗 Github

🔗 Using DNSChef to solve the DNS issue in Bloodhound together with Proxychains

Domain Enumeration

Sublist3r

ℹ️ Fast subdomains enumeration tool for penetration testers.

🔗 Github

Phishing

GoPhish

ℹ️ Open-Source Phishing Toolkit. Can be used to create phishing emails, campaigns, and collect everything in one place in a dashboard.

🔗 Github

SSH

sshuttle

ℹ️ Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.

🔗 Documentation

🔗 Github

XSS - Cross Site Scripting

XSS Hunter

ℹ️ An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance! A popular open source tool for identifying cross-site scripting (XSS) bugs in websites.

🔗 Github