New project started, Climber

Climber is an automated auditing tool to check UNIX/Linux systems misconfigurations which may allow local privilege escalation.

Climber connects to a remote host using SSH or Telnet connections and automatically performs shell commands that are grouped in plugin directory.

Install in BackBox Linux

sudo apt-get update
sudo apt-get install climber


New project started, pyCryptocat

Cryptocat is free software that aims to provide an open, accessible Instant Messaging environment that encrypts your conversations and works right in your browser.

pyCryptocat is a Cryptocat standalone chat client written in Python, using python-webkit package to serve Cryptocat JS and HTML files.

Cryptocat provides multi-user (and private) instant messaging inside chatrooms. It uses the OTR protocol for encrypted two-party chat and the (upcoming) mpOTR protocol for encrypted multi-party chat.

The goal is to provide the easiest, most accessible way to chat while maintaining your privacy online.

Install in BackBox Linux

sudo apt-get update
sudo apt-get install pycryptocat


Weevely 1.0 released!

Here we are with a brand new Weevely release: version 1.0 brings new modules with totally refactored structure to assist remote administration tasks and penetration testing.

Here is the breakdown of the most important changes:

  • Supports of Windows and MacOS hosts environments
  • Module :net.mount, powered by HTTPfs, that mounts automagically remote filesystem to a local mountpoint
  • Module :file.edit to edit remote files with your favourite local text editor
  • Module :audit.systemfiles to find system files with bad permissions that could affect server security
  • Module :audit.phpconf to audit common PHP misconfiguration
  • SOCKS4 and SOCKS5 proxy supports
  • Totally rewritten module base structure to simplify module deploying
  • Modules arguments managament with argparse
  • Tons of bug fixes

If you are new to Weevely, start with an easy tutorial, and read the complete modules and generators lists.