ComprehensiveToolkit for Team Communication, Data Exfiltration, Log Aggregation, and Wireless & Embedded Device Hacking
Data Exfiltration
CloakifyFactory & the Cloakify Toolset
data Exfiltration & Infiltration In Plain Sight; Evade
DLP/MLS Devices; Social Engineering of Analysts; Defeat Data Whitelisting Controls; Evade AV
Detection.
https://github.com/TryCatchHCF/Cloakify
DET
(is provided AS IS), is a proof of concept to perform Data Exfiltration using either single or multiple
channel(s) at the same time.
https://github.com/sensepost/DET
DNSExfiltrator
allows for transfering (exfiltrate) a file over a DNS request covert channel. This is basically a
data leak testing tool allowing to exfiltrate data over a covert channel.
https://github.com/Arno0x/DNSExfiltrator
PyExfil
A Python Package for Data Exfiltration.
https://github.com/ytisf/PyExfil
Egress-Assess
Is a tool used to test egress data detection capabilities.
https://github.com/ChrisTruncer/Egress-Assess
Powershell RAT
python based backdoor that uses Gmail to exfiltrate data as an e-mail attachment.
https://github.com/Viralmaniar/Powershell-RAT
Misc
Wireless Networks
Wifiphisher
Is a security tool that performs Wi-Fi automatic association attacks to force wireless clients to
unknowingly connect to an attacker-controlled Access Point.
https://github.com/wifiphisher/wifiphisher
Evilginx
Is a man-in-the-middle attack framework used for phishing credentials and session cookies of
any web service.
https://github.com/kgretzky/evilginx
mana
toolkit for wifi rogue AP attacks and MitM.
Embedded & Peripheral Devices Hacking
magspoof
a portable device that can spoof/emulate any magnetic stripe, credit card or hotel card
“wirelessly”, even on standard magstripe (non-NFC/RFID) readers.
https://github.com/samyk/magspoof
WarBerryPi
Was built to be used as a hardware implant during red teaming scenarios where we want to
obtain as much information as possible in a short period of time with being as stealth as possible.
https://github.com/secgroundzero/warberry
P4wnP1
is a highly customizable USB attack platform, based on a low cost Raspberry Pi Zero or Raspberry
Pi Zero W (required for HID backdoor).
https://github.com/mame82/P4wnP1
malusb
HID spoofing multi-OS payload for Teensy.
https://github.com/ebursztein/malusb
Fenrir
Is a tool designed to be used “out-of- the-box” for penetration tests and offensive engagements. Its main feature and purpose is to bypass wired 802.1x protection and to give you an access to the target network.
https://github.com/Orange-Cyberdefense/fenrir-ocd
poisontap
exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor
exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js.
https://github.com/samyk/poisontap
WHID WiFi HID Injector
An USB Rubberducky / BadUSB On Steroids.
https://github.com/whid-injector/WHID
Software For Team Communication
RocketChat
Is afree, unlimited and open source. Replace email & Slack with the ultimate team chat software solution.
Etherpad
Is an open source, web-based collaborative real-time editor, allowing authors to simultaneously
edit a text document
Log Aggregation
RedELK
Red Team’s SIEM — easy deployable tool for Red Teams used for tracking and alarming
about Blue Team activities as well as better usability in long term operations.
https://github.com/outflanknl/RedELK/
CobaltSplunk
Splunk Dashboard for CobaltStrike logs.
https://github.com/vysec/CobaltSplunk
Red Team Telemetry
A collection of scripts and configurations to enable centralized logging of red team infrastructure.
https://github.com/ztgrace/red_team_telemetry
Elastic
Is for Red Teaming Repository of resources for configuring a Red Team SIEM using Elastic.