an0nymous cyber tool
New member
.
Offensive Security Tools Pack / ToolKit / Framework DDOS PROGRAMS | DARKWEB LEAK
- Thread starter HATUNA
- Start date
This Prefix Contains Tools That Are Used for Offensive Security Purposes, Such as Red Teaming, Penetration Testing, or Simulating Cyber Attacks.
This Prefix Contains Packs Of Multiple Mixed Tools, Toolkits That Have MultiTools In Them And Frameworks Of Hacking
Pippofrancox
New member
kTn
2FAssassin is a tool that will help in exploiting certain misconfiguration or vulnerabilities on remote system to extract private keys from memory. attack scenario will start by enumerating the network for exposed vulnerabilities:
- The effectiveness of the Two-Factor-Authentication depends on how well a user protects "something only the user has".
- The tool looks out for getting the OTP(s) and private keys using various methods.
- The private keys can be extracted from client certificates and cracked to be used for authentication.
- The tool exploits the common vulnerabilities that caused private keys leakage.
- Propagates the compromise starting from a single machine to the entire networks via looted private keys.
- Install python on Kali Linux, then run:
pip install 2fassassin
cd /root/2fassassin
OR
git clone https://github.com/maxwellkoh/2FAssassin.git
cd 2fassassin
- Network enumeration:
./assassin.py --scan <basic | advanced> --target <ip_address | range>
./assassin.py --scan advanced --target 192.168.0.0/24
./assassin.py --scan basic --target 192.168.2.40
./assassin.py --check auto --mode attack
2FAssassin is a tool that will help in exploiting certain misconfiguration or vulnerabilities on remote system to extract private keys from memory. attack scenario will start by enumerating the network for exposed vulnerabilities:
- The effectiveness of the Two-Factor-Authentication depends on how well a user protects "something only the user has".
- The tool looks out for getting the OTP(s) and private keys using various methods.
- The private keys can be extracted from client certificates and cracked to be used for authentication.
- The tool exploits the common vulnerabilities that caused private keys leakage.
- Propagates the compromise starting from a single machine to the entire networks via looted private keys.
- Install python on Kali Linux, then run:
pip install 2fassassin
cd /root/2fassassin
OR
git clone https://github.com/maxwellkoh/2FAssassin.git
cd 2fassassin
- Network enumeration:
./assassin.py --scan <basic | advanced> --target <ip_address | range>
./assassin.py --scan advanced --target 192.168.0.0/24
./assassin.py --scan basic --target 192.168.2.40
./assassin.py --check auto --mode attack
https://github.com/dothanthitiendiettiende/2FAssassin
- SSH-based Attacks to get private keys
- HeartBleed Attacks to get private keys:
- Ceragon FibeAir IP-10 SSH Private Key Exposure:
- ExaGrid Known SSH Key and Default Password :
- F5 BIG-IP SSH Private Key Exposure:
- Loadbalancer.org Enterprise VA SSH Private Key
- Array Networks vAPV and vxAG Private Key Privilege Escalation Code Execution
- Quantum DXi V1000 SSH Private Key Exposure
- Check & disable Two-Factor Authentication
- The effectiveness of the Two-Factor-Authentication depends on how well a user protects "something only the user has".
- The tool looks out for getting the OTP(s) and private keys using various methods.
- The private keys can be extracted from client certificates and cracked to be used for authentication.
- The tool exploits the common vulnerabilities that caused private keys leakage.
- Propagates the compromise starting from a single machine to the entire networks via looted private keys.
- Install python on Kali Linux, then run:
pip install 2fassassin
cd /root/2fassassin
OR
git clone https://github.com/maxwellkoh/2FAssassin.git
cd 2fassassin
- Network enumeration:
./assassin.py --scan <basic | advanced> --target <ip_address | range>
./assassin.py --scan advanced --target 192.168.0.0/24
./assassin.py --scan basic --target 192.168.2.40
./assassin.py --check auto --mode attack
2FAssassin is a tool that will help in exploiting certain misconfiguration or vulnerabilities on remote system to extract private keys from memory. attack scenario will start by enumerating the network for exposed vulnerabilities:
- SSH-based Attacks to get private keys
- HeartBleed Attacks to get private keys:
- Ceragon FibeAir IP-10 SSH Private Key Exposure:
- ExaGrid Known SSH Key and Default Password :
- F5 BIG-IP SSH Private Key Exposure:
- Loadbalancer.org Enterprise VA SSH Private Key
- Array Networks vAPV and vxAG Private Key Privilege Escalation Code Execution
- Quantum DXi V1000 SSH Private Key Exposure
- Check & disable Two-Factor Authentication
- The effectiveness of the Two-Factor-Authentication depends on how well a user protects "something only the user has".
- The tool looks out for getting the OTP(s) and private keys using various methods.
- The private keys can be extracted from client certificates and cracked to be used for authentication.
- The tool exploits the common vulnerabilities that caused private keys leakage.
- Propagates the compromise starting from a single machine to the entire networks via looted private keys.
- Install python on Kali Linux, then run:
pip install 2fassassin
cd /root/2fassassin
OR
git clone https://github.com/maxwellkoh/2FAssassin.git
cd 2fassassin
- Network enumeration:
./assassin.py --scan <basic | advanced> --target <ip_address | range>
./assassin.py --scan advanced --target 192.168.0.0/24
./assassin.py --scan basic --target 192.168.2.40
./assassin.py --check auto --mode attack
https://github.com/dothanthitiendiettiende/2FAssassin
1738869701
New member
111
blackjoker
New member
where are these?
sameerlike141
New member
awsdasd