SIMATIC-SMACKDOWN
ScrapPY
SIMATIC-SMACKDOWN | ScrapPY | |
---|---|---|
8 | 10 | |
41 | 183 | |
- | - | |
10.0 | 5.2 | |
over 1 year ago | about 1 month ago | |
Go | Python | |
GNU General Public License v3.0 only | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
SIMATIC-SMACKDOWN
-
Repositories that have shaped me as an infosec student
ICS Malware dubbed SIMATIC Smackdown: https://github.com/RoseSecurity/SIMATIC-SMACKDOWN Red-Teaming TTPs: https://github.com/RoseSecurity/Red-Teaming-TTPs Web App Pentesting: https://github.com/RoseSecurity/ScrapPY ICS Metasploit Module: https://github.com/RoseSecurity/APOLOGEE OSINT CTF: https://github.com/RoseSecurity/Obfusc8ted
- Simatic Smackdown ICS Malware Adds Wiper Functionality
- Simatic Smackdown Malware Targeting PLCs Adds Features to Target More Devices
-
Malware Targeting Industrial Networks Published Openly on Github with Source Code for Researchers
VX-Underground recently released a new malware strain targeting ICS systems which was later revealed by RoseSecurity (https://github.com/RoseSecurity/SIMATIC-SMACKDOWN).
- ICS Malware Dubbed Simatic Smackdown Targets Siemens PLCs
- New ICS malware dubbed SIMATIC-SMACKDOWN could pose a distributed threat to PLCs
- New ICS malware targeting Siemens devices released to Github with source code
- New Golang malware targeting ICS released with source code
ScrapPY
- Create targeted wordlists with this friendly Python utility!
- Python utility for scraping manuals, documents, and other sensitive PDFs to generate targeted wordlists for expedited initial access and lateral movement
- PDF Manual Scraping Tool for Generating Wordlists Using Natural Language Processing
-
Repositories that have shaped me as an infosec student
ICS Malware dubbed SIMATIC Smackdown: https://github.com/RoseSecurity/SIMATIC-SMACKDOWN Red-Teaming TTPs: https://github.com/RoseSecurity/Red-Teaming-TTPs Web App Pentesting: https://github.com/RoseSecurity/ScrapPY ICS Metasploit Module: https://github.com/RoseSecurity/APOLOGEE OSINT CTF: https://github.com/RoseSecurity/Obfusc8ted
- Expedite Initial Access with Targeted Wordlists from ScrapPY
- [NEW TOOL] ScrapPY: a Python utility for scraping manuals, documents, and other sensitive PDFs to generate targeted wordlists. Now including metadata analysis, entropy scoring, and word frequency analysis
- ScrapPY: a Python utility for scraping manuals, documents, and other sensitive PDFs to generate wordlists that can be utilized by offensive security tools to perform brute force, forced browsing, and dictionary attacks against targets
- Tool to Scrape Manuals and Sensitive PDFs to Generate Stronger Wordlists for Lateral Movement and Initial Access
What are some alternatives?
netz - Discover internet-wide misconfigurations while drinking coffee
Red-Teaming-TTPs - Useful Techniques, Tactics, and Procedures for red teamers and defenders, alike!
APOLOGEE - APOLOGEE is a Python script and Metasploit module that enumerates a hidden directory on Siemens APOGEE PXC BACnet Automation Controllers (all versions prior to V3.5) and TALON TC BACnet Automation Controllers (all versions prior to V3.5). With a 7.5 CVSS, this exploit allows for an attacker to perform an authentication bypass using an alternate path or channel to access hidden directories in the web server. This repository takes advantage of CVE-2017-9947.
Obfusc8ted - You and the AppleLabs' Incident Response Team have been notified of a potential breach to a Human Resources' workstation. According to the Human Resources representative, they did not notice any anomalous activity while browsing the web, but the AppleLabs' system information and event management (SIEM) instance alerted on a suspicious domain. Moments later, the host-based intrusion detection system (HIDS) alerted on several malicious programs acting as potential keyloggers. While the AppleLabs' IT and Incident Response Teams struggle to find the answers, can you lend us your digital forensic experience to hunt down this threat actor?
vuls - Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Scrapy - Scrapy, a fast high-level web crawling & scraping framework for Python.
malice - VirusTotal Wanna Be - Now with 100% more Hipster
Keylogger - Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.