Seth
xepor
Seth | xepor | |
---|---|---|
2 | 3 | |
1,331 | 203 | |
0.0% | 0.0% | |
0.0 | 6.2 | |
about 1 year ago | 10 months ago | |
Python | Python | |
MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Seth
-
RDP is susceptible to a transparent Net-NTLMv2 hash-stealing attack. When disclosed, Microsoft responded: “not a vulnerability, […] by design”.
https://github.com/SySS-Research/Seth used to work haven’t used it in years though. Same with responder though
-
Cracking RDP NLA Supplied Credentials for Threat Intelligence
I did this in 2017: https://github.com/SySS-Research/Seth
xepor
-
Xepor: the web routing framework, brings the best of mitmproxy & Flask
Xepor (pronounced /ˈzɛfə/ , zephyr), a web routing framework for reverse engineers and security researchers. It provides a Flask-like API for hackers to intercept and modify HTTP request and/or HTTP response in a human-friendly coding style.
What are some alternatives?
pyrdp - RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact
nsa-codebreaker-2020 - My solutions to the 2020 NSA Codebreaker Challenge
wifipumpkin3 - Powerful framework for rogue access point attack.
httpbin - HTTP Request & Response Service, written in Python + Flask.
elmocut - Eye candy ARP spoofer for Windows
TMOHS1-Root-Utility - An interactive python script that enables root access on the T-Mobile (Wingtech) TMOHS1, as well as providing several useful utilites to change the configuration of the device.
RITM - Roast in the Middle
unipacker - Automatic and platform-independent unpacker for Windows binaries based on emulation
netspionage - Network Forensics CLI utility that performs Network Scanning, OSINT, and Attack Detection
mitmproxy - An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
xepor-examples - Examples for using Xepor framework
owasp-mastg - The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).