Back after a hitaus - this short post is about Prowl an open source Python script that was released a few days ago. It helps you scrape LinkedIn data of a company, which can be used for OSINT purposes. It leverages the Yahoo! search engine for it's search. After it is done searching for the jobs, it then uses the Indeed job search engine to look for jobs in the company you are searching for.It also has a capability to search for the discovered user in the have i been pwned? database for Read more about [SHORT POST] Prowl: Scrape LinkedIn Data for OSINT!
Traditionally, rootkits are supposed to work at the kernel level and provide functions like process hiding, user hiding, network hiding, anti-debugging, anti-forensics, persistent reinstalls, backdoors, etc. Then there are bootkits, which infect the Master Boot Record (MBR), allowing execution before the operating system itself boots! Some of them listed on the PenTestIT blog can be found here. Since they have to hook every system process, they have to be coded with care or risk the possibility Read more about The Open Source PHP Module Rootkit!
Nmap is now the default tool to discover services running on a remotely connected system. None of us really need any introduction to this very popular "network mapper". The Linux man page describes it as:Nmap ("Network Mapper") is an open source tool for network exploration and security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what Read more about Nmap 7.50 Now Available!
This is a short post about WordSteal, an open source Python script that steals Microsoft NTLM hashes for you. It does so by leveraging the Metasploit toolkit to steal Microsoft NTLM hashes containing a malicious image payload.It has been known for quiet some time that Microsoft Word versions upwards of Office 95 allow us to embed image files. This functionality has also been used by the CIA "Scribbles" project, which is a document-watermarking pre-processing system to embed "Web Read more about WordSteal: Steal NTLM Hashes from a Remote Computer!
Belati is Indonesian for a dagger. Similarly in Python, it is also an open source OSINT tool that help you collect public data & documents from a targeted website or other services. It is inspired by FOCA and DataSploit, both tools that I earlier covered on the PenTestIT blog. Read more about Belati: An Open Source OSINT Dagger!
Hiding your tracks for public facing targets has become easier - thanks to scanless! It allows you to scan IP addresses utilizing online services that already exist. However, instead of you manually submitting the target to each of them, this Python script does it for you.What is scanless?Scanless is an open source script coded in Python that helps you to perform port scans utilizing multiple online scanners such as you get signal, View DNS, Hacker Target, IPFingerPrints, ping.eu, Read more about scanless: Anonymize Your Port Scans!
If you use Kali and like searchsploit, chances are you will like getsploit even more. What searchsploit is to exploit-db, getsploit is to well, every exploit source covered by vulners.com. Read more about getsploit: Search & Download Exploits!