NOPC (Nessus-based Offline Patch Checker) is a patch-checker for primarily Linux distribution and UNIX-based systems. It is a shell script that utilises Nessus’ nasls and gives instructions on what data is needed to be obtained from the system to perform to derive a list of missing security patches. This was developed for situations when network connectivity to the systems under review is not possible. Continue reading →

secdump is a simple meterpreter module that uploads and runs gsecdump. Nothing fancy, just a time saver. Continue reading →

hoppy is python script to probe HTTP options and perform scanning for information disclosure issues. Continue reading →

ManySSL is a perl script to enumerate supported SSL cipher suites supported by network services (principally HTTPS). Continue reading →

udp-proto-scanner is a perl script which discovers UDP services by sending triggers to a list of hosts Continue reading →

MS08-067 check is python script which can anonymously check if a target machine or a list of target machines are affected by MS08-067 vulnerability. Continue reading →

polenum is a python script which can be used to get the password policy from a Windows machine. Continue reading →

vessl is a bash script that can fetch and verify the SSL certificate of a remote server. Continue reading →

A Linux alternative to enum.exe for enumerating data from Windows and Samba hosts. Continue reading →