-
Cariddi
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more.
-
Cowpatty
A free and open-source brute-force WPA2-PSK password cracking tool. CoWPAtty can help users identify weak passphrases that generate the pairwise master key (PMK).
-
Cowrie
Cowrie is a medium interaction SSH and Telnet honeypot designed to log brute force attacks and shell interaction performed by an attacker.
-
Credential Harvester Attack
A free and open-source tool in the Social-Engineer Toolkit (SET) for credential theft. The Credential Harvester tool clones a legitimate website and steals users’ login information and passwords.
-
-
Cyber Security Evaluation Tool (CSET)
Report highlighting strengths and weaknesses and offering prioritized recommendations for optimizing an organization’s cybersecurity posture.
-
Decider
A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.
-
Devanshbatham/Headerpwn
A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers
Resources -
Dirsearch
Dirsearch is Tool that performs bruteforce attack of sensitive directories and files that are found on the websites.
-
Dnsvalidator
Dnsvalidator is a networking tool that maintains a list of IPv4 DNS servers. It does this by verifying them against baseline servers and ensuring accurate responses.
-
Dnsx
DNSx is a DNS toolkit that allows users to run multiple DNS queries. It’s a Go language-based tool that uses a retryabledns library to run multiple probes. DNSx supports multiple DNS queries, user-supplied resolvers, and DNS wildcard filtering
-
Dockpot
Dockpot is a high interaction ssh-honeypot based on docker. It’ basically a NAT device that has the ability to act as an ssh proxy between the attacker and the honeypot (docker container in that case) and logs the attacker’s activities
