Category: Scripts & Tools

DAws – New Release – 5/11/2015

Hello,

Here comes the new release of DAws after few days of hard work, I added some extra and useful features to it, took in consideration a lot of suggestions and most of them are part of DAws now, increased Windows support and fixed a lot of bugs.

DAws is getting better with time and I hope that you’re all enjoying its usage.

I appreciate all the support and that’s keeping the project alive.

Enough with the sensitive and dramatic speech, lets get to them updates already:
Continue reading “DAws – New Release – 5/11/2015”

DAws – New Big Release – 22/5/2015

About
There’s multiple things that makes DAws better than every Web Shell out there:

  1. Bypasses Security Systems using various methods.
  2. Drops CGI Shells and communicate with them to bypass Security Systems.
  3. Uses the SSH Authorized Keys method to bypass Security Systems.
  4. Uses Shellshock to bypass Security Systems.
  5. Is completely Post Based and uses a XOR Encryption based on a random key that gets generated with every new session + private base64 functions to bypass Security Systems.
  6. Supports Windows and Linux.
  7. Find a writeable and readable directory and moves there if it’s a web directory.
  8. Drops a php.ini and a .htaccess file that clears all disablers incase “suphp” was installed.
  9. Has an advanced File Manager
  10. Mostly everything is done automatically (when it comes to command or script execution)
  11. Open Source
  12. and much more (check the source for more information; everything is well commented)

Github:
https://github.com/dotcppfile/DAws/

DAws – Advanced Web Shell – Windows/Linux

Hello everyone,

Screenshot from 2015-02-03 17:42:00

There’s multiple things that makes DAws better than every Web Shell out there.

Follow DAws at: https://github.com/dotcppfile/DAws

Serbot – Advanced Controller/Server/Client Reverse Shell/Bot – Windows/Linux – Python

Hello everyone,

rsz_1rsz_serbot

Serbot is hot, keep reading Lol.

So, lets just get to the point, I’ve showed you Awrs and what it’s capable of, considered as one of the best Reverse Shells I’ve decided to Update Awrs and create Serbot and no, it’s not what you think Lol.

Continue reading “Serbot – Advanced Controller/Server/Client Reverse Shell/Bot – Windows/Linux – Python”

Awrs – Advanced Client/Server Windows/Linux Python Reverse Shell

Hello everyone,

Well, it’s been a while and I’ve decided to create this. I had bigger plans but sadly I have no time to get more into it so I’ll just leave it here.

So we’ve seen Reverse Shells out there, some created with msfpayload or done threw netcat etc, and problems were just flowing out of these because dealing with reverse shells wasn’t that simple at all, many different problems were just flowing out of nowhere:

Continue reading “Awrs – Advanced Client/Server Windows/Linux Python Reverse Shell”

CppSqlInjector vs Sqlmap – Speed Test

Hello everyone,

If there’s something that matters when doing a Blind Sql Injection, that would be time, and that is why I’ve been working on CppSqlInjector it’s been a while.

CppSqlInjector is a Sql Injection tool programmed C++. It uses the Blind Boolean Based Sql Injection Method.
It’s available on Windows, Linux and it’s completely free.

Here’s a video showing how fast CppSqlInjector compared to Sqlmap:
Continue reading “CppSqlInjector vs Sqlmap – Speed Test”

NTP Amplification DoS Attack – by dotcppfile and Red Dragon (Python Script)

Hello everyone,

Red Dragon and I have been working on this for a while and here it is, a working NTP Amplification DoS Attack Python Script that is well tied up and that works perfectly. It has been tested on Linux only. There’s 2 versions; the official one works with python 2.x and the second one was Tweaked by Tea, a close friend and a member of Team Prophetic, and it should work with python 3.x.
Continue reading “NTP Amplification DoS Attack – by dotcppfile and Red Dragon (Python Script)”

ESET’s Mail Bomber

Hey everyone,
Well I just found a simple vulnerability in ESET’s Official Website which allows anyone to use their Servers as a Mail Bombing tool that is actually Really Fast and that Bypasses Junk Mail.
Check this out if you’re looking for more info about this Vulnerability: https://dotcppfile.wordpress.com/2014/06/25/vulnerability-in-esets-forms-explained-and-revealed/

 

Continue reading “ESET’s Mail Bomber”

Design a site like this with WordPress.com
Get started