BiLE-suite

Link to BiLE-suite on GitHub.

The BiLE suite includes a couple of PERL scripts used in enumeration processes. It featured in Penetration Tester's Open Source Toolkit book.

SP-DNS-mine

Link to SP-DNS-mine on GitHub.

SP-DNS-mine.pl uses Google to extract sub domains and DNS names for a given domain. This PERL script features in J0hnny Long's book "Google Hacking for Penetration Testers".

BilePublic

Link to BiLE public on GitHub.

BiLE stands for Bi-directional Link Extraction. It is used in the footprinting process to find non-obvious relationships between different web sites.

unitools

Link to unintools on GitHub.

Unitools.tgz contains two perl scripts - unicodeloader.pl uploads files to a vulnerable IIS site, and unicodexecute3.pl includes searches for more executable directories and is more robust and stable.

decoyblues

Link to Decoyblues on GitHub.

Decoyblues.pl is a denial of service attack against active firewalls. Works by basically creating a lot of decoys with nmap. Router/firewall will try to block all the (decoyed) IP numbers, eventually running out of access list/packetfilters, and possibly crashing, or overwriting access lists.

pudding

Link to Pudding on GitHub.

Pudding is a proxy which recodes HTTP requests using most of RFP's IDS evasion encoding methods, plus random UTF-8 encoding support. Allows any web aware program/exploit/cgi-scanner to evade IDS without modification of the original code. Encoding methods include all uppercase, hex encoding, /./ directory insertion, fake parameters, premature URL endings, windows delimiters, and random UTF8 encoding.

desperate

Linbk to Desperate on GitHub.

Desperate is a collection of tools used to extract usernames via EXPN and finger, and obtaining IP addresses via "brute force" DNS lookups. Contains lists of commonly used usernames and DNS names. Coded in PERL.

go

Link to go on GitHub.

Go.pl allows you to scan ports through a misconfigured squid proxy.

6thSense

Link to 6thSense on GitHub.

6thsense is a TCP port scanning technique which allows you to remain completely invisible to the scanned host, as described in a Bugtraq post by Antirez. This perl script automates the tedious process.

Sensedecode

Link to Sensedecode on GitHub.

Sensedecode.tgz includes 2 perl scripts which exploit the IIS url decoding bug. Decodecheck.pl checks for hosts that have the "decode" problem, and decodexecute executes code using the decoding problem, with redirection.

Secure Remote

CheckPoint FireWall-1's SecureRemote allows any IP to connect and download sensitive network information. This perl script gives a potential attacker a wealth of information including ip addresses, network masks (and even friendly descriptions).

finder

Link to Finder on GitHub.

Finder.pl remotely checks IIS Servers for most of the methods used by WebDAV. If the server does not complain about the method its an indication that WebDAV is in use.

MonSoen

Link to MonSoen on GitHub.

MonSoen.py Proxy Server network scanner and tunnelling tool. You can learn more from our Original Monsoen Blog Post.

mpdchecker

Link to mdpchecker on GitHub.

Mpd or MethodPerDirectory is a python script that can be used to confirm the presence of HTTP methods per directory. MpdChecker can be pointed toboth port 80 and 443 instances.