Tools

The following are recent tools published by MWR InfoSecurity.

Tool

Needle

The iOS Security Testing Framework.

+ read more

Tool

Drozer

Comprehensive security and attack framework for Android.

+ read more

Tool

WePWNise

WePWNise is a proof-of-concept python script that generates architecture independent VBA code to be used in Office documents or templates. It aims in introducing a certain level of automation and intelligence to dynamically deliver its payload,...

+ read more

Tool

An IDA Pro Plugin For Windows Driver Reversing

This is an IDA Pro plugin designed to assist reverse engineers when they are reversing Windows drivers or applications that interact with them. The source code is hosted on GitHub under a 3-clause BSD license.

+ read more

Tool

Parsing Mimikatz Log Files

On internal penetration tests and simulated attacks, mimikatz (or one of its derivatives) usually forms part of the standard toolkit. It has a huge number of features but perhaps the most common is the logonPasswords verb,...

+ read more

Tool

PEAS: Access internal fileshares through Exchange ActiveSync

PEAS is a Python 2 library and command line application for running commands on an Exchange ActiveSync server. It was created in an intern research project to assist security assessments by allowing easy access to the...

+ read more

Tool

icmptunnel: Pivot with Ping

Icmptunnel is a tool to tunnel IP traffic within ICMP echo request and response (ping) packets. It’s intended for bypassing firewalls in a semi-covert way, for example when pivoting inside a network where ping is allowed.

+ read more

Tool

Rapid OpenVPN Certificate & Configuration Deployment

On a number of recent occasions, I have needed to quickly configure and deploy OpenVPN. These situations have included simulated attacks, in which the opportunity to deploy OpenVPN as an egress or C2 channel presented itself,...

+ read more

Tool

Jump List Parser (JLP)

Jump Lists are lists of recently opened items, such as files, folders, or websites, organized by yourself or the program that you use to open them.

+ read more

Tool

QNX Security Tools

Alex Plaskett and Georgi Geshev presented "99 Problems but a Microkernel ain't one!" at  TROOPERS and BSides NYC. 

+ read more

Tool

SAP Decom

The SAP DIAG (Dynamic Information and Action Gateway) protocol is used for SAP GUI to SAP Server (Dispatcher and Message Server) communications.

+ read more

Tool

SAP Metasploit Modules

We have recently developed several Metasploit auxiliary and exploitation modules to assist consultants in assessing SAP systems.

+ read more