Tools
Voltaire is a web-based indexing tool for GIAC certification examinations. Creating an index with Voltaire is a three phase process involving: documentation/note-taking, sorting & normalization, and word processing.
During most offensive engagements, weak passwords and password reuse lead to system compromise. It is for this reason that assessing password strength on a regular basis is key for organizations to factor this information into their overall understanding of risk. It seems that password cracking and auditing run into two major roadblocks:
Organizational capabilities and resources
Security concerns around compromising credentials
To address both roadblocks, we wrote a tool to perform password cracking using cloud-based resources in an affordable and secure manner, with limited credential exposure.
Prismatica is a modular C2 Interface hooked into the Diagon Command and Control Toolkit. There are multiple tools and components of the Prismatica Marketplace. All Prism Apps are built around the Emergence Fabric.
Subterfuge is a framework designed to simplify the arcane art of Man-in-the-Middle Attacks and make them as simple as point and shoot. A beautiful, easy to use interface which produces a more transparent and effective attack, Subterfuge demonstrates vulnerabilities in the ARP Protocol by harvesting credentials that go across the network, and even exploiting machines through race conditions.
Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility. The framework was designed operating system agnostic and supports all major CPU architectures as well. The tool is built around a phased approach to vulnerability assessment that ensures quality by enforcing simplicity and enhancing productivity through search.
A Command and Control execution and egress vulnerability scanning tool.