Hosted Tools & Listings

The purpose of this repository is to act as an archive of tools that either we USCGA Cyber Team have built on our own or use.

Reference to Tools

• Audio Files (.wav, .flac, etc..)
  • Julian's MATLAB code for Least Significant Bit
  • Sonic Visualiser... to easily view the spectrogram of an audio file
• Steganography
  • stegsolve.jar
  • Steghide
  • Hipshot ... Python module to get long-exposure image from a video
  • Detect DTMF Tones ... to decode dial tones from phones
  • zsteg ... detect stegano-hidden and LSB data in PNG & BMP
  • Image Steganography ... to create Stegsolve challenges
  • Whitespace ... a whitespace interpreter
• Reversing/Disassembly
  • IDA Pro
  • Hopper ... we have this bought and downabled in misc
  • Easy Python Decompiler
  • ShowMyCode ... to decrypt a java .class file
  • radare
  • file ... to simply find out "what the heck is this thing?"
  • PE Tools ... can dump memory from a Windows .exe, determine compiler, etc.
  • PEiD ... determine what packer was used for a Windows .exe
• Network/Packet Sniffing
  • Wireshark
  • bro
  • CapLoader
• PDF Files
  • pdfdetach ... to extract embedded files within a PDF file
  • PDFCrack
• Exploit/Shellcode
  • Meterpreter/Metasploit
  • getenvaddr.c
• Web Applications
  • Burpsuite
  • sqlmap
  • Zed Attack Proxy
• PHP
  • phpdc.phpr ... to decode bcompiler compiled PHP code.
• Windows Binaries
  • x64dbg ... to reverse and debug Windows binaries
• Encryption
  • VBScript Decoder
  • xortool
  • quipqiup.com .. for substitution ciphers
  • factordb.com
  • [PlayFair Cipher Cracker][http://bionsgadgets.appspot.com/ww_forms/playfair_ph_web_worker3.html]
• Metadata
  • EXIFTool
• Password Cracking
  • John the Ripper
  • hashcat
  • fcrackzip
• Forensics
  • scalpel
  • foremost
  • vinetto ... for examining Thumbs.db files
  • aeskeyfind
  • rsakeyfind
  • Volatility ... for memory files like .vmss or .vdi
  • Autopsy ... for disk image files like .img
  • binwalk
  • hachoir-subfile ... subfiles in any binary stream, like binwalk or foremost
  • FOR MKV FILES mkvinfo and mkvextract or really anything from the MKVtoolNix package
• Host Based Forensics
  • ewfmount .. encase/expert witness format
  • mount ... to mount a drive
  • umount ... to unmount a drive
  • mmls ... Display the partition layout of a volume system (partition tables)
  • Gpart ... if the image is corrupt, can it be fixed?
  • [f-response][f-response] ...
• Reconnaissance
  • HTTrack ... to scrape entire websites
  • theHarvester ... to detect and scrape e-mail addresses
  • Netcraft ... to grab hosting info on a website
  • Nikto ... to find vulnerabilities in web applications
• Android APK
  • Android APK Decompiler
  • jadx
• Behavioral Analysis
  • Process Hacker
  • Process Monitor
  • Regshot
  • ProcDOT
  • Noriben
  • Capture BAT
  • fakedns
• Windows Executable Reversing
  • dnspy .. to reverse engineer and decompile .NET binaries
  • CFF Explorer .. metadata editor for Windows executables
  • dotPeek .. another .NET decompiler
• Cryptography
  • extract_pubkey.sh ... Extract e and n from RSA public key
  • Vignere Solver ... breaks Vigenère ciphers without knowing the key.