Skip to content

YasserGersy/cazador_unr

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

718 Commits

Compiled

Compiled

 
 

Meta

Meta

 
 

Source

Source

 
 

doc

doc

 
 

imgs

imgs

 
 

README.md

README.md

 
 

SECURITY.md

SECURITY.md

 
 

Repository files navigation

alt tag Gitter GitHub issues Github Stars GitHub Followers Tweet Follow on Twitter

Tools

Listeners

  • HTTP Server
  • DNS Server
  • TCP Server
  • POSTMessage Hooker
  • Websocket Hooker

Analyzers

  • HTTP
  • JS-Files
  • FileSystem
  • Binary
  • Packet

Net Tools

  • Get DNS Records
  • Resolve Hosts
  • Reverse IPs
  • Passive DNS
  • DNS History

Text Tools

  • Text Processing
  • Block construct
  • Format generator
  • pattern creation
  • Encrypt/Decrypt data
  • Hash Identification
  • Crackers
  • Payload Generators
  • Encoders/Decoders
  • Poc Generators (Python , bash , HTML)

Recon

  • Get Websites ScreenShots
  • GET Subdomains (Scrabbing , Mining , DNS-brute-force,Http-brute-force)
  • Site categorizer
  • s3/GC bucket enumeration
  • Github Lister
  • Ip History

Scanners

  • Detect Misconfiguration
  • Port/vulnerability/ssl scanner
  • Vulnerability Exploiters
  • Waf Detection

Scrabbers

  • Download Android apps (APK)
  • Travis-CI logs fetching

Tools discussed separately here

ScreenShots

[scanner] [TcpListener]
[FileMiner]
[Subscrabber] [Hpinger]

virustotal Scan result

if the app is not working properly , Download the missing dlls, put them in application folder , beside the executable file

Some notes:

  • This tool is meant primarily for bug hunters (specially beginners).
  • This tool is not backdoored with any malicious software/tracking .
  • Memory is not carefully managed so be carefull , do not use all the tools at the same time , Consider to make targets and threads less than 1000.
  • Do not use it illegally
  • Some Tools are disabled by default , you could enable any by setting debug mode to true
  • Many third-parties are used without permission no APIS used.
  • The source code is not published because the tool is a beta and the code is uggly and worse than my handwriting.
  • Project is planned to be open-source with the first release.
  • Suggestions are deeply welcome.
  • Credits are reserved for all authors and third-parties.
  • Feel free to push any issue

Linked IN

Happy Automating

About

Hacking tools

Topics

dns http automation tcp hacking xss owasp poc rce sqli fuzzing csrf bugbounty directory-lister bughunting subdomains bugcrowd hackerone information-gathering-tools pocgenerator

Resources

Readme

Security policy

Security policy
Activity

Stars

133 stars

Watchers

9 watching

Forks

55 forks
Report repository

Releases

No releases published

Packages

No packages published