diff --git a/crypto/crypto_tools.md b/crypto/crypto_tools.md new file mode 100644 index 0000000..c4a53e1 --- /dev/null +++ b/crypto/crypto_tools.md @@ -0,0 +1,446 @@ +# Cryptography Ethical Hacking Tools +The following list does not include cracking tools. It includes some of the most popular tools to test crypto implementations. + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
NameDescription
aespipeReads data from stdin and outputs encrypted or decrypted results to stdout.
argon2The password hash Argon2, winner of PHC.
armorA simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners.
athena-ssl-scannera SSL cipher scanner that checks all cipher codes. It can identify about 150 different ciphers.
auto-xor-decryptorAutomatic XOR decryptor tool.
bletchleyA collection of practical application cryptanalysis tools.
brute12A tool designed for auditing the cryptography container security in PKCS12 format.
bruteforce-luksTry to find the password of a LUKS encrypted volume.
bruteforce-salted-opensslTry to find the password of a file that was encrypted with the 'openssl' command.
bruteforce-walletTry to find the password of an encrypted Peercoin (or Bitcoin,Litecoin, etc...) wallet file.
check-weak-dh-sshDebian OpenSSL weak client Diffie-Hellman Exchange checker.
chrome-decodeChrome web browser decoder tool that demonstrates recovering passwords.
cipherscanA very simple way to find out which SSL ciphersuites are supported by a target.
ciphertestA better SSL cipher checker using gnutls.
ciphrA CLI tool for encoding, decoding, encryption, decryption, and hashing streams of data.
cisco5crackCrypt and decrypt the cisco enable 5 passwords.
cisco7crackCrypt and decrypt the cisco enable 7 passwords.
cloakifyData Exfiltration In Plain Sight; Evade DLP/MLS Devices; Social Engineering of Analysts; Evade AV Detection.
codetectiveA tool to determine the crypto/encoding algorithm used according to traces of its representation.
cribdragAn interactive crib dragging tool for cryptanalysis on ciphertext generated with reused or predictable stream cipher keys.
crypthookTCP/UDP symmetric encryption tunnel wrapper.
cryptonarkSSL security checker.
dagonAdvanced Hash Manipulation.
daredevilA tool to perform (higher-order) correlation power analysis attacks (CPA).
decodifyTool that can detect and decode encoded strings, recursively.
deenGeneric data encoding/decoding application built with PyQt5.
demiguiseHTA encryption tool for RedTeams.
dislockerA tool to exploit the hash length extension attack in various hashing algorithms. With FUSE capabilities built in.
ducktoolkitEncoding Tools for Rubber Ducky.
evilizeTool to create MD5 colliding binaries.
factordb-pycliCLI for factordb and Python API Client.
featherdusterAn automated, modular cryptanalysis tool.
findmyhashCrack different types of hashes using free online services
foresightA tool for predicting the output of random number generators.
gcryptSimple file encryption tool written in C++.
gnutls2A library which provides a secure layer over a reliable transport layer (Version 2)
gtalk-decodeGoogle Talk decoder tool that demonstrates recovering passwords from accounts.
haitiA CLI tool to identify the hash type of a given hash.
hash-busterA python script which scraps online hash crackers to find cleartext of a hash.
hash-extenderA hash length extension attack tool.
hash-identifierSoftware to identify the different types of hashes used to encrypt data and especially passwords.
hashcheckSearch for leaked passwords while maintaining a high level of privacy using the k-anonymity method.
hashdbA block hash toolkit.
hasherA tool that allows you to quickly hash plaintext strings, or compare hashed values with a plaintext locally.
hashfindA tool to search files for matching password hash types and other interesting data.
hashidSoftware to identify the different types of hashes used to encrypt data.
hashpumpA tool to exploit the hash length extension attack in various hashing algorithms.
hcxkeysSet of tools to generate plainmasterkeys (rainbowtables) and hashes for hashcat and John the Ripper
hdcp-genkeyGenerate HDCP source and sink keys from the leaked master key.
hlextendPure Python hash length extension module.
httpsscannerA tool to test the strength of a SSL web server.
hyperion-crypterA runtime encrypter for 32-bit portable executables.
ja3Standard for creating SSL client fingerprints in an easy to produce and shareable way.
jeangreyA tool to perform differential fault analysis attacks (DFA).
krakenA project to encrypt A5/1 GSM signaling using a Time/Memory Tradeoff Attack.
libbdeA library to access the BitLocker Drive Encryption (BDE) format.
littleblackboxPenetration testing tool, search in a collection of thousands of private SSL keys extracted from various embedded devices.
luksipcA tool to convert unencrypted block devices to encrypted LUKS devices in-place.
morxcrackA cracking tool written in Perl to perform a dictionary-based attack on various hashing algorithm and CMS salted-passwords.
morxkeyfmtRead a private key from stdin and output formatted data values.
nomorexorTool to help guess a files 256 byte XOR key by using frequency analysis
omenOrdered Markov ENumerator - Password Guesser.
omnihashHash files, strings, input streams and network resources in various common algorithms simultaneously.
openstegoA tool implemented in Java for generic steganography, with support for password-based encryption of the data.
outguessA universal steganographic tool.
pacumenPacket Acumen - Analyse encrypted network traffic and more (side-channel attacks).
pip3lineThe Swiss army knife of byte manipulation.
poracleA tool for demonstrating padding oracle attacks.
posttesterA jar file that will send POST requests to servers in order to test for the hash collision vulnerability discussed at the Chaos Communication Congress in Berlin.
pwd-hashA password hashing tool that use the crypt function to generate the hash of a string given on standard input.
pwdlyserPython-based CLI Password Analyser (Reporting Tool).
pybozocrackA silly & effective MD5 cracker in Python.
pyssltestA python multithreaded script to make use of Qualys ssllabs api to test SSL flaws.
rdp-cipher-checkerEnumerate the encryption protocols supported by the server and the cipher strengths supported using native RDP encryption.
rsactftoolRSA tool for ctf - retreive private key from weak public key and/or uncipher data.
rsatoolTool that can be used to calculate RSA and RSA-CRT parameters.
rshackPython tool which allows to carry out some attacks on RSA, and offer a few tools to manipulate RSA keys.
ruptureA framework for BREACH and other compression-based crypto attacks.
sandyAn open-source Samsung phone encryption assessment framework
sbdNetcat-clone, portable, offers strong encryption - features AES-128-CBC + HMAC-SHA1 encryption, program execution (-e), choosing source port, continuous reconnection with delay + more
sha1collisiondetectionLibrary and command line tool to detect SHA-1 collision in a file
sherlockedUniversal script packer-- transforms any type of script into a protected ELF executable, encrypted with anti-debugging.
skulA PoC to bruteforce the Cryptsetup implementation of Linux Unified Key Setup (LUKS).
snapceptionIntercept and decrypt all snapchats received over your network.
snowSteganography program for concealing messages in text files.
spipedA utility for creating symmetrically encrypted and authenticated pipes between socket addresses.
ssdeepA program for computing context triggered piecewise hashes
sslcauditUtility to perform security audits of SSL/TLS clients.
ssllabs-scanCommand-line client for the SSL Labs APIs
sslmapA lightweight TLS/SSL cipher suite scanner.
sslscanA fast tools to scan SSL services, such as HTTPS to determine the ciphers that are supported
tchunt-ngReveal encrypted files stored on a filesystem.
testsslTesting TLS/SSL encryption.
testssl.shTesting TLS/SSL encryption
tls-attackerA Java-based framework for analyzing TLS libraries.
tls-mapCLI & library for mapping TLS cipher algorithm names: IANA, OpenSSL, GnUTLS, NSS.
tls-proberA tool to fingerprint SSL/TLS servers.
tlsenumA command line tool to enumerate TLS cipher-suites supported by a server.
tlsfuzzerSSL and TLS protocol test suite and fuzzer.
tlspretenseSSL/TLS client testing framework
untwisterSeed recovery tool for PRNGs.
veracryptDisk encryption with strong security based on TrueCrypt
webfixyOn-the-fly decryption proxy for MikroTik RouterOS WebFig sessions.
x-rsaContains a many of attack types in RSA such as Hasted, Common Modulus, Chinese Remainder Theorem.
xorbruteforcerScript that implements a XOR bruteforcing of a given file, although a specific key can be used too.
xorsearchProgram to search for a given string in an XOR, ROL or ROT encoded binary file.
xortoolA tool to analyze multi-byte xor cipher.
zulucryptFront end to cryptsetup and tcplay and it allows easy management of encrypted block devices.