“Hack-Tools” is a utility integrated on Firefox/Chrome used to find Website and Server vulnerabilities. We often need many Tools, encryption and decryption programs in the process of finding errors or playing challenges CTFso this tool is specially designed for all these purposes and it’s not even a tool, it’s basically an extension for Chrome and Firefox browsers.
Join the channel Telegram of the AnonyViet 👉 Link 👈 |
The process of installing the Hack-Tools utility is extremely simple. You just click here if using Firefox or click here if using Chrome and click Add to Firefox or Chrome to install this extension.
Reverse Shell
You just need to give Hack-Tools the localhost IP address and it will automatically generate all the necessary reverse shells that we can use for red teamfind bugs, challenge CTF.
But that’s not all, because it can create multiple reverse shell layers that I can’t show you at the same time.
PHP Reverse Shell
If the web application is vulnerable to the vulnerability file upload then we can use “pentestmonkey reverse shell” and get the session reverse shell interact on the target machine.
Remote Code Execution
Likewise, if we find an RCE vulnerability in a web application then we can use such payload to get the target machine’s cmd shell.
TTY Spawn Shell
Usually we get the shell of the target machine without the TTY, but through the given command we can get the tty shell.
LFI
Local File Inclusion is a vulnerability found in web applications. If you are a beginner or don’t have much time, finding LFI vulnerabilities in web applications can be helpful for you.
XSS
XSS stands for cross site scripting, which is a type of security vulnerability. This utility also provides you with the payload to exploit the XSS vulnerability.
SQL Injection
SQL injection is at the top of all injection vulnerabilities and this utility also provides us with payloads that can exploit SQL injection vulnerabilities.
Base64 Encoder and Decoder
Usually I use another third-party app or website to encode or decode in the CTF challenge, but you can even do so through this extension.
Hash Generators
You can use this feature to encrypt your own text using different encoding styles such as MD5.
URL Encoder / Decoder
This feature allows us to encode plain text in URL encoding and decode URL encoding to plain text.
Template Injections
If you have found a template injection vulnerability then you can use all the payloads the extension provides to attack this vulnerability.
It can be said that in addition to Hack Bar, Hack-Tools is the most commonly used utility by Hackers to exploit website vulnerabilities as well as servers with security weaknesses. You can use it to play CTF or test your system. In addition, you can also see more hacking tools here.