:: Deepquest ::

The chainbreaker can extract user credential in a Keychain file with Master Key or user password in forensically sound manner. Master Key candidates can be extracted from volafox or volatility keychaindump module.

Arpy is an easy-to-use ARP spoofing MiTM tool for Mac. It provides 3 targeted functions: Packet Sniffing Visited Domains Visited Domains with Gource

Apple Security Advisory 2017-01-23-7 – iTunes for Windows 12.5.5 is now available and addresses code execution vulnerabilities.

EggShell (formerly known as NeonEggShell) is an iOS and OS X surveillance tool written in python. This tool creates an command line session with extra functionality like downloading files, taking pictures, location tracking, and gathering data on a target. Communication between server and target is encrypted with a random 128 bit AES key. EggShell also […]

pwnd.sh is a post-exploitation framework (and an interactive shell) developed in Bash shell scripting. It aims to be cross-platform (Linux, Mac OS X, Solaris etc.) and with little to no external dependencies.

Apple Security Advisory 2017-01-23-2 – macOS 10.12.3 is now available and addresses suffers from code execution and various other security vulnerabilities.

Apple Security Advisory 2017-01-23-1 – iOS 10.2.1 is now available and addresses logic issues, code execution, and multiple other security vulnerabilities.

Apple Security Advisory 2017-01-23-3 – watchOS 3.1.3 is now available and addresses memory corruption and various other security vulnerabilities.

Apple Security Advisory 2017-01-23-4 – tvOS 10.1.1 is now available and addresses buffer overflow, code execution, and various other security vulnerabilities.

Apple Security Advisory 2017-01-23-5 – Safari 10.0.3 is now available and addresses spoofing, data exfiltration, and various other security vulnerabilities.