GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → oppsec → tomcter

oppsec / tomcter

Licence: MIT License
😹 Tomcter is a python tool developed to bruteforce Apache Tomcat manager login with Apache Tomcat default credentials.

Programming Languages

python
139335 projects - #7 most used programming language
Dockerfile
14818 projects

Labels

dockerlogintoolapachebruteforcetomcatpentesthacktoberfestapache-tomcatpentest-tool

Projects that are alternatives of or similar to tomcter

Thc Hydra
hydra
Stars: ✭ 5,645 (+31261.11%)
Mutual labels:  bruteforce, pentest, pentest-tool
weakpass generator
generates weak passwords based on current date
Stars: ✭ 36 (+100%)
Mutual labels:  bruteforce, pentest, pentest-tool
uberscan
Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.
Stars: ✭ 31 (+72.22%)
Mutual labels:  bruteforce, pentest, pentest-tool
Dumb
Dumain Bruteforcer - a fast and flexible domain bruteforcer
Stars: ✭ 54 (+200%)
Mutual labels:  bruteforce, pentest-tool
haiti
🔑 Hash type identifier (CLI & lib)
Stars: ✭ 287 (+1494.44%)
Mutual labels:  pentest, pentest-tool
1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Stars: ✭ 3,715 (+20538.89%)
Mutual labels:  pentest, pentest-tool
tomcat role
Ansible role to install Apache Tomcat Java Servlet Container
Stars: ✭ 13 (-27.78%)
Mutual labels:  tomcat, apache-tomcat
MailRipV3
SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.
Stars: ✭ 28 (+55.56%)
Mutual labels:  pentest, pentest-tool
Bifrost
Bifrost C2. Open-source post-exploitation using Discord API
Stars: ✭ 37 (+105.56%)
Mutual labels:  pentest, pentest-tool
awesome-pentest-tools
List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.
Stars: ✭ 34 (+88.89%)
Mutual labels:  pentest, pentest-tool
GetPwd
It's a tool which generate a dictionary from a csv containing personals informations. Generate all common passwords based on perso info. (leet transformations and combinatory processing)
Stars: ✭ 46 (+155.56%)
Mutual labels:  bruteforce, pentest
CVE-2021-41773 CVE-2021-42013
Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE
Stars: ✭ 20 (+11.11%)
Mutual labels:  apache, pentest
RPCScan
Tool to communicate with RPC services and check misconfigurations on NFS shares
Stars: ✭ 53 (+194.44%)
Mutual labels:  pentest, pentest-tool
volana
🌒 Shell command obfuscation to avoid detection systems
Stars: ✭ 38 (+111.11%)
Mutual labels:  pentest, pentest-tool
ComPP
Company Passwords Profiler (aka ComPP) helps making a bruteforce wordlist for a targeted company.
Stars: ✭ 44 (+144.44%)
Mutual labels:  bruteforce, pentest
d00r
Simple directory brute-force tool written with python.
Stars: ✭ 35 (+94.44%)
Mutual labels:  login, bruteforce
winallenum
This powershell script has got to run in remote hacked windows host, even for pivoting
Stars: ✭ 13 (-27.78%)
Mutual labels:  pentest, pentest-tool
offensive-docker-vps
Create a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.
Stars: ✭ 66 (+266.67%)
Mutual labels:  pentest, pentest-tool
AzureAD Autologon Brute
Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/
Stars: ✭ 90 (+400%)
Mutual labels:  bruteforce, pentest
PeekABoo
PeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.
Stars: ✭ 120 (+566.67%)
Mutual labels:  pentest, pentest-tool
View All Similar Projects ➔

😹 Tomcter

Forcing Apache Tomcat to give me the credentials!


😹 Tomcter is a python tool developed to bruteforce Apache Tomcat manager login with Apache Tomcat default credentials.


Installing / Getting started

A quick guide of how to install and use Tomcter. 

1. Clone the repository with: git clone https://github.com/knightm4re/tomcter.git
2. Install the libraries with: pip3 install -r requirements.txt
3. Create a text file and place your targets in it
4. Run Tomcter with: python3 main.py -l filename.txt

🐳 Docker

If you want to use Tomcter in a Docker container, follow this commands:

1. Clone the repository - git clone https://github.com/knightm4re/tomcter.git
2. Build the image - sudo docker build -t tomcter:latest .
3. Run container - sudo docker run tomcter:latest



⚙️ Pre-requisites

  • Python 3 installed on your machine.
  • Install the libraries with pip3 install -r requirements.txt



Features

  • Fast bruteforce
  • Low RAM and CPU usage
  • Open-Source
  • Python ❤️



🌐 Resources

Python Repo
Reconshell



🔨 Contributing

A quick guide of how to contribute with the project.

1. Create a fork from Tomcter repository
2. Clone the repository with git clone https://github.com/your/tomcter.git
3. Type cd tomcter/
4. Create a branch and make your changes
5. Commit and make a git push
6. Open a pull request



⚠️ Warning

  • The developer is not responsible for any malicious use of this tool.
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].