Welcome to the RemoveEA project page !
(I’m french, so there are maybe some spelling mistakes)
Since Windows 98, Microsoft introduced a system for identifying users. This system is defined by several programs which officially « contribute to improve the Windows user’s experience », but which, informally, send a lot of informations about your computer to Microsoft. The « improvement of the Windows user’s experience » is enabled by default when you buy your computer, without your knowledge.
BackDroid Custom ROM provides you with great network testing tools on top of a stable CyanogenMod Kernel.
WARNING: I TAKE NO RESPONSIBILITY IF YOUR DEVICE GETS BRICKED, BECOMES UNSTABLE OR IS POSSESSED BY DEMONS OF ANY KIND. ANY POORLY FORMED INSULTS WILL BE PUBLISHED HERE SO WE CAN LAUGH AT THEM.
Desire S is the only device currently supported. It is in early beta so some bits are still half formed. I’m new at this so please be kind with your Criticism .
Included Tools:
- Shark for Root - TCP dumping Tool
- NetworkDiscovery - WiFi finder tool
- Wifi Analyzer - Advanced details about networks
- Wireless tether - Provide a Wifi hotspot
Enema is not autohacking software. This is dynamic tool for people, who knows what to do.
Whats new:
- Added Blind injection
Features:
- Multi-platform.
- User-friendly graphical interface.
- Multithreaded.
- Dump.
- Customise your queries
- Plugins to automate attacks
Supported for today:
POST, GET, Headers (User-Agent, Cookie, Referer, X-Forwarded-For, Custom Header …)
MSSQL >=2000 and MySQL>=5.0
Injection methods supported for today:
- Error based injection.
- Union based injection (using subquery).
- Blind (time and boolean based
Ra.2 - Blackbox DOM-based XSS Scanner is our approach towards finding a solution to the problem of detecting DOM-based Cross-Site Scripting vulnerabilities in Web-Application automatically, effectively and fast.
Ra.2 is basically a lighweight Mozilla Firefox Add-on that uses a very simple yet effective and unique approach to detect most DOM-based XSS vulnerabilities, if not all.
Being a browser-add on its a session-aware tool which can scan a web-application that requires authentication, although the user needs to manually needs to authenticate into the application, prior to scanning. Ra.2 uses custom collected list of XSS vectors which has been heavily modified to be compatible with its scanning technology. The add-on also implements basic browser intrumentation to simulate a human interaction to trigger some hard to detect DOM-based XSS conditions.
Installation :
1. Download the “ra.two.xpi” file and install it within Mozilla Firefox. We have tested it to be working fine on Mozilla Firefox Version 3.6.0 running on Windows 7 64bit. Your mileage may vary.
2. Download the archive “vectors.zip”. Extract the contents (“xss.txt”) to a folder. Rename the folder “xss” and copy it to the root of “C:”. The resulting path should be “C:\xss\xss.txt”.
3. Download the archive “reporting-tool.zip”. Extract the contents to the webroot of your Apache server. We have tested it using the XAMPP package (http://www.apachefriends.org/en/xampp.html). In our case the path is “C:\xampp\htdocs\xss"
4. Finally import the database schema to the MySQL via phpMyAdmin, required for the reporting tool.
5. The tool should be ready to use. If you find anything not working or buggy, please email us or raise a ticket at http://code.google.com/p/ra2-dom-xss-scanner/issues/list
Download Version :
Ra.2 DOM XSS Scanner - Mozilla Add-On Installer : ra.two.xpi (70.9 KB)
Customized Vectors List : vectors.zip (1.3 KB) | This package contains the customized XSS vectors list that are only compatible with this tool. This list is a modified version of RSnake’s XSS Vectors List and the fuzzdb project..
Reporting Tool : reporting-tool.zip (95.1 KB) | This package contains the PHP+MySQL based reporting tool and the database schema.
BigBench is a http penetration tool. It allows you to test the performance of any web server with very high loads.
Requirements :
- Ruby 1.9+
- Redis - only if you’re testing with multiple hosts
Can I test with a single machine? Yes, BigBench allows you to run your tests against every host from your local machine. The command for this looks like this:
bigbench run local example.rb
Can I also test on multiple machines? Yes! BigBench uses a bot design pattern which means you can run your tests from multiple hosts. Everything you need for this is a redis that is reachable from all testing hosts. Every host simply starts a bot that is checking for a new test receipt every minute like this:
bigbench start bot redis_url:port redis_password
Then to run the tests from all hosts simply use the same receipt as you would use for a local run and call it like this:
bigbench run bots example.rb redis_url:port redis_password
This will upload the test receipt to all bots and make them run it. Every bot reports its results back to the redis and the local machine then combines, and writes them to the output file. So you test with the same receipts and get the same results, no matter if your testing from the local host or with multiple bots.
Then to run the tests from all hosts simply use the same receipt as you would use for a local run and call it like this:
bigbench run bots example.rb redis_url:port redis_password
This will upload the test receipt to all bots and make them run it. Every bot reports its results back to the redis and the local machine then combines, and writes them to the output file. So you test with the same receipts and get the same results, no matter if your testing from the local host or with multiple bots.
Libcrafter is a high level library for C++ designed to facilitate the creation and decoding of network packets. It is able to craft or decode packets of most common networks protocols, send them on the wire, capture them and match requests and replies. It enables the creation of networking tools in a few lines with a interface very similar to Scapy. A packet is described as layers that you stack one upon the other. Fields of each layer have useful default values that you can overload.
httest is a script based tool for testing and benchmarking web applications, web servers, proxy servers and web browsers. httest can emulate clients and servers in the same test script, very useful for testing proxys.
Features :
- HTTP server client simulation
- SSL support
- SOCKS support
- Request/response validation
- Cut and paste from request/response
- Execute shell commands and use output in HTTP stream
- Full ICAP support
- IPv6 support
- NTLM authentication tool
- Simple SMTP support
- Simple POP3 support
- Lua support
- Websocket support
ChangeLog V2.2.0 :
*) httest: Javascript BLOCK support
*) httest: Improve formatings on output
*) httest: Bugfix non working _SEQUENCE command and add a test for verify
even the bad case
*) httest: Add _ASSERT “” command for arithmetical assertions,
cleaner and better readable than _IF … _ELSE … _END
dbd is a Netcat-clone, designed to be portable and offer strong encryption. It runs on Unix-like operating systems and on Microsoft Win32. dbd features AES-CBC-128 + HMAC-SHA1 encryption (by Christophe Devine), program execution (-e option), choosing source port, continuous reconnection with delay, and some other nice features. dbd supports TCP/IP communication only. Source code and binaries are distributed under the GNU General Public License.
