Tagged articles

Security Tool

7 articles · Page 1 of 1
Black & White Path
Black & White Path
Jul 2, 2026 · Information Security

Unauthenticated Enumeration of All Microsoft Account Authentication Methods with CredSpy

CredSpy, an open‑source tool released by security researcher RedByte1337, leverages Microsoft’s public GetCredentialType API to enumerate, without any authentication, the full set of supported authentication methods for a given Microsoft 365 (Entra ID) account, aiding red‑team reconnaissance and defensive assessments.

Credential EnumerationGetCredentialType APIMicrosoft 365
0 likes · 8 min read
Unauthenticated Enumeration of All Microsoft Account Authentication Methods with CredSpy
Black & White Path
Black & White Path
Jul 2, 2026 · Information Security

Detect MCP, A2A Agents, and Open LLM Interfaces Using AgentScan

AgentScan extends traditional port scanning by identifying MCP servers, A2A agents, and open LLM interfaces, revealing available tools, agent capabilities, model lists, and authentication status, with detailed usage commands and configurable parameters.

A2A AgentAgentScanLLM
0 likes · 3 min read
Detect MCP, A2A Agents, and Open LLM Interfaces Using AgentScan
Black & White Path
Black & White Path
Jun 19, 2026 · Information Security

Storm-Breaker: A Multi‑Feature Social Engineering Penetration Tool for Red Teams

Storm‑Breaker is an open‑source red‑team framework built with PHP and Python that provides device information harvesting, real‑time location tracking, remote camera and microphone access via deceptive web pages, offers a visual web panel, supports multiple deployment platforms (Kali, macOS, Android/Termux, self‑hosted), and includes installation commands, default credentials, and legal usage guidelines.

PHPPythonSecurity Tool
0 likes · 5 min read
Storm-Breaker: A Multi‑Feature Social Engineering Penetration Tool for Red Teams
Black & White Path
Black & White Path
May 30, 2026 · Information Security

DigDeep: A Sensitive Information Mining Tool for Penetration Testing

DigDeep is a Java‑based tool that efficiently extracts nearly one hundred types of high‑, medium‑, and low‑risk sensitive data from source files across cloud, mini‑program, app, and web environments, offering recursive scanning, risk‑level filtering, deduplication, and multi‑format export to aid security audits.

DigDeepJavaSecurity Tool
0 likes · 4 min read
DigDeep: A Sensitive Information Mining Tool for Penetration Testing
Software Development Quality
Software Development Quality
Apr 1, 2024 · Information Security

Master One-Click Info Collection & Scanning with jws-cli: A Python Security Tool

jws-cli is a Python‑based, extensible one‑click information collection and scanning tool that automates subdomain discovery, CDN and WAF detection, port and C‑segment scanning, and integrates third‑party vulnerability scanners, offering visual reports and email delivery for rapid penetration testing workflows.

AutomationPythonSecurity Tool
0 likes · 6 min read
Master One-Click Info Collection & Scanning with jws-cli: A Python Security Tool
Software Development Quality
Software Development Quality
Nov 28, 2023 · Information Security

D‑Eyes: Fast Incident‑Response Scanning for Ransomware, Malware & Host Configs

D‑Eyes is an open‑source detection and response tool from NSFOCUS that runs on Windows and Linux, offering command‑line utilities to scan files, processes, host information, network connections, and perform baseline and software‑supply‑chain checks, with built‑in YARA rules for ransomware, mining malware, botnets, and webshells.

LinuxSecurity ToolWindows
0 likes · 9 min read
D‑Eyes: Fast Incident‑Response Scanning for Ransomware, Malware & Host Configs