/projects

Arsenal & Tool Collection (Man Page Format)

NETWHISPER(1) VoidLink Manual NETWHISPER(1)
NAME
netWhisper - Passive network reconnaissance and OSINT aggregation tool
SYNOPSIS
netwhisper -t <target> [-o output.json] [--shodan] [--censys] [--virustotal]
DESCRIPTION

netWhisper is a passive reconnaissance framework that aggregates open-source intelligence from multiple public APIs and databases without sending a single packet to the target. It enumerates subdomains, exposed services, certificate transparency logs, DNS records, and historical WHOIS data.

The tool is designed for the initial reconnaissance phase of a penetration test, providing a comprehensive attack surface map before any active scanning begins.

FEATURES
  • [+] Subdomain enumeration via certificate transparency logs
  • [+] Service fingerprinting from Shodan/Censys datasets
  • [+] Historical DNS resolution tracking
  • [+] GitHub/GitLab repository reconnaissance
  • [+] Employee OSINT via social media aggregation
  • [+] JSON and Markdown report generation
EXAMPLE
$ netwhisper -t example.com --shodan --censys -o report.json
[*] Querying certificate transparency logs...
[+] Found 47 subdomains
[*] Querying Shodan API...
[+] Found 12 exposed services
[*] Querying Censys...
[+] Found 8 additional hosts
[+] Report saved to: report.json
For authorized security testing only. Unauthorized use against systems you do not own or have explicit permission to test is illegal.
CRYPTLOCK(1) VoidLink Manual CRYPTLOCK(1)
NAME
cryptLock - Secure file encryption utility with deniable encryption support
SYNOPSIS
cryptlock encrypt -i <file> -o <output> [-p passphrase] [--deniable]
cryptlock decrypt -i <file> -o <output> [-p passphrase]
DESCRIPTION

cryptLock is a command-line file encryption tool built on top of libsodium. It provides authenticated encryption using XChaCha20-Poly1305 with Argon2id key derivation. The standout feature is its deniable encryption mode, which produces a ciphertext that can be decrypted with two different passphrases to reveal two different plaintexts.

This is achieved by encrypting a real payload and a decoy payload together, with the decoy being the outer layer that satisfies casual inspection.

FEATURES
  • [+] XChaCha20-Poly1305 authenticated encryption
  • [+] Argon2id password-based key derivation
  • [+] Deniable encryption with dual-passphrase support
  • [+] Secure memory wiping (explicit_bzero)
  • [+] Large file streaming encryption (chunked)
  • [+] Cross-platform: Linux, macOS, Windows
EXAMPLE
$ cryptlock encrypt -i secrets.pdf -o secrets.enc -p "correct horse battery staple" --deniable
[*] Deriving key with Argon2id (3 iterations, 64MB)...
[*] Encrypting with XChaCha20-Poly1305...
[*] Deniable layer created with decoy payload
[+] Encryption complete: secrets.enc
[+] File size: 2.4MB | Nonce: 7f3a...b2e1
Always verify the authenticity of this tool via PGP signature before use. Do not trust precompiled binaries from unverified sources.
SHADOWMAPPER(1) VoidLink Manual SHADOWMAPPER(1)
NAME
shadowMapper - Cloud IAM permission enumeration and privilege escalation pathfinder
SYNOPSIS
shadowmapper --provider aws|gcp|azure --profile <profile> [--escalation-check]
DESCRIPTION

shadowMapper enumerates all IAM policies, roles, and permissions across cloud environments to identify potential privilege escalation paths. It builds a directed graph of permission relationships and applies known escalation techniques (e.g., iam:PassRole + ec2:RunInstances) to find exploitable paths from low-privilege to high-privilege access.

Only scan cloud environments you own or have written authorization to assess. Cloud providers may suspend accounts performing unauthorized enumeration.
[guest@voidlink ~/projects]$ cd ..