Black Hat Arsenal USA 2018 — The w0w lineup

After the huge success of Black Hat Arsenal USA 2017, @toolswatch has now announced the list of tools selected for Black Hat Arsenal USA 2018.

This time there were a huge number of proposals than expected, so the Arsenal team had a tough time selecting the tools.

NOTE: If you have submitted a proposal and didn’t get selected, don’t worry. Please do submit it again for Black Hat Arsenal EU 2018 / ASIA 2019. The rejected tools don’t necessarily mean that they aren’t good. Also the rejected tools are on the priority list for consideration in upcoming Black Hat Arsenal events.

Some of the selected tools are already present on GitHub and some are yet to be uploaded. This article contains the links to their respective repositories. The tools are arranged according to their tracks. If you like the tool, go to its repository and click Watch to keep updated on the latest commits and pushes.

Some tools will be updated during/after the Arsenal event. Links to the GitHub repositories of those tools will be eventually updated in this article.

If you feel that this article is missing links to some Arsenal tools hosted on GitHub, please comment so that it will updated.

NOTE: Arsenal Theater Demos are denoted using the Projector emoji — 📽️

Android, iOS and Mobile Hacking

• Damn Vulnerable iOS App: Swift Edition 
  https://github.com/prateek147/DVIA-v2
  Presenter: Prateek Gianchandani (@prateekg147)

Code Assessment

• OWASP Dependency-Check 
  https://github.com/jeremylong/DependencyCheck
  Presenter: Jeremy Long (@ctxt)

• Puma Scan 
  https://github.com/pumasecurity/puma-scan
  Twitter: (@puma_scan)
  Presenter: Eric Johnson (@emjohn20)

Cryptography

• DeepViolet: SSL/TLS Scanning API & Tools 
  https://github.com/spoofzu/DeepViolet
  Presenter: Milton Smith (@spoofzu)

Data Forensics and Incident Response

• Bro: Do You Bro? Beginner to Expert 
  https://github.com/bro/bro
  Presenter: Seth Hall (@remor)

• CyBot: Open-Source Threat Intelligence Chat Bot (Full Circle)
  https://github.com/CylanceSPEAR/CyBot
  Presenter: Tony Lee

• LogonTracer 
  https://github.com/JPCERTCC/LogonTracer
  Presenters: Shusei Tomonaga (@shu_tom), Tomoaki Tani

• rastrea2r (reloaded!): Collecting & Hunting for IOCs with Gusto and Style 
  https://github.com/rastrea2r/rastrea2r
  Presenters: Ismael Valenzuela (@aboutsecurity), Sudheendra Bhat

• RedHunt OS (VM): A Virtual Machine for Adversary Emulation and Threat Hunting 
  https://github.com/redhuntlabs/RedHunt-OS
  Presenter: Sudhanshu Chauhan (@Sudhanshu_C)

Exploitation and Ethical Hacking

• AVET: AntiVirus Evasion Tool 
  https://github.com/govolution/avet
  Presenter: Daniel Sauder (@DanielX4v3r)

• DSP: Docker Security Playground 
  https://github.com/giper45/DockerSecurityPlayground
  Presenter: Simon Pietro Romano (@spromano)

• hideNsneak: An Attack Obfuscation Framework 
  https://github.com/rmikehodges/hideNsneak
  Presenters: Michelle Hodges, Mike Hodges (@rmikehodges)

• Merlin 
  https://github.com/Ne0nd0g/merlin
  Presenter: Russel Van Tuyl (@Ne0nd0g)

• RouterSploit 
  https://github.com/threat9/routersploit
  Twitter: @routersploit
  Presenters: Blane Cordes, Marcin Bury

Hardware/Embedded

• ChipWhisperer 
  https://github.com/newaetech/chipwhisperer
  Presenter: Colin O’Flynn (@colinoflynn)

• 📽️ JTAGulator: Uncovering the Achilles Heel of Hardware Security
  https://github.com/grandideastudio/jtagulator
  Presenter: Joe Grand (@joegrand)

• Micro-Renovator: Bringing Processor Firmware up to Code 
  https://github.com/syncsrc/MicroRenovator
  Presenter: Matt King (@syncsrc)

• TumbleRF: RF Fuzzing Made Easy 
  https://github.com/riverloopsec/tumblerf
  Presenters: Matt Knight (@embeddedsec)

• Walrus: Make the Most of Your Card Cloning Devices 
  https://github.com/TeamWalrus/Walrus
  Presenters: Daniel Underhay, Matthew Daley

Internet of Things

• An Extensible Dynamic Analysis Framework for IoT Devices 
  https://github.com/sycurelab/DECAF
  Presenters: Heng Yin, Xunchao Hu, Yaowen Zheng

• BLE CTF Project 
  https://github.com/hackgnar/ble_ctf
  Presenter: Ryan Holeman (@hackgnar)

• WHID Injector and WHID Elite: A New Generation of HID Offensive Devices 
  https://github.com/whid-injector/WHID
  Presenter: Luca Bongiorni (@LucaBongiorni)

Malware Defense

• Advanced Deep Learning Analytic Platform Made Easy for Every Security Researcher 
  https://github.com/intel/Resilient-ML-Research-Platform
  Presenters: Evan Yang, Li Chen

• EKTotal 
  https://github.com/nao-sec/ektotal
  Presenters: Keita Nomura, Rintaro Koike

• Firmware Audit: Platform Firmware Security Automation for Blue Teams and DFIR 
  https://github.com/PreOS-Security/fwaudit
  Presenters: Lee Fisher (@LeeFisher_PreOS), Paul English

• MaliceIO 
  https://github.com/maliceio/malice
  Twitter: @maliceio
  Presenter: Josh Maine

• Objective-See’s MacOS Security Tools
  https://github.com/objective-see
  Twitter: @objective_see
  Presenter: Patrick Wardle (@patrickwardle)

Malware Offense

• BloodHound 1.5 
  https://github.com/BloodHoundAD/BloodHound
  Presenters: Andy Robbins (@_wald0), Rohan Vazarkar (@CptJesus)

Network Attacks

• Armory 
  https://github.com/depthsecurity/armory
  Presenter: Daniel Lawson (@fang0654)

• Chiron: An Advanced IPv6 Security Assessment and Penetration Testing Framework 
  https://github.com/aatlasis/Chiron
  Presenter: Antonios Atlasis (@AntoniosAtlasis)

• DELTA: SDN Security Evaluation Framework 
  https://github.com/OpenNetworkingFoundation/DELTA
  Presenters: Jinwoo Kim, Seungsoo Lee, Seungwon Shin, Seungwon Woo

• Mallet: An Intercepting Proxy for Arbitrary Protocols 
  https://github.com/sensepost/mallet
  Presenter: Rogan Dawes (@RoganDawes)

• PowerUpSQL: A PowerShell Toolkit for Attacking SQL Servers in Enterprise Environments 
  https://github.com/NetSPI/PowerUpSQL
  Presenters: Antti Rantasaari, Scott Sutherland (@_nullbind)

• 📽️ WarBerryPi 
  https://github.com/secgroundzero/warberry
  Presenters: Stella Constantinou, Yiannis Ioannides

Network Defense

• ANWI (All New Wireless IDS): The $5 WIDS 
  https://github.com/SanketKarpe/anwi
  Presenters: Rishikesh Bhide, Sanket Karpe

• CHIRON: Home-Based Network Analytics & Machine Learning Threat Detection Framework 
  https://github.com/jzadeh/chiron-elk
  Presenters: Joseph Zadeh (@JosephZadeh), Rod Soto (@rodsoto)

• Cloud Security Suite: One Stop Tool for AWS/GCP/Azure Security Audit 
  https://github.com/SecurityFTW/cs-suite
  Twitter: @CS_Suite
  Presenters: Divya John, Jayesh Chauhan (@jayeshsch), Shivankar Madaan (@shivankarmadaan)

• DejaVu: An Open Source Deception Framework 
  https://github.com/bhdresh/Dejavu
  Presenters: Bhadreshkumar Patel (@bhdresh), Harish Ramadoss (@hramados)

OSINT — Open Source Intelligence

• DataSploit 2.0 
  https://github.com/DataSploit/datasploit
  Twitter: @datasploit
  Presenter: Shubham Mittal (@upgoingstar)

• 📽️ Dradis Framework: Learn How to Cut Your Reporting Time in Half 
  https://github.com/dradis/dradis-ce
  Twitter: @dradisfw
  Presenter: Daniel Martin (@etdsoft)

Reverse Engineering

• Snake: The Malware Storage Zoo
  https://github.com/countercept/snake
  Presenter: Alex Kornitzer (@AlexKornitzer)

Smart Grid / Industrial Security

• 📽️ GRFICS: A Graphical Realism Framework for Industrial Control Simulations 
  https://github.com/djformby/GRFICS
  Presenter: David Formby

Vulnerability Assessment

• 📽️ Adversarial Robustness Toolbox for Machine Learning Models
  https://github.com/IBM/adversarial-robustness-toolbox
  Presenter: Irina Nicolae

• Android Dynamic Analysis Tool (ADA) 
  https://github.com/ANELKAOS/ada
  Presenter: Anelkaos (@ANELKAOS1)

• 📽️ Archery: Open Source Vulnerability Assessment and Management 
  https://github.com/archerysec/archerysec
  Twitter: @ArcherySec
  Presenter: Anand Tiwari (@anandtiwarics)

• boofuzz 
  https://github.com/jtpereyda/boofuzz
  Presenter: Joshua Pereyda (@jtpereyda)

• BTA 
  https://github.com/airbus-seclab/bta
  Presenter: Joffrey Czarny (@_Sn0rkY)

• Deep Exploit 
  https://github.com/13o-bbr-bbq/machine_learning_security/tree/master/DeepExploit
  Presenter: Isao Takaesu (@bbr_bbq)

• Halcyon IDE: For Nmap Script Developers 
  https://github.com/s4n7h0/Halcyon
  Presenter: Sanoop Thomas (@s4n7h0)

• 📽️ SimpleRisk 
  https://github.com/simplerisk
  Twitter: @simpleriskfree
  Presenter: Josh Sokol (@joshsokol)

• 📽️ TROMMEL 
  https://github.com/CERTCC/trommel
  Presenter: Kyle O’Meara

Web AppSec

• A Look at ModSec 3.0 for NGINX: A Software Web Application Firewall 
  https://github.com/SpiderLabs/ModSecurity
  Presenter: Kevin Jones

• Astra: Automated Security Testing For REST APIs 
  https://github.com/flipkart-incubator/Astra
  Presenters: Ankur Bhargava (@_AnkurB), Sagar Popat (@popat_sagar)

• Burp Replicator: Automate Reproduction of Complex Vulnerabilities 
  https://github.com/PortSwigger/replicator
  Presenter: Paul Johnston (@paulpaj)

• OWASP Offensive Web Testing Framework 
  https://github.com/owtf/owtf
  Twitter: @owtfp
  Presenter: Viyat Bhalodia (@viyat)

• OWASP JoomScan Project 
  https://github.com/rezasp/joomscan
  Twitter: @OWASP_JoomScan ‏
  Presenters: Babak Amin Azad, Mohammad Reza Espargham (@rezesp) , Vahid Behzadan (@vbehzadan)

• WSSAT 
  https://github.com/YalcinYolalan/WSSAT
  Presenters: Mehmet Yalcin YOLALAN (@yyolalan), Salih TALAY

---

If you haven’t looked at the selected tools, check the below embed to view the complete details of the tools and its presenters.

---