RAHMOUNIDEV

Private_Tooling

The attack chain.

Seven tools, seven layers. Hover to isolate the signal. Click to go deep. Authorized engagements only — none of this is on GitHub.

RF / SDR22 modules

SIGINT

RF & Signals Intelligence

RTL-SDRHackRFProxmark3Flipper Zero

Capabilities

  • OOK relay · POCSAG decode
  • TPMS / tire pressure intercept
  • NOAA APT satellite downlink
  • NFC/RFID clone & emulate
  • BLE GATT enumerate & spoof
  • 802.11 deauth · Evil Twin · KARMA
Deep dive
802.11Layer 2–7

HERMES

Network Attack Toolkit

PythonScapyLinuxCustom implants

Capabilities

  • ARP poison · LLMNR / NBT-NS
  • SSL strip · HSTS bypass
  • Covert channel over DNS/ICMP
  • VLAN hopping
  • 802.1X bypass
  • Passive traffic intercept
Deep dive
Initial Access21 modules

PHOBOS

Weaponized Delivery Factory

Node.jsTypeScriptNSISPowerShell

Capabilities

  • Office macro (VBA/XLM)
  • HTML smuggling
  • PE32+ XLL add-in
  • WIM dropper
  • Steganographic PNG payload
  • ISO / LNK container
Deep dive
Web / API69 modules

ARES

Web Exploitation & Recon

Node.jsTypeScriptBurp APIChromium

Capabilities

  • SQLi / blind SQLi / OOB
  • SSTI · XSS · CMDi
  • JWT algorithm confusion
  • WebSocket attack surface
  • IAM privilege escalation
  • CVE-targeted probing
Deep dive
C2 / PersistenceGo beacon + TS teamserver

NYX

Encrypted C2 Infrastructure

GoTypeScriptReact

Capabilities

  • X25519 key exchange
  • AES-256-GCM payload encryption
  • DNS-over-HTTPS transport
  • AMSI / ETW bypass
  • Process injection + ghosting
  • BOF support
Deep dive
Post-Ex / ADimpacket-based

STYX

Active Directory Attack Suite

Pythonimpacket

Capabilities

  • Kerberoasting · AS-REP roasting
  • DCSync (secretsdump)
  • Golden / Silver ticket forge
  • BloodHound-compatible recon
  • NTLM relay chains
  • ACL privilege escalation
Deep dive
Mobile / TelecomSS7 / Diameter / Android / iOS

PROTEUS

Mobile & Cellular Attack Suite

PythonSS7 / MAPFrida

Capabilities

  • SS7 MAP location tracking
  • IMSI catcher via RACH sweep
  • Android APK repackage + inject
  • iOS provisioning abuse
  • Diameter AVP manipulation
  • Femtocell exploitation
Deep dive