Repository of notes and scripts I use when doing malware analysis
Some scripts that can be useful when dealing with Qakbot
My personnal GhidraFunctionIdDb.
Hope it can save you some time ! Will be updated once in a while.
Generated with FunctionIdHashFunction.py and consumed by FunctionIdMatcher.py
Lazarus Research This repository publishes analysis reports and analysis tools for Operation Dream Job and Operation JTrack for Lazarus. Tools Python
XGuard (Wireguard Server Installer) This Python script should make the installation of a Wireguard VPN server as easy as possible. Wireguard is a mode
ProxyLogon For Python3 ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF-GetWebShell) usage: python ProxyLogon.py --host=exchang
Fat-Stealer is a stealer that allows you to grab the Discord token from a user and open a backdoor in his machine.
IDAFrida A simple IDA plugin to generate FRIDA script. Edit template for functions or you can use the default template. Select functions you want to t
fb-brute Fast Fb Cracking Tool ๐
pgen Pgen is the best brute force password generator and it is improved from the cupp.py The pgen tool is dedicated to Leonardo da Vinci -Time stays l
dns-mf-hazard Tool to check if your DNS comply to Polish Ministry of Finance gambling domains restrictions How to use it? Installation You need python
Filesystem log4j_scanner for windows and Unix. Scanning for CVE-2021-44228, CVE-2021-45046, CVE-2019-17571 Requires a minimum of Python 2.7. Can be ex
POC subprocess โ POC using the subprocess library with Python. References: https://github.com/GuillaumeFalourd/poc-subprocess https://geekflare.com/le
Security-TXT is a python package for retrieving, parsing and manipulating security.txt files.
ExProlog ProxyLogon Full Exploit Chain PoC (CVE-2021โ26855, CVE-2021โ26857, CVE-2021โ26858, CVE-2021โ27065) Usage: exprolog.py [OPTIONS] ExProlog -
# cvepull.py #script that pulls cve collections from NVD.NIST.GOV. #edit line 17 (timedelta) number to change the amount of days to search backwards
Chromepass - Hacking Chrome Saved Passwords and Cookies View Demo ยท Report Bug ยท Request Feature Table of Contents About the Project AV Detection Gett
Python Port Scanner This script tries to check if it's possible to make a connection with the specific endpoint port. This is very useful to ensure se
SLmail5.5-Exploit-BoF Buffer Overflow para SLmail5.5 32 bits con un par de utilidades para que puedas hacer el tuyo REQUISITOS PARA QUE FUNCIONE: Desa
GreedyBear The project goal is to extract data of the attacks detected by a TPOT or a cluster of them and to generate some feeds that can be used to p
Generate your own NFTs and their metadata based on your desired probabilities. Use your own art assets too! Perfect for use with Candy Machine.
CVE-2012-2982 John Hammond | September 4th, 2021 Checking searchsploit for Webmin 1.580 I only saw a Metasploit module for the /file/show.cgi Remote C
CVE-2022-21907 Description POC for CVE-2022-21907: HTTP Protocol Stack Remote Code Execution Vulnerability. create by antx at 2022-01-17. Detail HTTP
50 Sep 13, 2022
3 Nov 04, 2022
112 Dec 01, 2022
21 Jan 01, 2023
133 Dec 24, 2022
8 Jun 29, 2022
2 Jan 31, 2022
2 Jan 01, 2022
4 Jan 09, 2022
2 Nov 28, 2022
3 Feb 07, 2022
130 Dec 15, 2022
1 Dec 18, 2021
622 Jan 04, 2023
7 Feb 26, 2022
15 Jul 30, 2022
72 Jan 01, 2023
7 Sep 16, 2022
25 Dec 08, 2022
365 Nov 30, 2022