This repository publishes analysis reports and analysis tools for Operation Dream Job and Operation JTrack for Lazarus.
Python tools for analyzing malware.
Python script to decode URL parameter for BLINDINGCAN_RC4.
Python to decode POST data for BLINDINGCAN_AES.
Hitcon 2021
CODE BLUE 2021
CVE-2021-22205 GitLab CE/EE Preauth RCE using ExifTool This project is for learning only, if someone's rights have been violated, please contact me to
BOF-Roaster is an automated buffer overflow exploit machine which is begin written with Python 3. On first release it was able to successfully break many of the most well-known buffer overflow exampl
FBGen is simple facebook user based wordlist generator using Username/ID and cookie.
infotr A traceroute tool that also displays IP information. This tool has only been tested on Linux. Quick Start First, install this tool from PyPI. p
Hackerone Passive Recon Tool A passive-recon tool that parses through found assets and interacts with the Hackerone API. Setup Simply run setup.sh to
Pachine Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation). Installtion $ pip3 install impacket Usage Impacket v0.9.23 -
CAPEv2 (Python3) has now been released CAPEv2 With the imminent end-of-life for Python 2 (January 1 2020), CAPEv1 will be phased out. Please upgrade t
SpiderFoot is an open source intelligence (OSINT) automation tool. It integrates with just about every data source available and utilises a range of m
ProxyLogon For Python3 ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF-GetWebShell) usage: python ProxyLogon.py --host=exchang
Separation of Mainlobes and Sidelobes in the Ultrasound Image Based on the Spatial Covariance (MIST) and Aperture-Domain Spectrum of Received Signals
Script to calculate Active Directory Kerberos keys (AES256 and AES128) for an account, using its plaintext password
CVE-2021-26084 Confluence OGNL injection CVE-2021-26084 is an Object-Graph Navigation Language (OGNL) injection vulnerability in the Atlassian Conflue
FUD Keylogger That Reports To Discord This python script will capture all of the keystrokes within a given time frame and report them to a Discord Ser
Spring Core RCE - CVE-2022-22965 After Spring Cloud, on March 29, another heavyweight vulnerability of Spring broke out on the Internet: Spring Core R
Burp Extensions This is a collection of extensions to Burp Suite that I have written. getAllParams.py - Version 1.2 This is a python extension that ru
Animal Jam 0day No-Auth Force Password Reset via API Now patched 0day for force reseting an accounts password Used until patched to cause anarchy. Pro
Having a weak password is not good for a system that demands high confidentiality and security of user credentials. It turns out that people find it difficult to make up a strong password that is str
SSLyze SSLyze is a fast and powerful SSL/TLS scanning tool and Python library. SSLyze can analyze the SSL/TLS configuration of a server by connecting
Zip brute is a python script that cracks zip that are password protected using a wordlist dictionary.
A DOM-based G-Suite password sprayer and user enumerator
164 Dec 10, 2022
5 Nov 23, 2021
2 Jul 20, 2022
10 Oct 29, 2022
4 Jan 13, 2022
250 Dec 31, 2022
701 Dec 27, 2022
9k Jan 08, 2023
112 Dec 01, 2022
3 Jan 03, 2023
27 Dec 20, 2022
15 Sep 23, 2022
36 Dec 20, 2022
118 Dec 31, 2022
364 Dec 30, 2022
10 Nov 17, 2022
0 Feb 07, 2022
2.8k Jan 03, 2023
13 Nov 03, 2022
1 Apr 07, 2022