An IDA pro python script to decrypt Qbot malware strings.
Tested and working with Qbot OBAMA111 https://www.malware-traffic-analysis.net/2021/10/07/index.html
Before using the script make sure to fix the calling convention of the decryption functions like below.
All the decrypted string will be placed as comment next to the decrypt string function call.
Log4j2 Vulnerability Local Scanner (CVE-2021-45046) Log4j 漏洞本地检测脚本,扫描主机上所有java进程,检测是否引入了有漏洞的log4j-core jar包,是否可能遭到远程代码执行攻击(CVE-2021-45046)。上传扫描报告到指定的服
This a simple tool XSS Detection Suite for CTFs games
Ox4Shell Deobfuscate Log4Shell payloads with ease. Description Since the release
Log4jHorizon Exploiting CVE-2021-44228 in VMWare Horizon for remote code execution and more. BLOG COMING SOON Code and README.md this time around are
Crypto Meta Extractor This repository contains the code which extracts some metadata of all the cryptocurrencies listed (9K) on CoinMarketCap. Coding
Django Protected Media Django Protected Media is a Django app that manages media that are considered sensitive in a protected fashion. Not only does t
A wordlist generator tool, that allows you to supply a set of words, giving you the possibility to craft multiple variations from the given words, creating a unique and ideal wordlist to use regardin
#1 使用说明 CVE-2021-44228 log4j 2.x rce漏洞检测工具,对目标链接发起get请求并利用dnslog探测是否有回显 $ python3 log4j-scan.py -h
Instagram Bruter This program will brute force any Instagram account you send it its way given a list of proxies. NOTICE I'm no longer maintaining thi
5GC_API_parse Description 5GC API parse is a BurpSuite extension allowing to assess 5G core network functions, by parsing the OpenAPI 3.0 not supporte
Filesystem log4j_scanner for windows and Unix. Scanning for CVE-2021-44228, CVE-2021-45046, CVE-2019-17571 Requires a minimum of Python 2.7. Can be ex
StrongBox 🔐 A secure way of storing your passwords. 🔑 Why to use StrongBox? StrongBox makes it possible to have a random generated strong password i
check_mkExtension to check for log4j2 CVE-2021-44228 This Plugin wraps around logpresso/CVE-2021-44228-Scanner (Apache License 2.0) How it works Run i
CVE-2022-23046 PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL s
Pardus Lookout We protect the privacy of the data on your computer by using the camera of your Debian based Pardus operating system. The application i
Revealin Uncover the full name of a target on Linkedin. It's just a little PoC exploiting a design flaw. Useful for OSINT. Screenshot Usage $ git clon
Valeria_stealer- Requirements : python 3.9.2 and higher (4Feb 2022) program dete
Purposes ? Hey there is abosolutely no need to do this we do it only to irritate
snowflake-cli Snowflake is a system to defeat internet censorship, made by Tor Project. The system works by volunteers who run the snowflake extension
ApacheRCE ApacheRCE is a small little python script that will allow you to input the apache version 2.4.49-2.4.50 and then input a list of ip addresse
86 Dec 09, 2022
2 Nov 24, 2021
137 Jan 02, 2023
96 Dec 14, 2022
3 Jul 03, 2022
46 Nov 12, 2022
39 Dec 10, 2022
4 Jan 13, 2022
1 Nov 15, 2021
57 Dec 16, 2022
4 Jan 09, 2022
5 Dec 25, 2021
4 Jun 30, 2022
2 Feb 15, 2022
19 Nov 18, 2022
129 Dec 21, 2022
3 May 05, 2022
2 Jan 24, 2022
6 Jul 14, 2022
3 Dec 04, 2022