Stars
PLEASE USE NEW VERSION: https://github.com/kgretzky/evilginx2
Generate a PNG with a payload embedded in the IDAT chunk (Based off of previous concepts and code -- credit in README)
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the contr…
Proof-of-Concept exploit for CVE-2017-7494(Samba RCE from a writable share)
Tools for auditing WAFS
Open-source pentesting management and automation platform by Salesforce Product Security
Python PTY backdoors - full PTY or nothing!
analyze a web-based network traffic 🕶 to detect central command and control servers
IBM DataPower Configuration Manager and IBM UrbanCode plugin
Effective Python Penetration Testing by Packt Publishing
WikiMo documentation (mainly the security space, but everyone's welcome to use this)
[DEPRECATED] Hiccup is a framework that allows the Burp Suite (a web application security testing tool, http://portswigger.net/burp/) to be extended and customized, through the interface provided b…
Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, T…
Guides, Tools, Tips and such for working with the Shadow Brokers dumps
Fuzzbunch deployment for Debian - Intructions: Readme.md
Jupyter notebooks from the scikit-learn video series
An adversarial example library for constructing attacks, building defenses, and benchmarking both
Script to create templates to use with VirtualBox to make vm detection harder
Netty project - an event-driven asynchronous network application framework
A set of vim, zsh, git, and tmux configuration files.
Define and run multi-container applications with Docker