0ca

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

clamav-devel

ClamAV Development

cookie_crimes

Read local Chrome cookies without root or decrypting

swftools_crashes

A repository with 40 analyzed crashes for swftools

curl

A command line tool and library for transferring data with URL syntax, supporting HTTP, HTTPS, FTP, FTPS, GOPHER, TFTP, SCP, SFTP, SMB, TELNET, DICT, LDAP, LDAPS, FILE, IMAP, SMTP, POP3, RTSP and RTMP. libcurl offers a myriad of powerful features

CVE-2019-12744

Remote Command Execution through Unvalidated File Upload in SeedDMS versions <5.1.11

Documentation

Backing documentation for docs.mythic-c2.net

driller

Driller: augmenting AFL with symbolic execution!

evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

FingerprintUSBHost

An Arduino USB plugin that attempts to guess the host OS

FOCA

Tool to find metadata and hidden information in the documents.

GithubCloner

A script that clones Github repositories of users and organizations.

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

HealthInspector

JXA situational awareness helper by simply reading specific files on a filesystem

LegacyOSXKVM

Run Legacy Mac OS X (10-10.12) on QEMU/KVM. With OpenCore + Snow Leopard OOB support now! No Mac system is required.

libfuzzer-workshop

Repository for materials of "Modern fuzzing of C/C++ Projects" workshop.

linux-pam-backdoor

Linux PAM Backdoor

macro_pack

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

nmap_fuzzing

openai-python

The OpenAI Python library provides convenient access to the OpenAI API from applications written in the Python language.

ploting_example

Example ploting ping response time with gnuplot & matplotlib

PMapper

A tool for quickly evaluating IAM permissions in AWS.

Ponce

IDA 2016 plugin contest winner! Symbolic Execution just one-click away!

poseidon

Poseidon is a Golang agent targeting Linux and macOS

python_snippets

A set of python snippets showcasing specific functionality, useful to put together code fast

singularity

A DNS rebinding attack framework

SirepRAT

Remote Command Execution as SYSTEM on Windows IoT Core

terraform_attack_automation

Automation associated with our talk: Attacking and Defending Infrastructure with Terraform

theevilbit.github.io

blog

zzuf_lib