Lopi

followers

following

stars

Lopi's repositories

HackMan

The idea is to create a game to teach users about security and penetration testing. I started thinking about how being a hardcore gamer turned me into a hacker. For example, let’s take a look at a game called MegaMan; once you encountered a boss, you had to “fuzz” bosses with different weapons to figure out what the boss was vulnerable to. At first, you approach the boss passively to see what the boss can do. Once you understand how the boss interacts with your character, you start firing different weapons to determine what will potentially own the boss. Web application security is no different. You must understand how the web application (boss) is interacting with your browser (character) and begin fuzzing the web application in order to determine what it’s vulnerable to. Imagine a two dimensional side scroller except it teaches the player about security and penetration testing.

Language:HTML6 50

vFeed-Scripts

A python script utilizing the vFeed API to create a customized vulnerability threat feed based on your organization's technologies.

Language:Python6 20

os-scripts

Operating System's Scripts

Language:Shell1 30

apkstudio

APK Studio is a cross-platform & extensible GUI based application (or IDE) for reverse-engineering android applications targeted mainly towards ROM developers & tweakers

Language:C++GPL-3.0020

BloodHound

Six Degrees of Domain Admin

Language:PowerShellGPL-3.0020

c4

x86 JIT compiler in 86 lines

Language:CGPL-2.0020

Clutch

Fast iOS executable dumper

Language:CAGPL-3.0020

cryptoshark

Self-optimizing cross-platform code tracer based on dynamic recompilation

Language:C++NOASSERTION020

cuckoo

A Cuckoo Sandbox Extension for Android

Language:Python020

elm-examples

Some pleasant examples that show off the reactor and get you started

Language:Elm020

fumiko-pygame

an open source jump & run game

Language:PythonNOASSERTION020

gitrob

Reconnaissance tool for GitHub organizations

Language:RubyMIT020

gryffin

Gryffin is a large scale web security scanning platform

Language:JavaScriptBSD-3-Clause020

idb

idb is a tool to simplify some common tasks for iOS pentesting and research

Language:RubyMIT020

Kvasir

Kvasir: Penetration Test Data Management

Language:PythonNOASSERTION020

maltrieve

A tool to retrieve malware directly from the source for security researchers.

Language:PythonGPL-3.0020

nmap

Nmap - the Network Mapper. Github mirror of official SVN repository.

Language:C++NOASSERTION020

onetwopunch

Use unicornscan to quickly scan all open ports, and then pass the open ports to nmap for detailed scans.

Language:ShellMIT020

peda

PEDA - Python Exploit Development Assistance for GDB

Language:PythonNOASSERTION020

Pinject

A TCP Packet Injection tool

Language:PythonMIT020

Pompem

Find exploit tool

Language:Python020

rdpy

Remote Desktop Protocol in Twisted Python

Language:PythonGPL-3.0020

redonion

**BETA** A simple buildscript for network security monitoring on RHEL/CentOS

Language:Shell020

security-check

Application level, attached debug detect and jailbreak checking

Language:CNOASSERTION020

spiderfoot

SpiderFoot, the open source footprinting and intelligence-gathering tool.

Language:PythonGPL-2.0020

time_trial

Time Trial - A tool for performing feasibility analyses of timing attacks

Language:PythonMIT020

viper

Binary analysis framework

Language:PythonNOASSERTION020

Weevely

Stealth tiny web shell

Language:PythonGPL-3.0020

wifiphisher

Fast automated phishing attacks against WPA networks

Language:PythonMIT020

xssValidator

This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.

Language:JavaMIT020