cxzero

Juan Pablo Perata's starred repositories

jwt-editor

A Burp Suite extension for creating and editing JSON Web Tokens. This tool supports signing and verification of JWS, encryption and decryption of JWE and automation of several well-known attacks against applications that consume JWT.

Language:JavaApache-2.01700

RWXfinder

The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section

Language:C9400

JavaClasses

GeneXus Standard Classes for Java and Android generators.

Language:JavaApache-2.02900

DotNetClasses

GeneXus Standard Classes for .NET and .NET Core generators.

Language:C#Apache-2.01800

TrollStore

Jailed iOS app that can install IPAs permanently with arbitary entitlements and root helpers because it trolls Apple

Language:Objective-CNOASSERTION1716500

CCSupport

Support tweak for CC modules!

Language:LogosMIT11600

adbproxy

ADB proxy for capturing port forward/reverse-forward messages

Language:C1000

darter

:detective: Dart / Flutter VM snapshot analyzer

Language:Jupyter NotebookAGPL-3.030000

blutter

Flutter Mobile Application Reverse Engineering Tool

Language:C++MIT79300

JNI-Frida-Hook

Script to quickly hook natives call to JNI in Android

Language:JavaScript50600

frida-scripts

A collection of my Frida.re instrumentation scripts to facilitate reverse engineering of mobile apps.

Language:JavaScriptMIT119400

APKEnum

Language:Python9700

CVE-2024-4577

PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC

Language:Python17600

param-miner

Language:JavaNOASSERTION116600

x8-Burp

Hidden parameters discovery suite

Language:PythonGPL-3.021800

Doldrums

A Flutter/Dart reverse engineering tool

Language:Python76000

ConscryptTrustUserCerts

Language:ShellAGPL-3.07600

adguardcert

Magisk module that allows using AdGuard's HTTPS filtering for all apps

Language:ShellMIT28400

Tutorial-AndroidNetworkInterception

How to intercept network trafic on Android

20300

android-ssl-pinning-demo

A tiny demo Android app using SSL pinning to block HTTPS MitM interception

Language:KotlinApache-2.010800

community-plugins

Repository for community provided Binary Ninja plugins

Language:PythonMIT41100

Wallbreaker

🔨 Break Java Reverse Engineering form Memory World!

Language:PythonGPL-3.079800

frida-dexdump

A frida tool to dump dex in memory to support security engineers analyzing malware.

Language:PythonGPL-3.0387300

Esteemaudit-Metasploit

Porting for Metasploit of the infamous Esteemaudit RDP Exploit

Language:Python10900

kwetza

Python script to inject existing Android applications with a Meterpreter payload.

Language:SmaliGPL-2.062800

mallet

Mallet is an intercepting proxy for arbitrary protocols

Language:Java25200

reGeorg

The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.

Language:PythonNOASSERTION298100

gowitness

🔍 gowitness - a golang, web screenshot utility using Chrome Headless

Language:GoGPL-3.0280500

CMSeeK

CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs

Language:PythonGPL-3.0226700

ctfr

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

Language:PythonGPL-3.0193300