f00bar10

4nonimizer

A bash script for anonymizing the public IP used to browsing Internet, managing the connection to TOR network and to different VPNs providers (OpenVPN)

AndroidMalware_2018

Android malware threats that spread in 2018

AndroidMalware_2019

Popular Android threats in 2019

AndroidMalware_2020

Popular Android malware seen in 2020

androSecTest

Automate the setup of your Android Pentest and perform automatically static tests

antire_book

Example code from "Programming Linux Anti-Reversing Techniques"

ctf-tools

Some setup scripts for security research tools.

CVE-2020-1472

PoC for Zerologon - all research credits go to Tom Tervoort of Secura

dont_panic

Linux bind shell with anti-reverse engineering techniques

EvilSelenium

EvilSelenium is a tool that weaponizes Selenium to attack Chrome.

exploits

ffmpeg-avi-m3u-xbin

GFPGAN

GFPGAN aims at developing Practical Algorithms for Real-world Face Restoration.

ios-breakmedaddy

ios tingz

ios-dontpopme

dontpopme bitches

Magic-CheckList-for-Web-Applications

Web Security Checklist (Bug Bounty & Pentesting)

me_cleaner

Cleaner for ME firmware images

Mobile-Security-Framework-MobSF

Mobile Security Framework is an intelligent, all-in-one open source mobile application (Android/iOS) automated pen-testing framework capable of performing static, dynamic analysis and web API testing.

opensquat

The openSquat is an opensource Intelligence (OSINT) project to identify cybersquatting threats to specific companies or domains, such as domain squatting, typosquatting, IDN homograph attacks, phishing and scams.

PENTESTING-BIBLE

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

Phirautee

A proof of concept crypto virus to spread user awareness about attacks and implications of ransomwares. Phirautee is written purely using PowerShell and does not require any third-party libraries. This tool steals the information, holds an organisation’s data to hostage for payments or permanently encrypts/deletes the organisation data.

PRET

Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.

public-pentesting-reports

Curated list of public penetration test reports released by several consulting firms and academic security groups

pyTelegramBotAPI

Python Telegram bot api.

ssh-audit

SSH server auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)

sshuttle

Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.

ToR-Browser-0day-JavaScript-Exploit

A Javascript zero-day exploit for the TOR Browser which is based on Firefox Browser.

VolUtility

Web App for Volatility framework

warberry

WarBerryPi - Tactical Exploitation

Winpayloads

Undetectable Windows Payload Generation