jfoug

rulez_toolz

Rule and word tools for JtR.

add-custom-header

A Burp Suite extension to add a custom header (e.g. JWT)

autoit-poker_bot

AutoIt script that attempts to fully automate the process of playing texas-holdem poker.

diceware

crypto secure diceware passphrase generation

DirSaber

sensitve dir & file scaner

exploits

Miscellaneous exploit code

gitrob

Reconnaissance tool for GitHub organizations

HackerProjectAutomation

icmpsh

Simple reverse ICMP shell

jfoug.github.io

Public website for Evony JD2

jtrTestSuite

Test Suite for John the Ripper

juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

LCM_RNG_Crack

Break Linear Congruent Modular RNG, obtaining a, k and M from a list of output.

Markdown-XSS-Payloads

XSS payloads for exploiting Markdown syntax

mentalist

Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat and John the Ripper.

Module-Build-Pluggable-XSUtil

nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

oclHashcat

World's fastest and most advanced GPGPU-based password recovery utility

openholdembot

OpenHoldem Poker Bot (free, open-source poker-bot for Texas Hold'em and Omaha)

PadBuster

Automated script for performing Padding Oracle attacks

rexgen

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

simple-console

An elegant JavaScript command-line interface library

sqlmap

Automatic SQL injection and database takeover tool

sysinternals-source

zip-slip-vulnerability

Zip Slip Vulnerability (Arbitrary file write through archive extraction)