Johnny Watts's repositories
The-Not-So-Simple-PHP-Command-Shell
This tool is intended to be used for on target enumeration to gather and exfiltrate information and then to upload tools such as netcat or msvenom payload for further access to the target.
K-Sploit
Optimized for use in Kali Linux, KSploit is a user friendly menu driven control panel in which to drive many metasploit tasks. KSploit simplifies repetitive metasploit functions such as generating payloads, deploying listeners, and injecting msf payloads into Windows exectuables.
Check-for-CVE-2023-32629-GameOver-lay
Check for CVE-2023-32629 "GameOver(lay)" vulnerability
persistenceDetector
A Python program to detect malicious registry persistence entries in the WIndows Registry.
Detecting-Persistence-on-Windows-Computers-for-Non-Technical-Users
This guide empowers non-tech Windows users to detect persistence threats, highlighting signs like cmd windows at startup, registry checks, and spotting malicious commands in PowerShell, cmd, rundll32, and wmic.
Red-Team-Manual
This comprehensive guide aims to provide a standardized approach to ethical hacking and promote best practices within our red team. By following this guide, we can ensure a uniform and consistent methodology across the entire team.
Apache-Service-XAMPP-WindowsPrivEsc-Disclosure
A critical vulnerability in XAMPP's default Apache service settings on Windows systems jeopardizes integrity, confidentiality, and availability. Discovered by Security Researcher Kaotickj, this flaw poses severe security risks. The report offers in-depth analysis, PoC, video demo, and mitigation steps.
K-Pots
KPots is a simple honeypots system to capture and log traffic to specified ports. Requires Netcat for monitoring and IPTables for banning. Requires dig for filtering out your own ip address. (Note: I will be adding alternatives in a later realease, but for now, just install dig.)
k-swat-php-security
The K S.W.A.T. Security Suite not only blocks millions of known bad actors by IP Blacklisting, but also provides protection for PHP driven websites from some of the most common types of threats and attacks on the internet.
LinFo
🔮 Are you curious about your system's inner secrets? Want to know everything about your Linux environment? Look no further! We present: LinFo, the magical script that unveils all the hidden details about your system! With a flick of your command wand, LinFo unveils the magic of information, banishing uncertainty. By the enigmatic KaotickJ 👽
threatCheck.py
This is a simple implementation of a threat detection system that uses geolocation and abuse information to determine whether an IP address poses a potential threat. If a threat is detected, an audible alert is played and the information is logged.
typosquatterBuster
This script detects typosquatting domains by generating typo variations of a given domain name, checking if they return a valid HTTP response, and running a WHOIS lookup to determine if the domain is registered, then generates an HTML report with the findings.
password-genie
Password Genie is a secure and user-friendly password management application built with Python and Tkinter. It allows users to generate strong passwords, hash and save passwords for various platforms, and retrieve them securely.
PayloadForge
Payload Forge is an advanced payload generation tool developed for cybersecurity professionals, red teamers, and ethical hackers. It allows users to craft and customize payloads for security testing and penetration testing purposes.
kdg-kswat-sigs
Upated signatures for K S.W.A.T. PHP Security. Includes updated cloud, country, bad bots, email spammers, and harvesters.
kdg_admin
PHP website framework. Requires PHP 7.4+ Some functions, such as the RSS Feed and Sitemap generators, require system specific configuration. GNU/GPL3 License. Sample code and content are provided for front end functionality. The current state is a mixture of procedural and object oriented programming that I have (slowly) been converting to OOP. It works well as-is, but will require that you inspect and understand the code to customize it for your needs.
Protecting-Yourself-from-Remote-Access-Scams
Explore the world of refund and remote access scams in this comprehensive bulletin authored by 30-year cybersecurity veteran, Kaotickj. Learn about their history, tactics, prevention, and reporting strategies. Gain insights to protect yourself and others in the digital realm.
Python-Port-Scanner
This Python script is a simple yet effective port scanner that allows you to scan a target host for open ports. It supports multi-threading to improve the scanning speed and provides colorful and informative output.
Resistance-Calculator-for-4-and-5-Band-Color-Codes
This Python resistor calculator GUI supports 4 and 5 band color codes. Users select colors for resistor bands, triggering the calculate_resistance() function to determine resistance using color_codes. Tolerance is calculated based on the chosen notation.
RPG-Name-Genie
Generate captivating and immersive names for your RPG characters effortlessly. Unleash your imagination and enhance your storytelling with unique and fitting names.
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
metasploit-framework
Metasploit Framework
LocalAI
:robot: Self-hosted, community-driven, local OpenAI-compatible API. Drop-in replacement for OpenAI running LLMs on consumer-grade hardware. No GPU required. LocalAI is a RESTful API to run ggml compatible models: llama.cpp, alpaca.cpp, gpt4all.cpp, rwkv.cpp, whisper.cpp, vicuna, koala, gpt4all-j, cerebras and many others!