Michele Spagnuolo's repositories
rosettaflash
A tool for manipulating SWF files, leveraging zlib to craft alphanumeric-only valid SWF files in order to allow CSRF with SOP bypass thanks to JSONP abuse.
dns-rebinding-PoC
DNS rebinding is powerful: how to steal WiFi passwords by just tricking a victim into visiting a website, thanks to that fancy Bang & Olufsen speaker.
dns-over-tls-forwarder
A simple, fast DNS-over-TLS forwarding server with hybrid LRU/MFA caching written in Go.
rusty-blockparser
Forked version of rusty-blockparser, a multi-threaded Bitcoin block chain parser written in Rust, including a Clusterizer component. Please see https://github.com/mikispag/bitiodine for my updated version.
googlevoice-scraper
A quick and dirty bash script that queries Google for available area codes, then downloads (most of) available numbers, and finally grep's the hell of out them, finding cool numbers.
arduino-theremin
A simple, minimalistic Arduino-based piano-theremin.
arduino-WakeOnLan
A native UDP WakeOnLAN (WOL) Arduino implementation.
UICThesis-Template
UIC MSc Thesis in Computer Science - Template
ESP32-Ruuvitag-Collector
Ruuvitag data collector with MQTT publishing functionality and MQTT Automatic discovery for Home Assistant for ESP32 boards.
userscripts
My userscripts (Greasemonkey, Violentmonkey, Tampermonkey, ...).
OriginCheck
Python script to check how web servers and web apps react to unexpected extra Origin headers in requests.
booster
Fast and secure initramfs generator
homeassistant-meteoswiss
:sun_behind_rain_cloud: :switzerland: Meteo Swiss Integration for Home Assistant (forked from websylv)
ICantBelieveItsNotValetudo
Valetudo companion service
rtr7-kernel
Linux kernel images for router7
rtr7-tools
tools for installing/updating/recovering a router7 installation
sqlite-vacuum
Simple tool to scan a directory tree looking for SQLite databases, and then running VACUUM and REINDEX on them.
web-platform-tests
Test Suites for Web Platform specifications—including WHATWG, W3C and others
webappsec-csp
WebAppSec Content Security Policy