qemm's repositories
eicar-standard-antivirus-test-files
eicar standard antivirus test files
php-malware-analysis
Deobfuscation and analysis of PHP malware captured by a WordPress honey pot
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
Awesome-WAF
π₯ Everything about web-application firewalls (WAF).
BLE-Security-Attack-Defence
β¨ Purpose only! The dangers of Bluetooth Low EnergyοΌBLEοΌimplementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.
Damn-Vulnerable-GraphQL-Application
Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.
DDOS-RootSec
DDOS Archive by RootSec (Scanners, BotNets (Mirai and QBot Premium & Normal and more), Exploits, Methods, Sniffers)
jwt_tool
:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens
lockup
A proof-of-concept Android application to detect and defeat some of the Cellebrite UFED forensic toolkit extraction techniques.
MailFinder
OSINT tool for finding email by first and last name
malicious-pdf
π Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
MalwareSourceCode
Collection of malware source code for a variety of platforms in an array of different programming languages.
MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
Mitigating-Web-Shells
Guidance for mitigation web shells. #nsacyber
Orion
A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
PEGASUS-LIME-HVNC
For the time being, project will be published like this, more as test of my protector project.
PegHVNCclient
This repo is just to teach owner a lesson, that life isnt Turkish soap drama and that there are consequences of behaving like soap actress ;)
Phishing.Database
Phishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains used for Phishing are still active.
roop
one-click deepfake (face swap)
scout
π Lightweight URL fuzzer and spider: Discover a web server's undisclosed files, directories and VHOSTs
ScoutSuite
Multi-Cloud Security Auditing Tool
signature-base
YARA signature and IOC database for my scanners and tools
spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
supercookie
β οΈ Browser fingerprinting via favicon!
thetick
A simple backdoor for servers and embedded systems.
top25-parameter
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. π‘οΈβοΈπ§
YaraHunter
ππ Malware scanner for cloud-native, as part of CI/CD and at Runtime ππ