tonyarris

srv

A folder to serve tools from during PT/Red Team engagements. Contains common executables and scripts for privesc, recon, pivoting and CVE exploitation.

text_to_code

Codes a webpage automatically based on a natural language description. Made with beta access to GPT-3.

cnn-ids

A CNN-based Intrusion Detection System

codice-fuzzcale

A Codice Fiscale Generator. It fuzzes all possible CFs, based on incomplete information provided by the user.

lab

Cloud pentesting lab resources

malicious-pdf

Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator

Affinis

Recurrent Neural Network SubDomain Discovery Tool

bug-bounty-alerts

Email notification system for HackerOne bug bounty scope changes

conti-pentester-guide-leak-english

Leaked pentesting manuals given to Conti ransomware crooks - translated into English (work in progress)

Make2Break

Making/breaking

SecretScanner

Find secrets and passwords in container images and file systems

STEWS

A Security Tool for Enumerating WebSockets

dotfiles

CVE-2024-47176-Scanner

Scanner for the CUPS vulnerability CVE-2024-47176

genre_classifier

A neural network that classifies musical genre

gitleaks

Scan git repos (or files) for secrets using regex and entropy 🔑

PDF101

Artifacts for the Black Hat talk.

php-docs-hello-world

A simple php application for docs

python-docs-hello-world

A simple python application for docs

recon

A script for automating subdomain recon

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

tensorflow

An Open Source Machine Learning Framework for Everyone