notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)

A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you come from where did you go) in Security Incidents and Threat Hunts

A remote monitoring & management tool, built with Django, Vue and Go.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

RestAI is an AIaaS (AI as a Service) open-source platform. Built on top of LlamaIndex, Ollama and HF Pipelines. Supports any public LLM supported by LlamaIndex and any local LLM suported by Ollama.…

Proxies scraped from spys.me and free-proxies-list.net

A modular vulnerability scanner with automatic report generation capabilities.

Search for categorized domain

Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names

Browser In The Browser (BITB) Templates

Simple docker setup for profiling with xdebug and webgrind

External monitoring for organization assets

A list of ssh client fingerprints and every client name observed with it.

A list of JARM fingerprints from malicious IPs, matched against known C2 fingerprints.

A utility to sniff preferences changes to macOS plist files

Indicators of Compromises (IOC) of our various investigations

Information released publicly by NCC Group's Cyber Incident Response Team

YARA signature and IOC database for my scanners and tools

Chromium running inside your terminal

A python tool to automate KeePass discovery and secret extraction.

Abstraction for local and remote filesystems

Utilities for extracting data from Nordnet

The VPN Rotator is a Bash/Debian framework for security researchers eager to protect their residential IP and wanting to replay malware traffic from different geolocations.

Your Swiss Army knife to analyze malicious web traffic based on the popular Fiddler web debugger.

CloudFlare Checker written in Go

A fast DOM based XSS vulnerability scanner with simplicity.

A fast tool to fetch URLs from HTML attributes by crawl-in.

A fast & light web screenshot without headless browser but Chrome DevTools Protocol!

A collection of awesome one-liner scripts especially for bug bounty tips.