Repository of notes and scripts I use when doing malware analysis
Some scripts that can be useful when dealing with Qakbot
My personnal GhidraFunctionIdDb.
Hope it can save you some time ! Will be updated once in a while.
Generated with FunctionIdHashFunction.py and consumed by FunctionIdMatcher.py
πΎπππ ππππππ ππππππ - π½π π²πππ’πππππ - ππππ ππππ - ππππππ πΏπ’ππππ πΏππππππ - π²ππππππ π±π’ : π°ππ ππππ - π²πππ’πΏπππ π²ππ π½ππ πΌπππ πππ ππππ πΏπππππππππ
MassDNS A high-performance DNS stub resolver MassDNS is a simple high-performance DNS stub resolver targeting those who seek to resolve a massive amou
CVE-2022-21907 Description POC for CVE-2022-21907: HTTP Protocol Stack Remote Code Execution Vulnerability. create by antx at 2022-01-17, just some sm
A Superfast SMS & Call bomber for Linux And Termux !
Log4J-Huntress-Automate-Script This python script will automate the testing for the Log4J vulnerability for HTTP and HTTPS connections. Pre-Requisits
A wordlist generator tool, that allows you to supply a set of words, giving you the possibility to craft multiple variations from the given words, creating a unique and ideal wordlist to use regardin
Fuzzercorn libfuzzer bindings for Unicorn. API // The main entry point of the fu
Vulmap ζ―δΈζ¬Ύ web ζΌζ΄ζ«ζειͺθ―ε·₯ε ·, ε―ε―Ή webapps θΏθ‘ζΌζ΄ζ«ζ, εΉΆδΈε ·ε€ζΌζ΄ε©η¨εθ½
Introduction evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files. It can process a high numbe
Privacy-respecting, hackable metasearch engine / pronunciation sΙΛks. If you are looking for running instances, ready to use, then visit searx.space.
YouTube Video Proof of Concept I created a new YouTube Video with technical Explanation for breaking Google's Audio reCAPTCHAs: Click on the image bel
FeatureHasher Convert a collection of features to a fixed-dimensional matrix using the hashing trick. Note, this requires Jina=2.2.4. Example Here I
Fuzz introspector Fuzz introspector is a tool to help fuzzer developers to get an understanding of their fuzzerβs performance and identify any potenti
MayorSecDNSScan MSDNSScan is used to identify DNS records for target domains and check for zone transfers. There really isn't much special about it, a
MayorSec Backdoor Fully functioning bind-type backdoor This backdoor is a fully functioning bind shell and lite version of my full functioning Gatekee
log4j-honeypot-flask Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228 This can be
Filesystem log4j_scanner for windows and Unix. Scanning for CVE-2021-44228, CVE-2021-45046, CVE-2019-17571 Requires a minimum of Python 2.7. Can be ex
Internationalized Domain Names in Applications (IDNA) Support for the Internationalised Domain Names in Applications (IDNA) protocol as specified in R
CVE-2021-22205 ε½±εηζ¬οΌ Gitlab CE/EE 13.10.3 Gitlab CE/EE 13.9.6 Gitlab CE/EE 13.8.8 Usage python3 CVE-2021-22205.py target "curl \`whoami\`.dnslog
BrokenSMTP BrokenSMTP is a python3 BugBounty/Pentesting tool to look for common vulnerabilities on SMTP server. Supported Vulnerability : Spoofing - T
2 Oct 27, 2022
2.5k Jan 07, 2023
16 Dec 18, 2022
15 Feb 21, 2022
1 Dec 16, 2021
39 Dec 10, 2022
23 Nov 17, 2022
2.8k Dec 29, 2022
116 Dec 29, 2022
12.4k Jan 08, 2023
153 Dec 20, 2022
5 Mar 15, 2022
221 Jan 01, 2023
68 Dec 12, 2022
144 Nov 19, 2022
4 Jan 09, 2022
204 Dec 13, 2022
70 Nov 09, 2022
39 Dec 16, 2022