Automatic SQL injection and database takeover tool

get things from one computer to another, safely

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Malicious traffic detection system

WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, co…

Loki - Simple IOC and YARA Scanner

The official Python library for Shodan

cve-search - a tool to perform local searches for known vulnerabilities

ODAT: Oracle Database Attacking Tool

Kippo - SSH Honeypot

DNS Measurement, Troubleshooting and Security Auditing Toolset

Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CV…

Tool to gather Threat Intelligence indicators from publicly available sources

Current development of SSLyze now takes place on a separate repository

Just-Metadata is a tool that gathers and analyzes metadata about IP addresses. It attempts to find relationships between systems within a large dataset.

SSMA - Simple Static Malware Analyzer [This project is not maintained anymore by me]

Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon

The tool for updating your Suricata rules.

Python code to query the Censys public scan database.

Miscelaneous useful scripts for my day to day projects

Network traffic sensor

Searches various online resources to try and get as much info about an IP/domain as possible.

PHP files analyzer for malware detection

Query all types of flight identities, such as ICAO address, registration ID, aircraft model, etc.

OpenSSH proxy gateway

A tools to work on suricata stats.log file.