Python wrapper for tshark, allowing python packet parsing using wireshark dissectors

CTF challenge (mostly pwn) files, scripts etc

Operational information regarding the log4shell vulnerabilities in the Log4j logging library.

A task runner that works well with poetry or uv.

Web vulnerability scanner written in Python3

Obtain GraphQL API schema even if the introspection is disabled

Composable custom class converters for attrs, dataclasses and friends.

a CLI that provides a generic automation layer for assessing the security of ML models

🍪 Flask Session Cookie Decoder/Encoder

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

Obfuscate a python code 2.x and 3.x

We are against discrediting open source software

One day based on https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html

PowerShell Remoting Protocol for Python

Ethereum recon and exploitation tool.

Python cross-version bytecode library and disassembler

Cheat sheet for xonsh shell with copy-pastable examples. The best doc for the new users.

Simple command line tool to check for compliance against CIS Benchmarks

The kubernetes network policy validator.

Live forensic artifacts collector

SAP Gateway RCE exploits

PoC for CVE-2020-6207 (Missing Authentication Check in SAP Solution Manager)

Implementing Kerberoast attack fully in python

Python 3 YouTube Music Web API Client

Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX or any other license id scheme.

PyPI malware packages

PoC of Remote Command Execution via Log injection on SAP NetWeaver AS JAVA CRM