⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

Most advanced XSS scanner.

Credentials recovery project

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors

Automated Security Testing For REST API's

This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.

A fork and successor of the Sulley Fuzzing Framework

Know the dangers of credential reuse attacks.

Corelan Repository for mona.py

DOM fuzzer

The SpecterOps project management and reporting engine

Perform a MitM attack and extract clear text credentials from RDP connections

Proof of concept for CVE-2019-0708

A Course on Intermediate Level Linux Exploitation

NSA finest tool

Sudo Baron Samedit Exploit

DEFCON 27 workshop - Modern Debugging with WinDbg Preview

A shellcode writing toolkit

Windows passwords decryption from dump files

Search for Directory Traversal Vulnerabilities

Checksec tool in Python, Rich output. Based on LIEF

Module for remote in-memory Python package/module loading through HTTP/S

Inline file transfer using in-built Windows tools (DEBUG.exe or PowerShell).

Collection of resources for my preparation to take the OSEE certification.

Purpose only! The dangers of Bluetooth implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth stacks.

Pythonic ransomware proof of concept.

CVE-2017-3881 Cisco Catalyst Remote Code Execution PoC

Erlang distribution weaknesses and tooling