JohnTroony
Follow
Stars
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps v…
ELEGANTBOUNCER is a detection tool for file-based mobile exploits.
Tools developed by the Zscaler ThreatLabz Threat Intelligence team
python library to examine ptmalloc (the glibc userland heap implementation)
Build a database of libc offsets to simplify exploitation
PEDA - Python Exploit Development Assistance for GDB
Exploit Development and Reverse Engineering with GDB Made Easy
CTF framework and exploit development library
Display information about files in different file formats and find gadgets to build rop chains for different architectures (x86/x86_64, ARM/ARM64, MIPS, PowerPC, SPARC64). For disassembly ropper us…
This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC, MIPS, RISC-V 64, a…
Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
Indicators of Compromise from Amnesty International's cyber investigations
Create adversarial attacks against machine learning Windows malware detectors
cyberark / kubesploit
Forked from Ne0nd0g/merlinKubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
tiny, portable SOCKS5 server with very moderate resource usage
PwnWiki - The notes section of the pentesters mind.
Cobalt Strike random C2 Profile generator
Tool for viewing and analyzing execution traces
Collection of methodology and test case for various web vulnerabilities.
xforcered / Dendrobate
Forked from FuzzySecurity/DendrobateManaged code hooking template.
TAI SOC Blog powered by HUGO a Static Site Generator