Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.

A series of mini-projects used to learn C for beginners

My proof-of-concept exploits for the Linux kernel

Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

peinjector - MITM PE file infector

A collection of source code for various botnets.

Standalone password candidate generator using the PRINCE algorithm

Dump various types of Windows credentials without injecting in any process.

Research on UDP/TCP amplification vectors, payloads and mitigations against their use in DDoS Attacks

Stealthy backdoor for Windows operating systems

Tools, utilities and scripts to help you write redis modules!

This repo has been migrated to https://github.com/github/security-lab/tree/master/SecurityExploits

Tool to extract Kerberos tickets from Linux kernel keys.

Satanic/Sexy/Stupid/Silly/Shiny LED matrix controller

Pre-compiled tools to tunnel TCP over RDP Connections

Shim database persistence (Fin7 TTP)

Standalone tool to explore the security model of Windows and its NT kernel. Use it to introspect privilege assignments and access right assignments, enumerate attack surfaces from the point of view…

iWar - The intelligent war dialer.

Default WPA/WPS Generator for KPN Experiabox 7 (Arcadyan ARV7519) routers

Generates phone number wordlists for brute forcing WPA passwords

A better way to bypass authentication/payment requirements to use WiFi hotspots.

Bash script that tries all the default passwords for wifi access points with essids like WLAN_XXXX and JAZZTEL_XXXX. Just for mac os, but it would be easy making it work with other *nix systems.

Small C program I created a few years ago to test performance of hashing implementations in several encryption libraries by implementing the Thomson wifi router default password calculation algorithm.