Cowrie SSH/Telnet Honeypot http://cowrie.readthedocs.io

An Android library that prevents your app from being pirated / cracked using Google Play Licensing (LVL), APK signature protection and more. API 14+ required.

SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS

Kubernetes security notes and best practices

🎯 SQL Injection Payload List

hacker, ready for more of our story ! 🚀

Bruteforce attack on Facebook account using python script

🐩 Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566 🐩

Authenticate against a MySQL server without knowing the cleartext password

AHRID - Analysis Hacker's Real-ID Platform 黑客攻击画像分析系统（停止运营）

Next Generation Remote Administration Tool (RAT)

👨‍💻🕵🏻👩‍💻 Analyze user behavior against fake access points📡

Botnet targeting Windows machines written entirely in Python & open source security project.

SIPCheck is a tool that watch the authentication of users of Asterisk and bans automatically if some user (or bot) try to register o make calls using wrong passwords.

Facebrute is an advance facebook Bruteforce script made in python language. Just provide username & wordlist and this script is going to try all passwords with returning responses as well. It uses python-requests with tor stem controller that changes its Public IP on every attempt as facebook block IP that try 20 attempts at once.

Offensive Terraform module which copies publicly exposed EBS snapshot to us-east-1 region in attacker's AWS account and creates EBS volume from the copied EBS snapshot. After that, the module attaches and mounts the EBS volume to an EC2 instance. Finally, attacker can ssh into an EC2 instance and inspect a mounted volume "/usr/src/hack".

Deceptive tradecraft should be fun and light, not stern and stressful. It is cool to be cute.

This program allow you to extract some features from pcap files.

Offensive Terraform module which creates RDS database from a publicly exposed RDS snapshot in attacker's AWS account. After that, attacker can connect to RDS database and inspect it.

CloudHound is a cloudflare bypass tool which is using several methods such as DNS history Checkup, Cross-Site port Attack and etc to detect original Server's IP

Attacker can use the scripts to gain reverse shell of a target's machine.

this is an offensive security tool

Automate the creation of Backdoors and postexplotation activities

Detection of DDOS Attack using Kafka and Spark Streaming

白帽SEO是一种精神！

Mikrotik 0day Credential Disclosure Scanner

This script sends forged ARP packages on a local network in order to impersonate a host and receive victim's internet traffic

Compilation of files recovered from compromised hosts. This collection contains various scripts and tools used by the attackers.

Pothead: A simple lightweight packet for creating a minimal interaction honeypot

Internet Security tool that can stress test a site, programmed in Python. This tool uses keep-alive DoS to do that.