Ivan-Markovic
Long experience in designing and implementation of security solutions, mainly oriented on web, mobile and embedded applications.
..-. .-. . . -.. --- --
Pinned Repositories
Android-Task-Injection
Task Hijacking in Android (somebody call it also StrandHogg vulnerability)
Command-injections-via-USB-upgrade-in-MSTAR-Set-Top-box
Vulnerable functionality is in automatic USB upgrade process. It is possible to inject additional commands via malicious files names.
DFF
One of Best Path traversal and PRL attack tools by TS/SCI Security (year 2008). Also tool is included on BackTrack 4 and OWASP Phoenix/Tools Project.
lovac
POC script for Malware Hunting over the WWW
metaMAMA
Documents METADATA extraction and analyzer
OWASP-Risk-Assessment-Calculator
This Risk Rating Calculator is based on OWASP's Risk Rating Methodology
phpsinfo
Info about php security misconfigurations - outdated 2006
proxyCheck
Collection of some functions that can help in PROXY detection.
TwitterFun
Collection of scripts that utilize Twitter API for suspicious behavior analysis
WMAT
WMAT is automatic tool for testing webmail accounts. Support SSL pages, have automatic generator for default passwords. XML driven patterns. Included on Backtrack Linux 4.
Ivan-Markovic's Repositories
Ivan-Markovic/Android-Task-Injection
Task Hijacking in Android (somebody call it also StrandHogg vulnerability)
Ivan-Markovic/OWASP-Risk-Assessment-Calculator
This Risk Rating Calculator is based on OWASP's Risk Rating Methodology
Ivan-Markovic/Command-injections-via-USB-upgrade-in-MSTAR-Set-Top-box
Vulnerable functionality is in automatic USB upgrade process. It is possible to inject additional commands via malicious files names.
Ivan-Markovic/TwitterFun
Collection of scripts that utilize Twitter API for suspicious behavior analysis
Ivan-Markovic/lovac
POC script for Malware Hunting over the WWW
Ivan-Markovic/metaMAMA
Documents METADATA extraction and analyzer
Ivan-Markovic/proxyCheck
Collection of some functions that can help in PROXY detection.
Ivan-Markovic/DFF
One of Best Path traversal and PRL attack tools by TS/SCI Security (year 2008). Also tool is included on BackTrack 4 and OWASP Phoenix/Tools Project.
Ivan-Markovic/WMAT
WMAT is automatic tool for testing webmail accounts. Support SSL pages, have automatic generator for default passwords. XML driven patterns. Included on Backtrack Linux 4.
Ivan-Markovic/phpsinfo
Info about php security misconfigurations - outdated 2006
Ivan-Markovic/VLC-scripting
VLC shell scripts for webcams and streaming