Pinned Repositories
Automas-Prime
A OSINT framework focused on eumerating your external threat posture. By giving a single Autonomous Service number Automas prime will find potential problems with your companys security posture.
Best-README-Template
An awesome README template to jumpstart your projects!
BlueRover
A Blue Team Toolkit focused around Enterprise Defense and the concept of "Mise en place". This will be an attempt to automate alot of the collections needed for DFIR. With grabbing and parsing logs for with several format outputs, with the hopes of identifying nasty things in logs. Talking with EDR's, Virustotal, app.any.run, hybrid analysis, passivetotal, etc..Whatever i feel can be done. This will be as project, will take at least a years worth of development, so check back from time to time.
certstreamcatcher
Catching phishing by observing certificate transparency logs.
CertWatcher
CertWatcher is a new take on monitoring for phishing sites. It is meant to be a set and forget service that will send you a daily report of phishing sites based off your keywords and Top level Domains.
cve-2019-19781
This is a tool published for the Citrix ADC (NetScaler) vulnerability. We are only disclosing this due to others publishing the exploit code first.
JQShell
A weaponized version of CVE-2018-9206
shodanwave
Shodanwave - Netwave IP Camera
SPFM---SOC-Plugins-for-Mattermost
SOC Plugins for mmpy_bot Mattermost bot
Stahlz's Repositories
Stahlz/JQShell
A weaponized version of CVE-2018-9206
Stahlz/CertWatcher
CertWatcher is a new take on monitoring for phishing sites. It is meant to be a set and forget service that will send you a daily report of phishing sites based off your keywords and Top level Domains.
Stahlz/SPFM---SOC-Plugins-for-Mattermost
SOC Plugins for mmpy_bot Mattermost bot
Stahlz/Automas-Prime
A OSINT framework focused on eumerating your external threat posture. By giving a single Autonomous Service number Automas prime will find potential problems with your companys security posture.
Stahlz/TwitterAccMon
Simple script that monitors for twitter accounts being deactivated and reactivated
Stahlz/Best-README-Template
An awesome README template to jumpstart your projects!
Stahlz/BlueRover
A Blue Team Toolkit focused around Enterprise Defense and the concept of "Mise en place". This will be an attempt to automate alot of the collections needed for DFIR. With grabbing and parsing logs for with several format outputs, with the hopes of identifying nasty things in logs. Talking with EDR's, Virustotal, app.any.run, hybrid analysis, passivetotal, etc..Whatever i feel can be done. This will be as project, will take at least a years worth of development, so check back from time to time.
Stahlz/certstreamcatcher
Catching phishing by observing certificate transparency logs.
Stahlz/cve-2019-19781
This is a tool published for the Citrix ADC (NetScaler) vulnerability. We are only disclosing this due to others publishing the exploit code first.
Stahlz/shodanwave
Shodanwave - Netwave IP Camera
Stahlz/concordance
Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.
Stahlz/css3-github-buttons
Helps you easily create GitHub-style buttons and toolbars using links, buttons, and inputs.
Stahlz/CVE-2019-19782
Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ]
Stahlz/gtfobins-api
Api to get gtfobins infos
Stahlz/iCloudBrutter
AppleID Bruteforce
Stahlz/PiHole_Dns-Over-Https
Script for setting up Dns-over-https
Stahlz/PimEyes-Crack-UserStyle
This "Crack" is simply a couple of css styles that improve your experience while using the face-recognition service "pimeyes.com"
Stahlz/react-svg-buttons
React configurable animated svg buttons
Stahlz/ScrapedIn
A tool to scrape LinkedIn without API restrictions for data reconnaissance
Stahlz/Stahlz.github.io
Stahlz/Upnp-Exploiter
A Upnp exploitation tool.
Stahlz/voicemailautomator
A tool that serves as a Proof of Concept for the research I presented at DEF CON 26, "Compromising online accounts by cracking voicemail systems"
Stahlz/XSStrike
Most advanced XSS detection suite.