d7x
security enthusiast, penetration tester & back-end developer twitter: https://twitter.com/d7x_real/
Pinned Repositories
.NET
Burp-Suite-Extensions
Burp Suite Extension Skeleton files & Custom Burp Suite Extensions I authored
CVE-2020-12432
dependency_resolver
Dependency resolver is an application written in C which parses package dependencies from a .pms file which describes the dependencies in json format. I wrote it in 2016 as a task assignment for a job interview. In its current state it may or may not be of practical use but it can be easily modified. Feel free to use it or redistribute it as long as you keep the credits in the file and value my work as the original author.
JSON-Payloads
JSON Deserialization payloads
letsrop
letsROP - Exfiltrate ROP gadgets by a predefined list of gadgets, exclude badchars and reduce noise. This script is free for non-commercial use.
pyrsacrack
PyRSACrack is a tool which cracks weak SSH credentials by provided authorized_keys file containing the public ssh keys. In case there are weak ssh credentials sharing a common GCD the script will generate a private key based on the public keys for the corresponding users automatically.
searchsploitpkg
This script will take the results from a package list (like a package list from linuxprivchecker or windows' tasklist) and loop through searchsploit to find any relevant exploits for each package. The script will take the value before the first '-' (dash) or provided separator so you may wish to modify the more important packages like the linux kernel to avoid a broad search.
shellcode
udf_root
MySQL User-Defined function Dynamic Library Local Privilege Escalation
d7x's Repositories
d7x/udf_root
MySQL User-Defined function Dynamic Library Local Privilege Escalation
d7x/pyrsacrack
PyRSACrack is a tool which cracks weak SSH credentials by provided authorized_keys file containing the public ssh keys. In case there are weak ssh credentials sharing a common GCD the script will generate a private key based on the public keys for the corresponding users automatically.
d7x/dependency_resolver
Dependency resolver is an application written in C which parses package dependencies from a .pms file which describes the dependencies in json format. I wrote it in 2016 as a task assignment for a job interview. In its current state it may or may not be of practical use but it can be easily modified. Feel free to use it or redistribute it as long as you keep the credits in the file and value my work as the original author.
d7x/searchsploitpkg
This script will take the results from a package list (like a package list from linuxprivchecker or windows' tasklist) and loop through searchsploit to find any relevant exploits for each package. The script will take the value before the first '-' (dash) or provided separator so you may wish to modify the more important packages like the linux kernel to avoid a broad search.
d7x/shellcode
d7x/.NET
d7x/Burp-Suite-Extensions
Burp Suite Extension Skeleton files & Custom Burp Suite Extensions I authored
d7x/CVE-2020-12432
d7x/JSON-Payloads
JSON Deserialization payloads
d7x/misc
bash, pythons scripts etc.
d7x/Nmap-Tools
SpiderLabs shared Nmap Tools
d7x/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
d7x/pyImageScraper
Scrape images from a provided url and save them to a local path (supports http auth)
d7x/quick_chroot
A quick chroot script which might be used to recover grub or mount an existing linux installation to interact within the filesystem
d7x/reactxss
An XSS smoke test for ReactJS
d7x/smtp_relay_check
SMTP Open Relay Check script, written in Python
d7x/SubdomainTakeOver
d7x/synstats
Used to pull a summary CSV of an SRT's statistics on the Synack Red Team platform
d7x/wfuzz
Web application fuzzer