Pinned Repositories
arp-scanner
A simple and lightweight C# ARP scanner to identify live hosts in your LAN
backoori
Tool aided persistence via Windows URI schemes abuse
CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
csplogger
A CSP endpoint to aggregate, correlate and analyze report-uri violations across your infrastructure
evilarchiver
Modded version of tarfile.py for testing arbitrary file (over)write via path traversal in Tar archives.
exe2txt2exe
Useful binary transfer method: Convert exe binary to base64 txt file and back again to exe binary
Java-Board-Game
Lorenzo il Magnifico board game developed in Java
knockandgo
Port Knocking revisited in Golang
skf-labs
Repo for all the OWASP-SKF Docker lab examples
giuliocomi's Repositories
giuliocomi/backoori
Tool aided persistence via Windows URI schemes abuse
giuliocomi/csplogger
A CSP endpoint to aggregate, correlate and analyze report-uri violations across your infrastructure
giuliocomi/arp-scanner
A simple and lightweight C# ARP scanner to identify live hosts in your LAN
giuliocomi/knockandgo
Port Knocking revisited in Golang
giuliocomi/CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
giuliocomi/evilarchiver
Modded version of tarfile.py for testing arbitrary file (over)write via path traversal in Tar archives.
giuliocomi/exe2txt2exe
Useful binary transfer method: Convert exe binary to base64 txt file and back again to exe binary
giuliocomi/Java-Board-Game
Lorenzo il Magnifico board game developed in Java
giuliocomi/afl-training
Exercises to learn how to fuzz with American Fuzzy Lop
giuliocomi/archiver
Easily create & extract archives, and compress & decompress files of various formats
giuliocomi/skf-labs
Repo for all the OWASP-SKF Docker lab examples
giuliocomi/bof_ported_to_metasploit
Here is a collection of buffer overflow (stack & SEH) I reproduced in Python and finally ported in Metasploit modules
giuliocomi/cmdlinehttpserver
Minimalistic Golang HttpServer
giuliocomi/dnSpy
.NET debugger and assembly editor
giuliocomi/http-server
A simple HTTPS server for serving files and for providing upload functionality
giuliocomi/mattermost-server-v5.17
Open source Slack-alternative in Golang and React - Mattermost
giuliocomi/mitm_relay
Hackish way to intercept and modify non-HTTP protocols through Burp & others.
giuliocomi/nopowershell
PowerShell rebuilt in C# for Red Teaming purposes
giuliocomi/PMapper
A tool for quickly evaluating IAM permissions in AWS.
giuliocomi/PoCIDOR
PoC for Insecure Direct Object Reference vulnerabilities
giuliocomi/posh-discovery
[alpha] A set of scripts useful to run on a compromised Windows OS to map the attack surface (find of open ports, live hosts, etc.) from that Pivot. This toolkit aims to be complementary to framework that directly play with Active Directory objects.
giuliocomi/qsslcaudit
test SSL/TLS clients how secure they are
giuliocomi/Shiro-721
Shiro-721 RCE Via RememberMe Padding Oracle Attack
giuliocomi/skf-flask
Security Knowledge Framework (SKF) Python Flask / Angular project
giuliocomi/system-design-primer
Learn how to design large-scale systems. Prep for the system design interview. Includes Anki flashcards.
giuliocomi/VCG
VisualCodeGrepper - Code security scanning tool.
giuliocomi/x64dbg
An open-source x64/x32 debugger for windows.
giuliocomi/zip-slip-vulnerability
Zip Slip Vulnerability (Arbitrary file write through archive extraction)