lc

I hack things (legally)

South Dakota, USA

Pinned Repositories

230-OOB
An Out-of-Band XXE server for retrieving file contents over FTP.
Language:Python184 6 346
cspparse
A tool to evaluate Content Security Policies.
Language:Go71 4 018
gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
Language:Go4.7k 51 113501
hacks
Repo of useful scripts
Language:Go105 5 227
jenkinz
Retrieve the complete build history for every job ever created and executed on a given Jenkins instance.
Language:Go67 3 019
otxurls
Fetch known urls from AlienVault's Open Threat Exchange for given hosts
Language:Go62 2 016
secretz
secretz, minimizing the large attack surface of Travis CI
Language:Go327 9 441
subjs
Fetches javascript file from a list of URLS or subdomains.
Language:Go810 12 14102
theftfuzzer
TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
Language:Python316 13 460
void
Put distracting sites into the void on Mac
Language:Go30

lc's Repositories

lc/gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
Language:Go4.7k 51 113501
lc/subjs
Fetches javascript file from a list of URLS or subdomains.
Language:Go810 12 14102
lc/secretz
secretz, minimizing the large attack surface of Travis CI
Language:Go327 9 441
lc/theftfuzzer
TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
Language:Python316 13 460
lc/230-OOB
An Out-of-Band XXE server for retrieving file contents over FTP.
Language:Python184 6 346
lc/hacks
Repo of useful scripts
Language:Go105 5 227
lc/cspparse
A tool to evaluate Content Security Policies.
Language:Go71 4 018
lc/jenkinz
Retrieve the complete build history for every job ever created and executed on a given Jenkins instance.
Language:Go67 3 019
lc/otxurls
Fetch known urls from AlienVault's Open Threat Exchange for given hosts
Language:Go62 2 016
lc/brute53
A tool to bruteforce nameservers when working with subdomain delegations to AWS.
Language:Go58 4 117
lc/DOD-Recon
Recon for Department of Defense HackerOne program
Language:HTML45 10 016
lc/research
miscellaneous security research stuff
Language:Java37 1 110
lc/rickrolllogs
tool to rick roll access.logs
Language:Python17 2 03
lc/reckdns
A kinda reckless dns resolver. Still under development.
Language:Go16 3 07
lc/rlyCTF
rlyCTF (relay CTF) challenge to emulate real-world SSRF attacks.
Language:HTML10 3 04
lc/sslc2
Simple C&C example in assembly that retrieves commands from the Organizational Unit (OU) field in an SSL certificate
Language:Assembly9 2 02
lc/bugbountylink
URL Shortener using Flask & MySQL
Language:HTML7 2 24
lc/lc.github.io
Information Security blog by Corben Leo @hacker_
Language:HTML7 3 04
lc/newsletter-code
Repository for any code I send out in newsletters.
Language:Go7 2 0
lc/pfzf
fzf for yanking code/workspace context for LLM workflows.
Language:Go6 1 0
lc/certspotter
Certificate Transparency Log Monitor
Language:Go4 2 01
lc/upload-scanner
HTTP file upload scanner for Burp Proxy
Language:Perl4 0 0
lc/void
Put distracting sites into the void on Mac
Language:Go30
lc/ctf-dev
Various CTF's I've created over time
Language:HTML2 2 02
lc/zgrab2
Fast Go Application Scanner
Language:Go2 1 0
lc/buz
Serverless multi-protocol + multi-destination event collection system.
Language:Go1 0 0
lc/color
Color package for Go (golang)
Language:Go1 1 01
lc/safewrite
simple golang library for safe/multi-threaded file writing
Language:Go1 2 0
lc/trufflehog
Find and verify credentials
Language:Go1 1 01
lc/uff
unleashed ffuf