phx
Red Team Specialist, independent threat researcher and cybersecurity consultant, interests include shell scripting, Python, Go, C, Docker, and more.
Pinned Repositories
divinity
Codename Divinty is a security research tool that identifies vulnerable systems faster by identifying the use of default credentials in IoT and other systems like SAP, NetScaler, etc.
brutalist
brutalist is a python3+ based command line tool for all platforms that can be used to generate quick and large word lists from one or more sample passwords supplied by the user.
cvescan
Easily scan for CVEs using nmap.
docktor
Host a Tor hidden service inside a Docker container without exposing any clearnet ports.
lilendian
A small program that simply returns escaped shell code in Little Endian format for whatever memory address you enter as the first argument.
pancakeswap-quickstats
a set of command line tools for displaying your personal pancakeswap stats in the terminal.
phxutils
shell scripts and shortcuts developed by myself that I use on a regular or semi-regular basis, or that can come in very handy in specific scenarios.
protonvpn-cli-macos
MacOS command-line client for ProtonVPN. Written in Python.
pyusbmux
USB multiplexing client, compatible with Python 2/3, which allows for SSH over USB to jailbroken iOS devices and more.
signal-desktop-lockscreen
Patch Signal Desktop for all platforms to support an app-based lockscreen, activated with Ctrl+L and unlocked with a password located in the Signal config directory.
phx's Repositories
phx/docktor
Host a Tor hidden service inside a Docker container without exposing any clearnet ports.
phx/cvescan
Easily scan for CVEs using nmap.
phx/signal-desktop-lockscreen
Patch Signal Desktop for all platforms to support an app-based lockscreen, activated with Ctrl+L and unlocked with a password located in the Signal config directory.
phx/brutalist
brutalist is a python3+ based command line tool for all platforms that can be used to generate quick and large word lists from one or more sample passwords supplied by the user.
phx/phxutils
shell scripts and shortcuts developed by myself that I use on a regular or semi-regular basis, or that can come in very handy in specific scenarios.
phx/ec2-bootstrap
just a collection of aws ec2 bootstrap scripts
phx/gpt-cli
OpenAI interaction from CLI
phx/signal-multi-account
Using multiple Signal Desktop accounts with MacOS or Linux
phx/slurp
A blazing fast & feature rich Amazon S3 bucket enumerator.
phx/aws-hashcat
phx/dockerjail
dockerjail acts as a secure jumpbox running sshd as a non-root user.
phx/gitswitch
Easily alternate between multiple git identities and SSH keys
phx/vncbrute
VNC brute forcer written in Go by GPT-4o and o1-preview
phx/binex
Docker image for binary exploitation
phx/browserintel
Suite of python3 tools including platform-dependent golang binaries to gather browser info from red team exercises
phx/bucketfinder
An updated implementation of bucket_finder.rb
phx/cc
Cookie Clicker JS Hack for teaching my son to code
phx/darkdown
python http.server wrapper that supports ssl, basic auth, markdown rendering, and styling support for directory listings and markdown files.
phx/dockerdown
docker-based nginx fancyindex directory listing http server with markdown rendering and themes
phx/enumerid
Enumerate RIDs using pure Python
phx/geneva_tunnel
phx/gget
like wget except for Google Drive links
phx/go-bootstrap
installs latest version of Golang, sets up environment, installs latest GitHub binary release of glide for dependency management. good stuff.
phx/mmcbrute
Bruteforce over SMB using pure Python
phx/nimbostratus
Tools for fingerprinting and exploiting Amazon cloud infrastructures
phx/phx.github.io
Phoenix Dark Ops
phx/pptitles
Extract the slide number and title from all slides in a PowerPoint presentation.
phx/rmbg
Bash wrapper and MacOS app for python rmbg command line tool
phx/ssheesh
red team utility for SSH credential spraying
phx/terraform-esxi
Terraform template for deploying new VMs to ESXi hosts