Pinned Repositories
dc416-exploitdev-intro
Files for the Defcon Toronto Introduction to 64-bit Linux Exploitation
dirtshell
Provide a sort of shell-ish interface to make file directory traversal quicker and easier.
onetwopunch
Use unicornscan to quickly scan all open ports, and then pass the open ports to nmap for detailed scans.
pwnbox
Docker container with tools for binary reverse engineering and exploitation.
rfishell
Provide a shell-like interface for exploiting Remote File Inclusion vulnerabilities.
scanreport
Take output from nmap and turn it into something easily searchable and readable.
snuff
Automate ARP poisoning, ssltrip, and ettercap.
vulnerabilities
Published vulnerabilities and exploits.
superkojiman's Repositories
superkojiman/onetwopunch
Use unicornscan to quickly scan all open ports, and then pass the open ports to nmap for detailed scans.
superkojiman/pwnbox
Docker container with tools for binary reverse engineering and exploitation.
superkojiman/vulnerabilities
Published vulnerabilities and exploits.
superkojiman/peepshow
Script that captures login credentials on a laptop acting as a Wi-Fi access point.
superkojiman/writeups
Musings from the brainpan.
superkojiman/vulscan
Advanced vulnerability scanning with Nmap NSE
superkojiman/CVE-2018-7600
CVE-2018-7600 - Drupal 7.x RCE
superkojiman/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
superkojiman/JS2PDFInjector
Inject a JS file into a PDF file.
superkojiman/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
superkojiman/ZipPasswords
Passwords from SecLists compressed into 7z archives for Hashcat.
superkojiman/CTF-pwn-tips
Here records some tips about pwn.
superkojiman/gallimaufry
Command Line Parsing Library for USB PCAP Files
superkojiman/GitTools
A repository with 3 tools for pwn'ing websites with .git repositories available
superkojiman/kernel-exploits
superkojiman/superkojiman.github.io
Build a Jekyll blog in minutes, without touching the command line.
superkojiman/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
superkojiman/BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
superkojiman/create-dmg
Create a good-looking DMG for your macOS app in seconds
superkojiman/ddcctl
DDC monitor controls (brightness) for Mac OSX command line
superkojiman/filetype
Small, dependency-free, fast Go package to infer file types based on the magic numbers signature
superkojiman/gopsutil
psutil for golang
superkojiman/GTFOBins.github.io
Curated list of Unix binaries that can be exploited to bypass system security restrictions
superkojiman/metagoofil
An updated version of metagoofil
superkojiman/open-golang
Open a file, directory, or URI using the OS's default application for that object type. Optionally, you can specify an application to use.
superkojiman/Platypus
Create Mac applications from command line scripts
superkojiman/PowerUpSQL
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
superkojiman/pwn-machine
The Pwning Machine
superkojiman/r1cksec_cheatsheets
Collection of knowledge about information security
superkojiman/wallpaper
A cross-platform Golang library for getting and setting desktop wallpapers