Pinned Repositories
IDAPython_scripts
rules
Repository of yara rules
Thread-based-TCP-Three-way-handshake-with-Scapy
Using Scapy to establish and handle a TCP connection
xer0xe9's Repositories
xer0xe9/IDAPython_scripts
xer0xe9/rules
Repository of yara rules
xer0xe9/Thread-based-TCP-Three-way-handshake-with-Scapy
Using Scapy to establish and handle a TCP connection
xer0xe9/100-Days-Of-ML-Code
100 Days of ML Coding
xer0xe9/ansible-examples
A few starter examples of ansible playbooks, to show features and how they work together. See http://galaxy.ansible.com for example roles from the Ansible community for deploying many popular applications.
xer0xe9/APTnotes
Various public documents, whitepapers and articles about APT campaigns
xer0xe9/Arjun
Arjun is a python script for finding hidden GET & POST parameters.
xer0xe9/bitbucketBackupCron
xer0xe9/Bypass-Web-Application-Firewalls
Bypassing-Web-Application-Firewalls-And-XSS-Filters A series of python scripts for generating weird character combinations and lists for BurpSuite Pro for bypassing web application firewalls (WAF) and XSS filters. These python scripts have been created to fuzz wierd combinations: URL Escape Characters HTML Escape Characters Binary Characters These scripts were created during an assessment, while trying to bypass a Web Application Firewall (WAF) in order to exploit a XSS vulnerability. Differnt webservers and browsers interpret URL and strange characters differently which could lead to the bypassing of security controls. When I tried to send a > or < character the WAF would block the request. The following URL escapes I have noticed are traslated to < > ' by Apache2 based web servers: %(N%(n%)S%)U%)^%)s%)u%*C%*E%*c%*e%,.%.#%1N%1n%2S%2U%2^%2s%2u%3C%3E%3c%3e%5.%7#%:C%:E %:c%:e%HN%Hn%IS%IU%I^%Is%Iu%JC%JE%Jc%Je%L.%N#%XN%Xn%YS%YU%Y^%Ys%Yu%ZC%ZE%Zc%Ze%.%^# %hN%hn%iS%iU%i^%is%iu%jC%jE%jc%je%l.%n#%xN%xn%yS%yU%y^%ys%yu%zC%zE%zc%ze%|
xer0xe9/cupp
Common User Passwords Profiler (CUPP)
xer0xe9/cybrary-video-downloader
Downloads Course Videos From Cybrary.it
xer0xe9/DidierStevensSuite
Please no pull requests for this repository. Thanks!
xer0xe9/exrex
Irregular methods on regular expressions
xer0xe9/Fuzzing-resources
List of fuzzing resources for learning Fuzzing and initial phases of Exploit Development like root cause analysis
xer0xe9/GeoIP2-python
Python code for GeoIP2 webservice client and database reader
xer0xe9/ghidra
xer0xe9/network-testing
Network Testing Tools for testing the Linux network stack
xer0xe9/Open-Source-YARA-rules
YARA Rules I come across on the internet
xer0xe9/Photon
Incredibly fast crawler which extracts urls, emails, files, website accounts and much more.
xer0xe9/pyarmor
A tool used to obfuscate python scripts, bind obfuscated scripts to fixed machine or expire obfuscated scripts.
xer0xe9/python-iptables
Python bindings for iptables
xer0xe9/python-pentest-tools
Python tools for penetration testers
xer0xe9/pytube
A lightweight, dependency-free Python library (and command-line utility) for downloading YouTube Videos.
xer0xe9/RE_tips_and_tricks
xer0xe9/reconvillage
Repo for reconvillage.org website.
xer0xe9/scapy-ssl_tls
SSL/TLS layers for scapy the interactive packet manipulation tool
xer0xe9/squid
Squid Web Proxy Cache
xer0xe9/TorBot
Deep and Dark Web OSINT Tool
xer0xe9/xer0xE9.github.io
xer0xe9/yara
The pattern matching swiss knife