afczys Goto Github PK

android-malware

Collection of android malware samples

angr

The next-generation binary analysis platform from UC Santa Barbara's Seclab!

appmon

Runtime Security Testing Framework for iOS, Mac OS X and Android Apps

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

awesome-static-analysis

A curated list of static analysis tools, linters and code quality checkers for various programming languages

bintut

Teach you a binary exploitation for great good.

cknife

Cknife

codeql

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

cve-2020-6287-exploit

PoC for CVE-2020-6287 The PoC in python for add user only, no administrator permission set. Inspired by @zeroSteiner from metasploit. Original Metasploit PR module: https://github.com/rapid7/metasploit-framework/pull/13852/commits/d1e2c75b3eafa7f62a6aba9fbe6220c8da97baa8 This PoC only create user with unauthentication permission and no more administrator permission set. This project is created only for educational purposes and cannot be used for law violation or personal gain. The author of this project is not responsible for any possible harm caused by the materials of this project. Original finding: CVE-2020-6287: Pablo Artuso CVE-2020-6286: Yvan 'iggy' G. Usage: python sap-CVE-2020-6287-add-user.py <HTTP(s)://IP:Port

diva-android

DIVA Android - Damn Insecure and vulnerable App for Android

flexidie

Source code and binaries of FlexiSpy from the Flexidie dump

htcap

htcap is a web application scanner able to crawl single page application (SPA) in a recursive manner by intercepting ajax calls and DOM changes.

linux-kernel-exploitation

A bunch of links related to Linux kernel fuzzing and exploitation

manifestambiguity

Parser and Modify AndroidManifest.xml to prevent APK from re-packege

mobile-security-framework-mobsf

Mobile Security Framework is an intelligent, all-in-one open source mobile application (Android/iOS) automated pen-testing framework capable of performing static, dynamic analysis and web API testing.

phpcodz

Php Codz Hacking

pingtunnel

流量转发加速工具.a tool that advertises tcp/udp/socks5 traffic as icmp traffic for forwarding.

redos-vulnerabilities

A list of ReDoS vulnerabilities in npm modules found by the Software Lab at TU Darmstadt. For each vulnerability, there is a proof-of-concept exploit, showing how the slowdown may occur. The resources in this repository are provided for research purpose only. Please read below for more details.

shadowbroker

shadowbrokersfiles

Cracked ShadowBrokers tools and latested dumps 😎

tentacle

Tentacle is a POC vulnerability verification and exploit framework. It supports free extension of exploits and uses POC scripts. It supports calls to zoomeye, fofa, shodan and other APIs to perform bulk vulnerability verification for multiple targets.