marcinguy Goto Github PK
Name: Marcin Kozlowski
Type: User
Bio: IT (Unifysec, Domain-DB, Exploitalert, Betterscan) @topcodersonline-solutions
Twitter: marcinguy
Location: Berlin, Germany
Name: Marcin Kozlowski
Type: User
Bio: IT (Unifysec, Domain-DB, Exploitalert, Betterscan) @topcodersonline-solutions
Twitter: marcinguy
Location: Berlin, Germany
A collection of proof-of-concept exploit scripts written by the STAR Labs team for various CVEs that they discovered or found by others.
CVE-2019-2107
CVE 2019-2215 Android Binder Use After Free
BlueFrag experiments
CVE-2020-0796 SMBGhost
CVE 2020-10135 a.k.a BIAS (Bluetooth Impersonation Attack)
CVE-2020-15999
CVE-2020-8597
Stagefright on CyanogenMod 12 (Android 5.0.1) on Samsung Galaxy S3 Neo+ GT-9301I
Port of "DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers" to Clang/LLVM 10 and Linux Kernel
Please send patches as pull requests.
fpicker is a Frida-based fuzzing suite supporting various modes (including AFL++ in-process fuzzing)
This experimetal fuzzer is meant to be used for API in-memory fuzzing.
Fuzz Introspector
Ptrace fuzzer experiments
Python asynchronous ICMP ping with progressbar (gevent based)
HTML5 Attacks – Common/Uncommon Attack Vectors
This program show you IMSI numbers of cellphones around you.
Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
jQuery < 3.5 Cross-Site Scripting (XSS) in html()
Modern Kernel Stack Buffer Exploitation (4.3.5). Few code snippets and my BlueBorne exploitation experience.
Directory traversal of host logs running kube-apiserver and kubelet
Kubescape is a K8s open-source tool providing a multi-cloud K8s single pane of glass, including risk analysis, security compliance, RBAC visualizer and image vulnerabilities scanning.
Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...
LinkedIn Data Mining
The LLVM Project is a collection of modular and reusable compiler and toolchain technologies. Note: the repository does not accept github pull requests at this moment. Please submit your patches at http://reviews.llvm.org.
Dynamic Loader Oriented Programming - Wiedergaenger PoC (Proof of Concept) on Ubuntu 16.04.5 LTS
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.