CaledoniaProject

个人信息
地址
粉丝
538
591
博客
2012-01-20
项目信息

awesome-opensource-security 189

A list of interesting open-source tools

CVE-2018-1270 Java 112

Spring messaging STOMP protocol RCE

AxisInvoker Java 49

Minimal AXIS2 webshell

wooyun_offline_ui CSS 42

乌云离线UI

DLL_Hijacker_Rewritten Python 40

php-decoder 18

基于 zend_compile_string 的 PHP 加密代码解密工具

PasswordFilter C++ 15

public-src PowerShell 14

非涉密源码

list-backup-2021.08 9

Monthly Backup of awesome-opensource-security

rdpscan C 8

RDP password verification tool - No external libraries required ;-P

password-distance Python 7

常见密码变形方法

discuz-getshell-auto-method2 PHP 6

Discuz 全自动GetShell 方法#2

DidiCityPickerViewController Objective-C 5

滴滴出行风格的城市选择器

PatchGuard C 5

*NIX Kernel PatchGuard Implementation

drivers-binaries 4

Exploitable drivers, you know what I mean

list-backup-2020.11 4

Monthly Backup of awesome-opensource-security

Remote-Desktop-Manager-decrypter 4

cdnid Perl 3

CDN 网段识别

Phishing-Samples 3

钓鱼样本,仅截图

wordpress-backdoor PHP 3

Backdooring WordPress with APIs

resty-memcached-consistent Lua 3

Consistent Hashing in memcached, a modified version of resty-memcached

redis-dir-brute Perl 3

利用redis性能探测目录是否存在

bccrypto-csharp C# 2

Bouncy crypto with AES-256-GCM only

useless-virus-samples 2

一些没用的后门和病毒样本

windows-internal-structure C 2

Undocumented, not google listed windows internal structure

redis-getshell Perl 2

chrome-extension-examples JavaScript 2

chrome 扩展例子

gitbook-plugin-toc-ng * JavaScript 2

An enhanced gitbook TOC plugin

kekeo-with-asn-vs2013 C 2

kekeo exploit

wordpress-getshell Perl 2

SpriteCreator C++ 2

CSS Sprite Creator for UNIX systems, public edition has no algorithm on image arrangement.

Sublime-EncodingConverter Python 1

Reopen the current file and convert from whatever encoding you like to UTF-8

ProcessInjectionTesting 1

MSbuild.exe Process Injection Tests

decrypt-vnc Python 1

macos-sandbox-profiles 1

pupyrat-config-decoder Python 1

Extract and decode pupyrat client configuration

src-scan Python 1

Simple artifact parser

nse-scripts Lua 1

Private NSE scripts

ConkyConfig Perl 1

My conky config plus a mpd cover fetcher

static-compile-scripts Shell 1

静态编译脚本集合

wx-decrypt-auto-old Shell 1

RDO-decrypt 1

Decrypt connections.dat created with Remote Desktop Organizer

pdb-downloader-py Python 1

PDB download tool

tftpboot-root 1

PXELinux 测试文件

awesome-ppt-design 1

各种安全报告截图,主要是设计比较好的图表

ios-snippets-objc Objective-C 1

iOS 开发常用代码,Object-C

office-malware-samples 1

Malware samples

ipsec-autosetup Shell 1

logparser Perl 1

按行解析,使用 regex 提取字段,并按照指定的名字自动保存为 sqlite

myflow C 1

Pcap analysis tool, HTTP parsing

Exchange-AD-Privesc * PowerShell 1

Exchange privilege escalations to Active Directory

waf-fuzz-example Python 1

Example code to Fuzz WAF rules

CreateDesktop * C++ 1

Example application for creating multiple desktops on Windows

defcon25-public * Python 1

Publicly released tools/plugins from PPP for DEFCON 25 CTF Finals

stdin2websocket JavaScript 1

Read whatever available from stdin and deliver it to all websocket peers

iOSAppHook * Swift 1

专注于非越狱环境下iOS应用逆向研究,从dylib注入,应用重签名到App Hook。

weblogic-decryptor Java 1

Weblogic password decryption, JARs copied from wls12130

CLineEdit C++ 1

Qt lineedit wiget, plus a 'clear' button on the right side.

osxinj * C 0

osx dylib injection

WinDefendInjectPoC * 0

PrintNightmare * 0

x64dbg * 0

An open-source x64/x32 debugger for windows.

gcp-dhcp-takeover-code-exec * 0

Google Compute Engine (GCE) VM takeover via DHCP flood - gain root access by getting SSH keys added by google_guest_agent

redress * 0

Redress - A tool for analyzing stripped Go binaries

homebrew-cask * 0

🍻 A CLI workflow for the administration of macOS applications distributed as binaries

InternalsViewer-archive C# 0

Internals Viewer for SQL Server

blackarch-guide * 0

BlackArch Linux Guide for Users and Developers

CVE-2021-26855 * 0

CVE-2021-26855 exp

chrome-sandbox-posix C 0

Rip sandbox out of chromium project

kernel-anti-anti-debug 0

Linux kernel level anti anti-debug solution

ida_strcluster * Python 0

extending IDA's string navigation capabilities

wincode * 0

过去写的一些Windows安全研究相关代码

Antivirus-Artifacts * 0

Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.

maven-project-template Java 0

SQli-Gods-Syntax-V1.0-archive 0

db-copy Java 0

Data migration tool

DR-rootkit-archive 0

An archive of DR rootkit

ipsecs-kbeast-v1-archive 0

An archive of KBeast

build-kali-iso Shell 0

Build a minimal kali ISO for VM recovery purpose

DotNetExp * 0

Ninjasploit * 0

A meterpreter extension for applying hooks to avoid windows defender memory scans

FindCiOptions C# 0

Locate ci.dll!g_CiOptions with C#

windows-vm-setup Batchfile 0

php-disable-functions-audit Python 0

autopwn-archived Python 0

CS_SQLite3_fixed C# 0

IndexedDB-to-sqlite3 JavaScript 0

Convert IndexedDB to SQLite3 with electron

DanSpecial * 0

Weaponizing Gigabyte driver for priv escalation and bypass PPL

Misc * 0

This is a place to share my miscellaneous projects.

lkm-build Python 0

Batch LKM build tool

Socks5 * C# 0

A full-fledged high-performance socks5 proxy server written in C#. Plugin support included.

ipt_counting C 0

iptables monitoring tool, for conky scripting

php-parser-test PHP 0

LNK-Parser-csharp C# 0

The only LNK parser that is compatible with .NET 3.5

CsharpSQLite * C# 0

Windows, Linux, Mono C# port of the SQLite library

JNIAnalyzer * 0

Analysis scripts for Ghidra to work with Android NDK libraries.

WinAltSyscallHandler * 0

Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999

WatchDog * 0

BloodHound Data Scanner

abootimg * C 0

private abootimg supporting latest boot.img

imap2mailbox Python 0

Updated-Carbanak-Source-with-Plugins * C++ 0

https://twitter.com/itsreallynick/status/1120410950430089224

cloudflare-scrape * Python 0

A Python module to bypass Cloudflare's anti-bot page.

pac-file-tester * JavaScript 0

Tests and Compares PAC Files

NetNTLMtoSilverTicket * PowerShell 0

SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket

stun * JavaScript 0

Low-level Session Traversal Utilities for NAT (STUN) server

DreamLoader * Assembly 0

Simple 32/64-bit PEs loader.

pentest_scripts * Python 0

penetration testing scripts

randomrepo * 0

Repo for random stuff

grammar * Tcl 0

EBNF grammar of LLVM IR assembly.

cookie_crimes * Python 0

Read local Chrome cookies without root or decrypting

Word-Doc-Video-Embed-EXE-POC * HTML 0

OSX * Objective-C 0

OSX tools/scripts focused on Post-Exploitation capabilities

test 0

3dpwn * Python 0

VirtualBox 3D exploits & PoCs

mjet * Java 0

Mogwai Java Management Extensions (JMX) Exploitation Toolkit

DanderSpritz_lab * HTML 0

A fully functional DanderSpritz lab in 2 commands

spring-data-web Java 0

Deserialize * Java 0

router-passwords Python 0

Default router passwords collection - offline edition

SLAE64_Assignments C 0

iBoot * C 0

Source code for a core component of the iPhone's operating system

mimikatz-auto-compile PowerShell 0

Automatically compile latest version of mimikatz with VS express

BurpUnlimited * Java 0

This project EXTENDS BurpLoader's license. It is NOT intended to replace BurpLoader.

defcon-25-workshop * C 0

Windows Post-Exploitation / Malware Forward Engineering DEF CON 25 Workshop

PoC-1 * Python 0

PoC of CVE/Exploit

iOS * 0

Most usable tools for iOS penetration testing

defcon-2017-tools * Python 0

DEFCON CTF 2017 Stuff of Shit by HITCON

MEMSCAN * Objective-C++ 0

A memory scanning tool which uses mach_vm* to either dump memory or look for a specific sequence of bytes.

upx_reflectdll * C 0

UPX - the Ultimate Packer for eXecutables

hack_lu_2017 * Jupyter Notebook 0

Python and Machine Learning Workshop at Hack.lu 2017

security-research-pocs * PHP 0

Proof-of-concept codes created as part of security research done by Google Security Team.

365Tools * PowerShell 0

A PowerShell module with several functions for working with Office 365 through PowerShell

defcon25_uac_workshop * 0

UAC 0Day all day!

Office8570 * Python 0

CVE20178570

Vulnerable-OTP-Application * PHP 0

Vulnerable OTP/2FA Application written in PHP using Google Authenticator

ShellLink * C# 0

A .NET Class Library for processing ShellLink (LNK) files

preeny * C 0

Some helpful preload libraries for pwning stuff.

ctf-2017-release * Ruby 0

Our released code for BSidesSF CTF 2017

AntiVM * Java 0

this is a project anti vm on android

shellbags * Python 0

Cross-platform, open-source shellbag parser

JKS-private-key-cracker-hashcat * Java 0

Nail in the JKS coffin - Cracking passwords of private key entries in a JKS file

XRulez * C 0

A command line tool for creating malicious outlook rules

antinet * C# 0

.NET anti-managed debugger and anti-profiler code

HookCase * C++ 0

Tool for reverse engineering macOS/OS X

HatCloud * Ruby 0

Bypass CloudFlare with Ruby

libfuzzer-workshop * C++ 0

Repository for materials of "Modern fuzzing of C/C++ Projects" workshop.

Token-Stealing-Shellcode * Assembly 0

dbghelp.js * JavaScript 0

windows dbghelp.dll wrapper for js

rdp-test 0

cleanup-my-mac Shell 0

BaiduHi-Remove-Family Shell 0

禁用 family 弹窗功能,以及自动更新

PoC * Python 0

Various PoCs

nathan * Python 0

Android Emulator for mobile security testing

PrivEsc * C 0

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

RottenPotato * C# 0

RottenPotato local privilege escalation from service account to SYSTEM

kcap * Java 0

MWPhotoBrowser-with-number Objective-C 0

google-font-localify Perl 0

log2es Perl 0

Parse and load logs into ElasticSearch

CrashInfo * Python 0

Python wrapper for cdb.exe that can detect and analyze application crashes

DexExtractor * Java 0

android dex extractor ,anti-shell,android 脱壳

tools * C 0

security and hacking tools, exploits, proof of concepts, shellcodes, scripts

router-change-monitor Perl 0

The program monitors if your default router IP address has changed, in real time

Chrome-Browser-Plugins 0

Miscellaneous chromium plugin

snippets-vim 0

VIM code snippets, modified

IIS-MetaBase-Parser Perl 0

IIS MetaBase parser

uc-api-helper Perl 0

UCenter 辅助脚本, 移植PHP函数到perl. 此模块用于和autopwn交互

linux-exploit-suggestor-rewritten Perl 0

AdvancedLogParser-CLI Perl 0

Command-line edition of advanced log parser

Kernel-Config 0

Minimized / static kernel configurations

KernModGen Shell 0

Kernel project generator (Linux 2.6+ only)

星排名
编程语言 排名 好于 星星数
CSS 524 99.05% 42
C 1917 96.34% 18
Java 1969 97.82% 162
C++ 2253 96.21% 19
Python 3001 96.67% 54
更新于2021-09-23 21:10:45