Smith Noorah 's Projects
Parses everything from the .DS_Store files generated by macOS
.net config loader
An easy to configure .zshrc with 256 color support, github status, program exit status, directory truncation, and sane defaults.
Specification for 0x protocol
āØ A curated list of awesome threat detection and hunting resources šµļøāāļø
clif is a command-line interface (CLI) application fuzzer, pretty much what wfuzz or ffuf are for web. It was inspired by sudo vulnerability CVE-2021-3156 and the fact that for some reasons, Google's afl-fuzz doesn't allow for unlimited argument or option specification.
REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys
Awesome list of all things oracle manipulation. Creating to help spread a better understanding of oracles and oracle manipulation.
Huge Collection of Wordpress Exploits and CVES
NucleiFuzzer is a powerful automation tool for detecting xss,sqli,ssrf,open-redirect..etc vulnerabilities in web applications
Tips and Tutorials for Bug Bounty and also Penetration Tests.
Linux anti-debugging and anti-analysis rust library
Awesome wordlists for Bug Bounty Hunting
this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback functions
A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.
a Go code to detect leaks in JS files via regex patterns
Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
Projects for security students
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Automatically brute force all services running on a target.
Find exploits in local and online databases instantly
Automatically Launch Google Hacking Queries Against A Target Domain
An automated Wireless RogueAP MITM attack framework.
Quickly analyze and reverse engineer Android packages
š Join us for 30days of daily API security tests. #30days30tests We've spent last 120days building amazing API security tests for the community. Next 30 days we will post test tutorials here.
The program is designed to obfuscate the shellcode.
This program is designed to demonstrate various process injection techniques