Malicious VS Code extensions
A PoC demonstrating how attackers can weaponise VS Code extensions as an attack vector.
AntiArgfuscator
Detect command lines obfuscated using @Wietze's argfuscator and more using a XGBoost model.
DOMS: Document Object Model Similarity
DOMS helps determine the similarity between two webpages based on both their code and visual appearance.
Papyrus - A python obfuscation, evasion and anti analysis framework
Papyrus is a framework consisting of multiple features which make python source code harder to understand and analyse.
Malnus Carlware
A PoC demonstrating the use of chess moves over a lichess game for command and control (C2)
RSA-Backdoor
Implementation of a kleptographic backdoor (S.E.T.U.P) on the RSA algorithm
Breachforums CDN Downloader
A tool to download all breachforums databases from emo's website.
YA-CORS
YetAnother-CORS misconfiguration scanner. Scans for miconfigured CORS headers.
YA-LFI
YetAnother-LFI. Looks for local file inclusion vulnerabilities by fuzzing endpoints.
Hooksguide
Helping threat hunters with discord webhooks, bots and more
Scrolls-256
Very primitive 256 bit symmetric cipher. DO NOT USE THIS IN A PROD ENVIRONMENT
Discord_DB
A tool which allows you to use discord as a database. Free infinite storage glitch
0xChat
An end-to-end encrypted messaging service. Made as a highschool projects
URX
A basic URL shortening service. This idea of the URL shortener and its features comes from the "Don't spoil the surprise" proposal submitted to CCExtractor in GSoC 2024.
More Stuff
Coming soon ...