Packj (pronounced package) is a command line (CLI) tool to vet open-source software packages for "risky" attributes that make them vulnerable…
BadOutlook is a simple PoC which leverages the Outlook Application Interface (COM Interface) to execute shellcode on a system based…
Self XSS attack using bit.ly to grab cookies tricking users into running malicious code. How it works? It is a…
GodOfWar is a command-line tool to generate war payloads for penetration testing / red teaming purposes, written in ruby. Features…
Flightsim is a lightweight utility used to generate malicious network traffic and help security teams to evaluate security controls and network…
Hostintel is used to collect various intelligence sources for hosts. Hostintel is written in a modular fashion so new intelligence…
IoT Home Guard is a project to help people discover malware in smart home devices. For users the project can…
Vba2Graph is a tool for security researchers, who waste their time analyzing malicious Office macros. Generates a VBA call graph,…
The Google Play Store has a notoriety for being the most secure place online to get Android applications, and Google…