Pinned Loading

1. unhash unhash Public

   unhash is a set of tools designed to enable better password auditing

   Python 119 18

2. getting-started-in-infosec getting-started-in-infosec Public

   A noob friendly guide for juniors starting off in infosec. Pull requests welcome!

   290 45

3. vulnapi vulnapi Public

   Intentionaly very vulnerable API with bonus bad coding practices

   Python 38 23

4. This AWS lambda function will add th... This AWS lambda function will add the source IP from a GET request to a EC2 security group. Useful for CTF's where you want to have a vulnerable AWS infra, but want to "pre-clear" players (by them accessing/curling one URL) and allow them access through a secgroup.

   1

   import json

   2

   import boto3

   3

   from botocore.exceptions import ClientError

   4

   ec2 = boto3.client('ec2')

   5

   security_group_id = "sg-..." ## add your security group ID here!

5. gcrack gcrack Public

   password cracking with the help of google's search

   Python 36 9

6. jar-verify jar-verify Public

   Detect potentially tampered jar files by looking them up against maven's upstream repo

   Python