This is your work, valued
gray_hat_csharp_code. This repository contains full code examples from the book Gray Hat C#
397wicked_cool_shell_scripts_2e. Full shell scripts for the second edition of Wicked Cool Shell Scripts
254yaml-fuzz. A generated corpus, seed, and target for a fuzz job
60Potato. Windows privilege escalation through NTLM Relay and NBNS Spoofing
53crestron. Tools for taking over Crestron Windows CE devices
36clamav-fuzz. A fuzz job for ClamAV
32vulnerable_xxe. A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.
26vulnerable_soap_service. This is a SOAP service written in C# that has intentional SQL injection vulnerabilties.
21volatile_reader. A small, fast, and efficient offline event log parser, registry reader, pcap file analyzer, IL decompiler (with ICSharpCode), and pagefile analyzer written in C# and using GTK.
18VolatileOCPP. Security-Focused Implementation of Open Charge Alliance OCPP Test Document Scenarios
12rubytooth. Updated ruby bluetooth bindings based on ruby-bluetooth
10rising_sun. security tool automation playground
6ical-fuzz. Results from fuzzing libical across many versions
6vulnerable_json_sqli. A small JSON web service that is vulnerable to SQL injection, with fuzzer to fuzz the endpoint.
5connect_back_bind_payloads. Simple connect-back and bind payloads written in C# and work on Linux, Mac, and Windows.
4midifuzz.
3volatileminds_modules. Ruby
3dirty_c-_decompiler.
3vulnerable_cookie_swap. Can username find out what the admin's password is? There's no SQL.
3is_a_fetus_a_person. Is a fetus a person?
2pdf_jbig2_gen. C#
2tiff-fuzz.
2ntreg-ruby. ruby library for reading nt registry hives offline
2sass-fuzz. Groff
2managed_trig_methods. C#
1od-autoassess_legacy. An old Bash script I wrote to automate security tools a long time ago. Probably no longer works or useful, just here to be here.
1psd-fuzz.
1Twitterizer. Twitterizer is a .NET class library that provides an easy-to-use interface for the Twitter web api. It is written for developers. It's features are easy to discover and follow a consistent design pattern.
1crossplatform_metasploit_payload.
1im_scripts. Shell
1tga-fuzz.
1