This is your work, valued

USA

レアコイル

Advanced
@rarecoil

infosec chaos magnet.

unwebpack-sourcemap. Extract uncompiled, uncompressed SPA code from Webpack source maps.

543

pantagrule. large hashcat rulesets generated from real-world compromised passwords

401

hashes.org-list. Unique hashes.org "founds" sorted by occurrence. (November 2019)

90

awesome-dva. A curated list of "damn vulnerable apps" and exploitable VMs / wargames. See contributing.md for information.

34

ai-passwords. Password lists generated by deep learning algorithms.

33

open-dumpling. Scripts and images for MicroG+LineageOS 16.0 on OnePlus 5T with a locked bootloader.

16

laptop-co2e. Carbon footprints for various developer-friendly laptops (notebook computers).

13

x280-lcd-icc. A DisplayCAL/ArgyllCMS/Spyder4-calibrated ICC profile for the Lenovo ThinkPad X280 internal LCD.

11

PassGAN. Python3, TensorFlow 1.15.0, CUDA 10.0 fork of PassGAN (https://arxiv.org/abs/1709.00440)

8

stolon. A modular, multiprocess wordlist processing system

7

mqtt-packet-fuzzy. Radamsa-backed, hooked mqtt-packet for blind MQTT protocol fuzzing on Mac, Linux and Windows.

6

ecoserve. Configurations and information for ultra-low-power, off-grid-capable home servers. Work in progress.

6

sinkdweller. A TypeScript-based frontend to the radamsa fuzzer. No dependencies on most platforms.

4

awesome. 😎 Awesome lists about all kinds of interesting topics

4

rurasort. A multithreaded, Python 3 fork of BitCrackCyber's rurasort.

3

truffleHog. Searches through git repositories for high entropy strings and secrets, digging deep into commit history

3

nps. A multithreaded, (mostly) async mass Node.js vulnerability scanner.

2

secDevLabs. A laboratory for learning secure web development in a practical manner.

2

gdaxdata. A GDAX historical data archiver

2

quarian. Controls delinquent geth nodes

2

hashcat. World's fastest and most advanced password recovery utility

1

GraphQLmap. GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.

1

cordless. The Discord terminal client you never knew you wanted.

1

fuzz-me-maybe. An environment-variable-based fuzzing harness for Node applications.

1

overthewire. Writeups for Over The Wire wargames, for total security noobs.

1

leetcode. My solutions to leetcode algorithms questions, mostly in JavaScript, sometimes in Go

1

npmdl. DO NOT USE. A multithreaded script that downloads the latest version of nearly every tarball in the NPM registry.

1