Nairobi

Octo Leap

Elite
@JohnTroony

Offensive and Defensive Security.

php-webshells. Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!

2k

Blisqy. Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).

417

T0rn. Social Engineering template for credential harvesting. (Facebook as an example).

47

LUKS-OPs. A bash script to automate the most basic usage of LUKS volumes in Linux VPS

35

Scriptology. Collection of some scripts I've written in Perl, Python BASH, GO and JS to automate some common ops.

34

PE-CodeCaving. Work files for my blog post "Code Caving in a PE file.

16

Pega-Sauce. Collection of Public information and reports regarding Pegasus spyware by NSO

8

JohnTroony.github.io. Repository for my blog.

7

dotkali. Magic files for my i3wm set-up on Kali-Linux Rolling

6

Some-CTFs. Random collection of CTF challenges .

5

BeepTok. Python IRC Bot (making use of Twitter API for notifications)

4

pwn2own2018. A Pwn2Own exploit chain

4

hfs. HTTP File Server

2

Stealers-n-Panels. Collection of some info stealers samples (some with code) and panels.

2

Monitor-ADGroupMembership. PowerShell script to monitor Active Directory groups and send an email when someone is changing the membership

2

SecurityPolicyDsc. A wrapper around secedit.exe to configure local security policies

2

exploitdb. The official Exploit Database repository

2

WinBypass. Windows UAC Bypass

2

struts-pwn_CVE-2018-11776. An exploit for Apache Struts CVE-2018-11776

2

privilege-escalation-awesome-scripts-suite. PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

2

KBlast. Windows Kernel Offensive Toolset

1

misp-playbooks. MISP Playbooks

1

elegant-bouncer. ELEGANTBOUNCER is a detection tool for file-based mobile exploits.

1

octoleap. Static Site Generator design and make files for my new blog - https://octoleap.com. The Hugo template is a slight modificaton of https://github.com/slashformotion/hugo-tufte that heavily relies on Tufte-css.

1

WTFuzz. What the Fuzz?

1

GPG. John Ombagi - Public GPG Key

1

paperclip. A production-ready network printer honeypot for red-team laboratories and security research. Emulates a real enterprise network printer to capture, analyze, and optionally forward print jobs.

1
27
Apply