2
Mon
Tue
Wed
Thu
Fri
Sat
Sun
Active 6d ago
los angeles

samy kamkar

Top 13%
@samyk

explo(r|it)ing boundaries

poisontap. Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js.

6.5k

evercookie. Produces persistent, respawning "super" cookies in a browser, abusing over a dozen techniques. Its goal is to identify users after they've removed standard cookies and other privacy data such as Flash cookies (LSOs), HTML5 storage, SilverLight storage, and others.

4.7k

magspoof. A portable device that can spoof/emulate any magnetic stripe, credit card or hotel card "wirelessly", even on standard magstripe (non-NFC/RFID) readers. It can disable Chip&PIN and predict AMEX card numbers with 100% accuracy.

4.1k

pwnat. The only tool/technique to punch holes through firewalls/NATs where multiple clients & server can be behind separate NATs without any 3rd party involvement. Pwnat is a newly developed technique, exploiting a property of NAT translation tables, with no 3rd party, port forwarding, DMZ, DNS, router admin requirements, STUN/TURN/UPnP/ICE, or spoofing.

3.9k

slipstream. NAT Slipstreaming allows an attacker to remotely access any TCP/UDP services bound to a victim machine, bypassing the victim’s NAT/firewall, just by anyone on the victim's network visiting a website

2k

skyjack. A drone engineered to autonomously seek out, hack, and wirelessly take full control over any other Parrot or 3DR drones within wireless or flying distance, creating an army of zombie drones under your control.

1.8k

usbdriveby. USBdriveby exploits the trust of USB devices by emulating an HID keyboard and mouse, installing a cross-platform firewall-evading backdoor, and rerouting DNS within seconds of plugging it in.

1.3k

keysweeper. KeySweeper is a stealthy Arduino-based device, camouflaged as a functioning USB wall charger, that wirelessly and passively sniffs, decrypts, logs and reports back (over GSM) all keystrokes from any Microsoft wireless keyboard in the vicinity.

1.1k

opensesame. OpenSesame attacks wireless garages and can open most fixed-code garages and gates in seconds using a Mattel toy

890

samytools. Simple tools to make reverse engineering and console cowboying easier, primarily by data translation and manipulation + file handle piping. Mostly *nix tools with an emphasis on macOS.

621

webscan. Browser-based network scanner & local-IP detection

472

proxygambit. Anonymize and fracture network traffic/Internet access over a point-to-point wireless link or through TCP->GSM->wifi tunnel (advanced resurrection of ProxyHam)

362

Awesome-Hacking-Resources. A collection of hacking / penetration testing resources to make you better!

303

dingdong. Digital Ding Dong Ditch -- RTL-SDR + Arduino + GSM/SMS/FONA + RF + GQRX to hack a wireless doorbell from a text message

252

quickjack. Quickjack is a point-and-click tool for intuitively producing advanced clickjacking and frame slicing attacks.

246

combobreaker. Motorized, portable, 3D printed, Arduino-based combination lock cracker

245

awesome-raspberrypi. A curated list of awesome Raspberry Pi tools, projects, images and resources

215

frisky. Instruments to assist in binary application reversing and augmentation, geared towards walled gardens like iOS and macOS

196

glitchsink. Voltage glitcher to bypass instructions/bootloader protections *without* target modification

141

awesome-vehicle-security. 🚗 A curated list of resources for learning about vehicle security and car hacking

113

easel-driver. Easel driver for Linux, Mac, Windows, ARM, Raspberry Pi, Intel, FTDI, CH340, CH341, CP210x, FTDI clones, local, and remote access to GRBL-based CNC controllers

109

jiagra. Javascript/Website Performance Enhancement

104

drawio. Source to www.draw.io

98

rflasermic. RF-modulated high fidelity laser microphone and keystroke sniffer

92

myo-osc. OSC bridge for the Thalmic Myo gesture control armband (cross-platform)

82

awesome-electronics. A curated list of awesome resources for electronic engineers and hobbyists

70

samyk.

62

sqlpp. feature-rich, multi-database interfacing, multi-connection, colorful console-based SQL client

56

BPL. The Blind Public License is a restrictive license that does not allow any person to read, view, interpret, emulate, debug, disassemble, reverse engineer, or execute ("Observing") any included code, schematics or engineering diagrams (the "Technology").

55

devtools-detect. Detect if DevTools is open and its orientation

50

bgrid. wireless balloon LED network w/ATtiny24 + nRF24L01+ (PCB + firmware + TouchDesigner)

49

buspirate. Bus Pirate (cross-platform, cleaned up for OS X)

45

inspectrum. Offline radio signal analyser

45

Blackhat-MacOS-Config. Shell

41

rarcrack. [unofficial fork] RAR bruteforce cracker

41

crak. Crash Royale Attack Kit

40

natpinning. NAT Pinning exploit tool for penetration testers.

34

proxmark3. RRG / Iceman repo - Proxmark3 / Proxmark / RFID / NFC

34

crackerjack. A collection of crackmes

33

openrTMS. Open rTMS (Transcranial Magnetic Stimulation)

32

scapy. Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.

32

awesome-p2p. List of great p2p resources

31

apple_bleee. Apple BLE research

31

libnfc. Platform independent Near Field Communication (NFC) library

28

amazonshelper. TamperMonkey script (browser extension) for Amazon to add price by volume for materials and to hide useless UI elements

28

nemesis. A command-line network packet crafting and injection utility

26

AppleRemoteSender. Emulate the Apple IR Remote with an Arduino

25

lcventilator. Low cost ventilator based on Dr. Jeffrey Ebin's design

22

specs. Public specifications for easy accessibility

21

esp32_image_parser. A toolkit for helping you reverse engineer ESP32 firmware.

20

pinning. #PINNING is a browser extension (currently TamperMonkey script) to improve Pinterest's desktop browsing UX

18

nRF24LE1_Programmer. Arduino sketches and Perl script to program flash on Nordic nRF24LE1 wireless SOC

18

ssl-kill-switch2. Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS and OS X Apps

18

GetThermal. Cross-platform USB thermal camera viewer

17

rf1101se-teensy. Driving one of those cheap RF1101SE boards with a Arduino or Teensy

17

libfreenect. Drivers and libraries for the Xbox Kinect device on Windows, Linux, and OS X

16

ldid. ldid and ldid2

14
57
Apply