Information Security
Scallion Scallion lets you create vanity GPG keys and .onion addresses (for Tor’s hidden services) using OpenCL. Scallion runs on Mono (tested in Arch Linux) and .NET 3.5+ (tested on Windows 7 and Server 2008). How...
testssl.sh is a free command-line tool which checks a server’s service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. Key features Clear output: you can tell...
Memory Mapper Memory Mapper is a lightweight library that allows the ability to map both native and managed assemblies into memory by either using process injection of a process specified by the user or...
padding-oracle-attacker CLI tool and library to execute padding oracle attacks easily, with support for concurrent network requests and an elegant UI. Install Make sure Node.js is installed, then run $ npm install –global padding-oracle-attacker or $ yarn global...
Octopus Octopus is a security analysis framework for WebAssembly module and Blockchain Smart Contract. The purpose of Octopus is to provide an easy way to analyze smart contract security and understand better what is...
deen An application that allows applying encoding, compression, and hashing to generic input data. It is meant to be a handy tool for quick encoding/decoding tasks for data to be used in other applications....
stegify stegify is a simple command-line tool capable of fully transparent hiding any file within an image. This technique is known as LSB (Least Significant Bit) steganography. Changelog v1.2 Encoding/Decoding data file in/from multiple...
xortool.py A tool to do some xor analysis: guess the key length (based on the count of equal chars) guess the key (base on knowledge of most frequent char) Download python3 -m pip install...
BabySploit is a penetration testing toolkit aimed at making it easy to learn how to use bigger, more complicated frameworks like Metasploit. With a very easy to use UI and toolkit, anybody from any...
RansomCoin Extracting metadata and hardcoded Indicators of Compromise from ransomware, in a scalable, efficient, way with cuckoo integrations. Ideally, is it run during cuckoo dynamic analysis, but can also be used for static analysis...
Suggested Reading