Skip to content
Offensive Security Certified Profesional (OSCP) course scripts, some have been generalized
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Type Name Latest commit message Commit time
Failed to load latest commit information.
bash Add SMTP 'VRFY' scan Jan 2, 2017
c exploit-db 646.c modified for PWK windows 7 lab Jan 8, 2017
ftp/pureFTPd ftp setup Jan 9, 2017
rust Add pingsweep for CIDR subnets Oct 29, 2017
.gitignore Add SMTP 'VRFY' scan Jan 2, 2017
LICENSE add note about modified exploits Jan 8, 2017 Initial entropy Oct 19, 2017

Security Utilities

Useful scripts, see files in script directories for individual usage and information. This project is mirrored to GitHub from the primary repository on GitLab at and if accessed on GitHub may not be the most recent version.

Legal Disclaimer: usage of tools for attacking web servers without prior mutual consistency can be considered as an illegal activity. it is the final user's responsibility to obey all applicable local, state and federal laws. authors assume no liability and are not responsible for any misuse or damage caused by these tools.

Even information gathering such as port scanning is considered illegal in many areas and a gery area in most.




  • port_check: Check if a single port is open
  • pingsweep: Multithreaded ping sweep, and port scanning
  • entropy: Calculates the entropy of a file


  • slmail_linux.c: A buffer overflow attack for SLMail 5.5 compiled for Linux
  • slmail_windows.c: A buffer overflow attack for SLMail 5.5 compiled for Windows


It is possible to turn FTP into a non-interactive process by providing the Windows default FTP client ftp.exe with a text file containing FTP commands. This is useful in post exploitation when there is a need to upload files and tools to a machine.

  • Install and configure a FTP server on (Debian like) Linux

Note on extension convention

All program output files are by convention use the .txt extension which are ignored by the .gitignore. All files for input are by convention .dat which will be tracked.

You can’t perform that action at this time.