Python XMPP bot framework

scan and check the URLs and Certificate in all vhosts in a directory

File Signature Analysis Tool

A dumb script for finding dumb coding errors in WordPress plugins

Damn Small FI Scanner

A taint analysis tool for vulnerabilities in PHP scripts. Currently supports SQL injection, command line injection and persistent XSS.

Wordpress Plugin "WP Checkout" Mass exploit

Multi-language web CGI interfaces exploits.

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

Just some exploits :P

Multi-threaded web application directory bruteforcer

Python 3.5+ DNS asynchronous brute force utility

Jaidam is an open source penetration testing tool that would take as input a list of domain names, scan them, determine if wordpress or joomla platform was used and finally check them automatically, for web vulnerabilities using two well‐known open source tools, WPScan and Joomscan.

Client side encrypted pastebin

This repo is all about myself coded exploit codes :)

An HTTP based RAT (Remote Administration Tool) that allows you to remotely control devices from your browser

Python process launching

A PoC backdoor that uses Gmail as a C&C server

CVE-2018-8021 Proof-Of-Concept and Exploit