Skip to content
@qeeqbox

QeeqBox

State-of-the-art opensource projects and services for red, purple, and blue teams

Pinned Loading

  1. social-analyzer Public

    API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites

    JavaScript 12.6k 1k

  2. analyzer Public

    Analyze, extract and visualize features, artifacts and IoCs of files and memory dumps (Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more)

    Python 287 61

  3. chameleon Public

    19 Customizable honeypots for monitoring network traffic, bots activities and username\password credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCKS5, Redis, TELNE…

    Dockerfile 696 118

  4. url-sandbox Public

    Scalable URL Sandbox for analyzing URLs and Domains from phishing attacks

    Python 183 54

  5. raven Public

    Advanced Cyber Threat Map (Simplified, customizable, responsive and optimized)

    JavaScript 192 50

  6. honeypots Public

    30 different honeypots in one package! (dhcp, dns, elastic, ftp, http proxy, https proxy, http, https, imap, ipp, irc, ldap, memcache, mssql, mysql, ntp, oracle, pjl, pop3, postgres, rdp, redis, si…

    Python 797 125

Repositories

Showing 10 of 92 repositories
  • stored-cross-site-scripting Public

    An adversary may inject malicious content into a vulnerable target

    4 AGPL-3.0 1 0 0 Updated Jul 7, 2025
  • reflected-cross-site-scripting Public

    A threat actor may inject malicious content into webapp. The payload is reflected in the HTTP request and response, then executed in the victim's browser

    3 AGPL-3.0 1 0 0 Updated Jul 7, 2025
  • open-redirect Public

    A threat actor may send a malicious redirect request for a vulnerable target to a victim; the victim gets redirected to a malicious website that threat actor controls

    3 AGPL-3.0 0 0 0 Updated Jul 6, 2025
  • dom-based-cross-site-scripting Public

    A threat actor may inject malicious content into webapp. The payload is not reflected in the HTTP request and response, then executed in the victim's browser

    3 AGPL-3.0 1 0 0 Updated Jul 7, 2025
  • default-credential Public

    A threat actor may gain unauthorized access using the default username and password

    2 AGPL-3.0 0 0 0 Updated Jul 6, 2025
  • vulnerable-web-app Public

    vulnerable-web-app

    HTML 1 AGPL-3.0 0 0 0 Updated Jul 6, 2025
  • network-security-for-qeeqs Public

    qeeqbox.github.io/network-security-for-qeeqs

    HTML 1 0 0 0 Updated Jun 17, 2025
  • social-analyzer Public

    API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites

    JavaScript 12,565 AGPL-3.0 1,014 11 4 Updated May 13, 2025
  • honeypots Public

    30 different honeypots in one package! (dhcp, dns, elastic, ftp, http proxy, https proxy, http, https, imap, ipp, irc, ldap, memcache, mssql, mysql, ntp, oracle, pjl, pop3, postgres, rdp, redis, sip, smb, smtp, snmp, socks5, ssh, telnet, vnc)

    Python 797 AGPL-3.0 125 7 4 Updated Jan 31, 2025
  • analyzer Public

    Analyze, extract and visualize features, artifacts and IoCs of files and memory dumps (Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more)

    Python 287 AGPL-3.0 61 1 0 Updated Apr 15, 2024