Showing Articles About
others
-
Martyn Ruks - 5 Aug 2006
DefCon 14 - IBM Networking
A presentation by Martyn Ruks at DefCon 14 in 2006 explored IBM network security testing methodologies. The talk focused on identifying potential vulnerabilities in IBM network infrastructure. Specific network security assessment techniques for IBM systems were discussed during the presentation.
| Name | Description | Stars | Link |
|---|---|---|---|
| C3 | Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits. | 1537 | GitHub |
| CVE-2021-25374_Samsung-Account-Access | This script can be used to gain access to a victim's Samsung Account if they have a specific version of Samsung Members installed on their Samsung Device, and if the victim's device is from the US or Korea region. | 24 | GitHub |
| Cue-COVID-Test_Research-Files | None | 0 | GitHub |
| FixerUpper | A Burp extension to enable modification of FIX messages when relayed from MitM_Relay | 13 | GitHub |
| IAMGraph | None | 38 | GitHub |
| IAMSpy | None | 205 | GitHub |
| IceKube | None | 170 | GitHub |
| Jamf-Attack-Toolkit | Suite of tools to facilitate attacks against the Jamf macOS management platform. | 178 | GitHub |
| Jandroid | None | 330 | GitHub |
| android-keystore-audit | None | 408 | GitHub |
| azure-service-tag-abuse | Scripts and other content to go with Aled Mehta's talk "Tag You're Exposed" at DEF CON Cloud Village 2023 | 0 | GitHub |
| bitlocker-spi-toolkit | Tools for decoding TPM SPI transaction and extracting the BitLocker key from them. | 288 | GitHub |
| boops-boops-android-agent | None | 2 | GitHub |
| boops-boops-docker-container | None | 0 | GitHub |
| captcha22 | CAPTCHA22 is a toolset for building, and training, CAPTCHA cracking models using neural networks. | 327 | GitHub |
| cloud-security-vm | Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments | 126 | GitHub |
| cloud-wiki | A public cloud security knowledgebase - https://www.secwiki.cloud/ | 50 | GitHub |
| damn-vulnerable-llm-agent | None | 184 | GitHub |
| encap-attack | Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols. | 21 | GitHub |
| fixit | None | 0 | GitHub |
| freezer | Rust implementation of IceKube download functionality | 5 | GitHub |
| keywe-tooling | Tools that can be used to interact with the KeyWe Smart Lock device. | 6 | GitHub |
| leonidas | Automated Attack Simulation in the Cloud, complete with detection use cases. | 529 | GitHub |
| llama-3-prompt-injection-fine-tuning | None | 1 | GitHub |
| llm-vulnerable-recruitment-app | An example vulnerable app that integrates an LLM | 14 | GitHub |
| lolcerts | A repository of code signing certificates known to have been leaked or stolen, then abused by threat actors | 335 | GitHub |
| peas | PEAS is a Python 2 library and command line application for running commands on an ActiveSync server e.g. Microsoft Exchange. | 171 | GitHub |
| sieve | None | 5 | GitHub |
| spikee | Spikee (Simple Prompt Injection Kit for Evaluation and Exploitation) can be used to assess the resilience of LLMs, guardrails, and application pipelines against known prompt injection and jailbreak patterns. | 54 | GitHub |
| usb-consumer-control | None | 36 | GitHub |
| workout-planner | None | 1 | GitHub |