627 Open source projects that are alternatives of or similar to Nonce Disrespect

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

hacker, ready for more of our story ! 🚀

Python toolbox to evaluate graph vulnerability and robustness (CIKM 2021)

A DNS rebinding attack framework.

Penetration tests guide based on OWASP including test cases, resources and examples.

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

Huorong Internet Security vulnerabilities 火绒安全软件漏洞

TLS tunnel -- an alternative to stud / stunnel

A bootrom exploit for MediaTek devices

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

Docker OpenLDAP Container w/TLS & Replication Support S6 Overlay, and Zabbix Monitoring based on Alpine

🚀 Secure HAProxy Ingress Controller for Kubernetes

Additional android app for SpaceHunn's ESP8266 DeAuther.

MrsPicky - An IDAPython decompiler script that helps auditing calls to the memcpy() and memmove() functions.

Automatic SSRF fuzzer and exploitation tool

APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )

Securify v2.0

Social Network Tabs Wordpress Plugin Vulnerability - CVE-2018-20555

Enforce HTTPS in node.js koa apps

A simple SSL/TLS proxy with mutual authentication for securing non-TLS services

A sandbox escape based on the proof-of-concept (CVE-2018-4087) by Rani Idan (Zimperium)

Main repository for the Veracruz privacy-preserving compute project.

The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebases using a variety of static analysis security testing (SAST) tools and generate reports to evaluate those tools.

Proxy server based on netty

溯光 (TrackRay) 3 beta⚡渗透测试框架（资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap）

A curated list of awesome baseband research resources

Reverse Shell as a Service

Reverse proxy for PHP built-in server which supports multiprocessing and TLS/SSL encryption

Internet-Drafts that make up the base QUIC specification

Simple and easy go web micro framework

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

✉️📡 Spam thousands of WiFi access points with custom SSIDs

Qualys sslabs-scan utility in a tiny docker image

Transparent SSL/TLS interception

Standalone implementation of a part of the WSUS spec. Built for offensive security purposes.

Easily view and inspect X.509 certificates on your iOS device.

使用docker快速搭建各大漏洞靶场，目前可以一键搭建17个靶场。

burpsuite extension for check unauthorized vulnerability

Keeps track of certificates as they are deployed in a network environment.

Word 2016 vulnerability allows injecting HTML/JS code into a docx file's embeddedHTML="" tags.

Java ACME Client application

Potentially dangerous files

golang hpkp client library

🛡️ GitHub Action for security audits

A collection of electronic hacker magazines carefully curated over the years from multiple sources

A lightweight, simple FTP server. Pure Java, no dependencies.

IoT workshop based on ESP8266, a DHT11/22 and neopixel RGB LED

💀 🔓 CLI tool for PKCS7 padding oracle attacks

100% non-blocking, Java NIO only( inspired by zio-nio) , JSON HTTP server based on Scala ZIO library. Everything including TLS encryption modeled as ZIO effects, convenient route DSL similar to https4s, up to 30K TPS local JSON transaction with 25 threads on 6 cores(i7) with ZIO fibers.

Secure SOCKS5 server in Go

PoC exploit for CVE-2016-4622

Small and made-easy HTTP/HTTPS server based on Jef Poskanzer's thttpd

A Brisk and Better Assured Cryptographic Toolkit

Network file transfer application for Windows, OS X, & Linux

Python script that collects SSL/TLS information from hosts

Provides utilities for working with Transport Layer Security keys and certificates. It provides resources that allow private keys, certificates and certficate requests to be created as part of a Terraform deployment.

Simple TlsLibrary written in Kotlin - Provides DSL for creating TLS connections

With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools

Robot Vulnerability Database. An archive of robot vulnerabilities and bugs.

Google Cloud Platform IOT Core Examples