144 open source projects by nccgroup

Example code included in the "Improving Your Embedded Linux Security Posture with Yocto" whitepaper

A session-0 capable dll injection utility

Salesforce object access auditor

Experimental Windows .text section Patch Detector

Web Filter External Enumeration Tool (WebFEET)

LOKI (Limited Obstructive Keyboard Impersonator) is a RDP File Transfer Tool Using Keypresses

String or worldlist encoder for use in fuzzing or web application testing

Go static analysis tool that checks for security issues using an AST.

Tool for automation of GUI-based testing.

Tools to enumerate Windows Firewall Hook Drivers on Windows 2000, XP and 2003

Memory searching utilities

A GUI-based tool to perform security testing against the HDMI CEC (Consumer Electronics Control) and HEC (HDMI Ethernet Channel) protocols

A plugin that provides resources for beginners to learn reverse engineering using Binary Ninja. It automatically installs several other plugins, and provides examples that showcase the features of these plugins

Grepify the GUI Regex Text Scanner for Code Reviewers

Datajack Proxy allows you to intercept TLS traffic in native x86 applications across platforms

NCC Group Template for the Microsoft Threat Modeling Tool 2016 for Automotive Security

NMAP script to enumerate users via finger

SCOMDecrypt is a tool to decrypt stored RunAs credentials from SCOM servers

Burp Suite extension to perform Kerberos authentication

A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection

Virtual host brute forcer

A web app scanner

A collection of tools to enumerate and analyse Windows DACLs

Set of scripts to deal with Cisco ASA firmware [pack/unpack etc.]

A Burp Extender plugin, that will deserialized java objects and encode them in XML using the Xtream library.

Impersonate Logged In Accounts & Execute Commands

Windows NT ioctl bruteforcer and modular fuzzer

NCC Code Navigator

Pointer Sequence Reverser - enable you to see how Windows C++ application is accessing a particular data member or object.

A GUI-based USB device fuzzer

Pentester-focused Docker registry tool to enumerate and pull images

A Burp Suite extension implementing the Signing HTTP Messages draft-ietf-httpbis-message-signatures-01 draft.

eBPF - extended Berkeley Packet Filter tooling

A network data locater using credentials obtained during penetration tests

A PyQt5 frontend to the binjatron plugin for Binary Ninja that includes highlighting features aimed at making it easier for beginners to learn about reverse engineering

A HTA shell to assist with breakout assessments.

Enumerate various traits from Windows processes as an aid to threat hunting

Example Vulnerable .NET HTTP Remoting

NMAP Vulnerability Scanning Scripts

A brute force program to test weak accounts configured to access a JMX Registry

Collection of different ways to execute code outside of the expected entry points

asadbg is a framework of tools to aid in automating live debugging of Cisco ASA devices

Python code shared by Scout2 and AWS-Recipes

This is an intentionally vulnerable smart contract truffle deployment aimed at allowing those interested in smart contract security to exploit a wide variety of issues in a safe environment.