nccgroup Goto Github PK
Name: NCC Group Plc
Type: Organization
Bio: Please report all security issues to security at nccgroup dot com
Twitter: nccgroupinfosec
Location: Global
Blog: https://www.nccgroup.com
Name: NCC Group Plc
Type: Organization
Bio: Please report all security issues to security at nccgroup dot com
Twitter: nccgroupinfosec
Location: Global
Blog: https://www.nccgroup.com
Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans
A GUI-based USB device fuzzer
the Network Protocol Fuzzer that we will want to use.
Google Cloud Platform Security Tool
Ghidra scripts for recovering string definitions in Go binaries
NCC Group gists
GitPwnd is a network penetration tool that lets you use a git repo for command and control of compromised machines
Go static analysis tool that checks for security issues using an AST.
Pentester-focused Docker registry tool to enumerate and pull images
This is an intentionally vulnerable smart contract truffle deployment aimed at allowing those interested in smart contract security to exploit a wide variety of issues in a safe environment.
PHP class to generate and verify Google Authenticator 2-factor authentication
Grepify the GUI Regex Text Scanner for Code Reviewers
Code scanning regex profiles
Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io), LOLBAS (https://github.com/LOLBAS-Project/LOLBAS), WADComs (https://wadcoms.github.io), and HijackLibs (https://hijacklibs.net/).
Guesses hash types, picks some sensible dictionaries and rules for hashcat
Hodor! Fuzzer..
Holepuncher, A wrapper script to open ports in iptables and start a listener.
A Windows application to help out with external infrastructure scans.
A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.
A Burp Suite extension implementing the Signing HTTP Messages draft-ietf-httpbis-message-signatures-01 draft.
Are you auditing an embedded device? Why not play Hardware Security Bingo to add to the fun?
An Integrity-Check Monitoring Pintool
idahunt is a framework to analyze binaries with IDA Pro and hunt for things in IDA Pro
Basic log analysis tool to detect impossible travel via IP address geographic information
insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
The Cisco IOS Debugger and Integrated Disassembler Environment
A tool to generate Snort rules based on public IP reputation data
Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes
A Burp Extender plugin, that will deserialized java objects and encode them in XML using the Xtream library.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.