F-Secure LABS
- Basingstoke, Johannesburg, London, Manchester, Singapore, New York
- https://labs.f-secure.com/
Grow your team on GitHub
GitHub is home to over 50 million developers working together. Join them to grow your own development teams, manage permissions, and collaborate on projects.
Sign up
Pinned repositories
Repositories
leonidas
Automated Attack Simulation in the Cloud, complete with detection use cases.
C3
Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.
timeinator
Timeinator is an extension for Burp Suite that can be used to perform timing attacks over an unreliable network such as the internet.
awspx
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
incognito
One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/
captcha22
CAPTCHA22 is a toolset for building, and training, CAPTCHA cracking models using neural networks.
fdpasser
Example of passing file descriptors into a container to perform a privilege escalation on the host
SharpGPOAbuse
SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GPO) in order to compromise the objects that are controlled by that GPO.
drozer
The Leading Security Assessment Framework for Android.
Ninjasploit
A meterpreter extension for applying hooks to avoid windows defender memory scans
Jamf-Attack-Toolkit
Suite of tools to facilitate attacks against the Jamf macOS management platform.
physmem2profit
Physmem2profit can be used to create a minidump of a target hosts' LSASS process by analysing physical memory remotely
z3_and_angr_binary_analysis_workshop
Code and exercises for a workshop on z3 and angr
SharpClipHistory
SharpClipHistory is a .NET application written in C# that can be used to read the contents of a user's clipboard history in Windows 10 starting from the 1809 Build.
keywe-tooling
Tools that can be used to interact with the KeyWe Smart Lock device.
Cisco-UCM-SQLi-Scripts
Scripts that can be used to exploit CVE-2019-15972 which was an Authenticated SQLi issue in Cisco Unified Call Manager (UCM).
dref
DNS Rebinding Exploitation Framework
LinuxCatScale
Incident Response collection and processing scripts with automated reporting scripts
SharpGPO-RemoteAccessPolicies
A C# tool for enumerating remote access policies through group policy.
3d-accelerated-exploitation
3D Accelerated Exploitation
Azurite
Enumeration and reconnaissance activities in the Microsoft Azure Cloud.
ViridianFuzzer
Kernel driver to fuzz Hyper-V hypercalls
KernelFuzzer
Cross Platform Kernel Fuzzer Framework
wePWNise
WePWNise generates architecture independent VBA code to be used in Office documents or templates and automates bypassing application control and exploit mitigation software.
win_driver_plugin
A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.