NCC Group Plc

Please report all security issues to security at nccgroup dot com

Pinned repositories

LoggerPlusPlus

Advanced Burp Suite Logging Extension

Java 412 103
sobelow

Security-focused static analysis for the Phoenix Framework

Elixir 1.2k 72
house

A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.

JavaScript 987 162
ScoutSuite

Multi-Cloud Security Auditing Tool

Python 3.4k 504
BurpSuiteHTTPSmuggler

A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques

Java 551 92
whalescan

Whalescan is a vulnerability scanner for Windows containers, which performs several benchmark checks, as well as checking for CVEs/vulnerable packages on the container

Python 87 12

Repositories

depthcharge

A U-Boot hacking toolkit for security researchers and tinkerers

embedded-systems u-boot security-tools

Python BSD-3-Clause 7 89 19 0 Updated Jul 24, 2021
featherduster

An automated, modular cryptanalysis tool; i.e., a Weapon of Math Destruction

python security cryptography crypto encryption cryptanalysis exploit

Python BSD-3-Clause 129 898 27 (4 issues need help) 0 Updated Jul 23, 2021
asadbg

asadbg is a framework of tools to aid in automating live debugging of Cisco ASA devices

Python BSD-3-Clause 32 63 1 1 Updated Jul 22, 2021
exploit_mitigations

Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.

41 388 0 0 Updated Jul 21, 2021
libptmalloc

Heap analysis tooling for ptmalloc

Python MIT 5 28 9 0 Updated Jul 21, 2021
Sniffle

A sniffer for Bluetooth 5 and 4.x LE

C 56 432 15 0 Updated Jul 20, 2021
HTTPSignatures

A Burp Suite extension implementing the Signing HTTP Messages draft-ietf-httpbis-message-signatures-01 draft.

http signatures

Java MIT 5 34 0 0 Updated Jul 16, 2021
keimpx

Check for valid credentials across a network over SMB

Python Apache-2.0 62 212 7 0 Updated Jul 16, 2021
ScoutSuite

Multi-Cloud Security Auditing Tool

aws security auditing cloud azure gcp

Python GPL-2.0 504 3,394 99 (4 issues need help) 21 Updated Jul 14, 2021
PMapper

A tool for quickly evaluating IAM permissions in AWS.

python aws iam botocore cloudsecurity

Python AGPL-3.0 102 708 9 0 Updated Jul 13, 2021
umap2

Umap2 is the second revision of NCC Group's python based USB host security assessment tool.

Python AGPL-3.0 59 205 7 0 Updated Jul 13, 2021
BinProxy

BinProxy is a proxy for arbitrary TCP connections. You can define custom message formats using the BinData gem.

Ruby AGPL-3.0 36 158 4 7 Updated Jul 12, 2021
pairing

Optimizations for Pairing-Based Cryptography

Rust BSD-3-Clause 0 2 0 0 Updated Jul 11, 2021
sadcloud

A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure

HCL AGPL-3.0 40 295 7 0 Updated Jul 9, 2021
phantap

Phantom Tap (PhanTap) - an ‘invisible’ network tap aimed at red teams

C GPL-3.0 68 439 2 0 Updated Jul 1, 2021
raccoon

Salesforce object access auditor

Python AGPL-3.0 4 74 0 0 Updated Jun 28, 2021
pcap-burp

Pcap importer for Burp

Java AGPL-3.0 27 76 2 0 Updated Jun 27, 2021
LoggerPlusPlus

Advanced Burp Suite Logging Extension

Java AGPL-3.0 103 412 20 1 Updated Jun 24, 2021
scrying

A tool for collecting RDP, web and VNC screenshots all in one place

Rust 30 180 20 0 Updated Jun 23, 2021
drb-rb

A collection of dRuby odds and ends.

Ruby 0 0 0 0 Updated Jun 18, 2021
cloud_ip_ranges

Identify IP addresses owned by public cloud providers

cloud osint

Python MIT 10 44 0 0 Updated Jun 17, 2021
blackboxprotobuf

Blackbox protobuf is a Burp Suite extension for decoding and modifying arbitrary protobuf messages without the protobuf type definition.

protobuf burp

Python MIT 28 194 0 0 Updated Jun 14, 2021
JA3_outlier

Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes

Jupyter Notebook 1 4 0 0 Updated Jun 11, 2021
dapr

Driver Attack Platform for Linux

TypeScript 7 11 10 11 Updated Jun 10, 2021
idahunt

idahunt is a framework to analyze binaries with IDA Pro and hunt for things in IDA Pro

Python 47 230 2 0 Updated Jun 3, 2021
house

A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.

android mobile frida pentest-tool

JavaScript MIT 162 987 11 1 Updated Jun 3, 2021
fuzzowski

the Network Protocol Fuzzer that we will want to use.

Python GPL-2.0 74 445 9 1 Updated Jun 2, 2021
requests-racer

Small Python library that makes it easy to exploit race conditions in web apps with Requests.

Python GPL-3.0 11 101 0 1 Updated Jun 2, 2021
CollaboratorPlusPlus

Java AGPL-3.0 22 102 2 0 Updated Jun 1, 2021
aws-inventory

Discover resources created in an AWS account.

react python aws

Python Apache-2.0 99 516 13 (1 issue needs help) 2 Updated Jun 1, 2021

Top languages

Python C# Java Shell C

Most used topics

Loading…

Jun	JUL	Aug
	25
2020	2021	2022

Pinned repositories

Repositories

Top languages

Most used topics

People