Sanoop Thomas's Projects
Some works on Nmap Scripts (NSE)
A tool for embedding XXE/XML exploits into different filetypes
Pafish is a demonstration tool that employs several techniques to detect sandboxes and analysis environments in the same way as malware families do.
Git All the Payloads! A collection of web attack payloads.
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
Training Materials of Practical Reverse Engineering using Radare2
Curated list of public penetration test reports released by several consulting firms and academic security groups
Create and modify Word documents with Python
A repository for large scripts from my book.
Multiple radare2 rpipe scripts
Web-based Source Code Vulnerability Scanner
README.md template for your open-source project
Vulnerability Workflow Management Tool
Wiki to collect Red Team infrastructure hardening resources
Reverse Engineering Resources
Markdown -> PDF/HTML resumΓ© generator
Scripts developed for my researches in various languages - bash, python and lot more.
Scripts I use during pentest engagements.
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
Misc resources and documents on my security research
Smashing The Browser: From Vulnerability Discovery To Exploit
A repository of LIVE malwares for your own joy and pleasure
Threatelligence is a simple cyber threat intelligence feed collector, using Elasticsearch, Kibana and Python to automatically collect intelligence from custom or public sources. Automatically updates feeds and tries to further enhance data for dashboards.
Collaborative forensics timeline analysis
XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.