jonathandata1/pegasus_spyware_detection_utils_ios_aos

Stars
72
Rank 438,337 (Top 9 %)
Language Roff
License
MIT License
Created about 3 years ago
Updated about 3 years ago

jonathandata1/pegasus_spyware_detection_utils_ios_aos

jonathandata1

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

After extensive research and understanding of how Pegasus Spyware is operating inside of iOS and AndroidOS systems I have created tools that will be able to identify & validate the presence of the spyware on your mobile devices, and tablets. Initial detection points were derived from the mvt-project.

pegasus_spyware

decompiled pegasus_spyware

ios_15_rce

Remote Code Execution V1 For iOS 15 sent through airdrop after the device was connected to a trusted host

2022_beijing

Decompiled 2022 Beijing iOS & Android Apps

Goliad

OpenVPN Project Dynamically Pulling .ovpn configuration files for instant connections without the hassle of searching for a source

cyfon

bug bounty pull all subdomain data, hacker tools

tyr

Android Recon & Research Tools

mobile_forensics

Methods & Tools for Mobile Malware Spyware & Forensics

atsend

Send AT Commands To Samsung & LG Devices Better Easier Than You Ever Imagined

departmentofdefense

A list of Department of Defense Endpoints to check for DoD VDP (Vulnerability Disclosure Program)

microsoft_azure_personally_identifiable_info_leak

Microsoft Azure Told Me This Was No Big Deal, and by default users data from an organization you are part of is leaking in aad.portal.azure.com, the access in my report is not disabled by default and gives a general user the ability to create tenants, assign users to a tenant, assign roles, and invite external users. Most organizations do not even know these permissions exist. When I first found this data leak there were 100,000+ exposed PII points, and the organization immediately fixed it. When I reported this to Microsoft they said this is how it is supposed to work. Enjoy - Jonathan Scott

ios_15.0.2_RCE_V2.1

iOS 15.0.2 RCE v2.1 Airdrop Delivered Data Wipe

mass_data_parse

Parse Through Gigs of Data with 1 line of code!

phone_hacking_6

Phone Hacking Series 6 - iPhone Backdoor - binaries

ios_logging

Mobileconfigurations that you will need to get extensive iOS logs

ios_15.0.1_entitlements_dump

Full Dump of iOS 15.0.1 Entitlements

io

Monitor Live USB Plug In & Plug Out Events

bash_deploy

Create BASH Script Binaries, Historical Versions of Your Scripts & Binaries, Never create an alias again, never use sh or ./ to execute a shell script anywhere in your terminal

ios_15.0.2_data_leak

ISO.org Data Leak Due to Apple's failure to validate link references from a 2015 code comment

iOS-15-Siri-Database-Persistance-When-Not-Enabled

Part of my iOS 15 experiment shows shows all the data that Siri is collecting even though I have NEVER enabled siri on my iPhone 11 Pro

android_wipe

Bypass Auth Android Data Wipe

Pegasus-CatalanGate-False-Positives

Using Citizen Lab and Amnesty's mvt-tool I detected false positive results of spyware infection due to manual manipulation of "known" malicious domains

verizon_data_leak

Verizon Media Data Leak - PII & PHI - Verizon Claims No Server Issue

Vendor-ID-Product-ID-Search

Easily Input Vendor ID's & Product ID's of USB Devices

Forging-Pegasus

Showing how MVT-Tool can create false positive Pegasus spyware results

cleanc0de

ghidra_dump

NSA ghidra tools strings dump

Car-Vin-Lookup

Easily Lookup Car Vin Data

verizon_samsung_auto_enable_adb

Verizon Spyware Tech

qhash

easily identify a hash or encoding by pasting the hash into your terminal

bad_keyboard_arduino

Turn your arduino into a bad keyboard that will execute keyboard strokes on plugin

MMS_Exploit_Endpoints

Amnesty-Investigations-Fact-Check