• Stars
    star
    254
  • Rank 160,264 (Top 4 %)
  • Language
    Python
  • License
    GNU General Publi...
  • Created about 10 years ago
  • Updated about 2 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Vulnerability Notes, PoC Exploits and Write-Ups for security issues disclosed by tintinweb

โค Be a Hero, tip a ๐Ÿบ ๐Ÿ™‚ โŸถ ษƒ: 1AZMeGVfCBbYwVYyG9s79pJDyocTZgiApa | ฮžth: 0x438B38E30eF117C15fBfF833f9C2c70182925815

Exploit PoCs and tools for vulnerabilities disclosed by tintinweb.

pub

[police line - do not cross] ==== [police line - do not cross] ==== [police line - do not cross]
                             ==== [                          ] ==== 
[police line - do not cross] ==== [police line - do not cross] ==== [police line - do not cross]

proceed

GPG

Fingerprint: 8CBAF803B970FA71202AB0851801E37B756236CB

-----BEGIN PGP PUBLIC KEY BLOCK-----
mQINBFQ8JL0BEACw0FRuV8snna5e/+d42GwObCbRaYFRfXwCsnmLzXsVxV38Ox4k
1CJYmLqDibBB3MLQ4oqsseXzbjedIRFvmWl1nzPR4npMtbJyaXXEgBhesyxhc3Gi
3G++9N8OYN016+btnxYUoEfmH2OBG9NH8hEl/hgB6OOpITF3hj7V9C72eM1xjY6+
ZQX3Lpzen54xN1ZJ0zGTRBjXueFIoqjZ+g3JcX5Eaa+9ZYkBzWQKBSHXt6OgKVUq
FJPbX4JpgBFbNYD4Wq2aathVxgYjZ6RmPfoAzHfawXu1Q0JFAetW93ReRSZUlx2N
V/zmX31N8KKvPRrmmuTJ3de2XaadOiUsSz1Zz7w8af0bT2oEpnOmCxdXkH7O44kS
MoVU1SbVyegBbwldBARg+EI4FEmOL3EXsbB41M7v5FG72kw9OmZujL8EhUntAtYK
FT4iqpwpZbAmqCPhbbwHxt9ec1SC6woBcT7B9dRTK+Hib+/12i7/Fep36kYOA9cq
lrMvvTMVj9hfLvmmbv6+s2Xc6jFRPfWxqS2h9zLU/Ud8I6XKmCanid6cst7/6Je1
yk/iLApx4jNaUcQpYAtUktXJ9M/EKTJw6F1cSFP8zHWtOujuITbHEkv8x34xycz2
OVwZs/ngrXwhOWy+vvRyd6duX9xamLTxHaiEI1jjZQcyf2Dw3MIMfKFJpwARAQAB
tCB0ZWFtIG9zdHN0cm9tIDxwdWJAb3N0c3Ryb20uY29tPokCPwQTAQIAKQIbDwcL
CQgHAwIBBhUIAgkKCwQWAgMBAh4BAheABQJWy4+UBQkEcJ5XAAoJEBgB43t1YjbL
wv0QAKWGJj9FDDUmeATSyUfqPMEPip2c1j2E+E24iYHUe3g7WLtbqrHCKs9LJ+4b
JJ8TsMNdQfrEYz+PEhJ7pCApJxdGq47agXZl3FwGsh62wIZw7vsx+d+6xiBxvV22
B18wz5ZTfsnAvS3RFMu8tfIrIILwkJcVdh6lWOYv3CtvRxAI9ZDj++IiZisdJInI
C9aqDdZ8ecwh32BMjnj/n2nqANGvzglZ8rqM2HRIZ1xtuF8dUz6gidNYSWdnIpTu
HGuyxKxbYp99D4eTO8Rurhl85++r2MUiOdw0pGlogm3Pl7n8giuqcsg5i8YwNoMD
Z2fcU9IhkH9+nMbsniNmUyQmKFgqeDHV6xh/DWdOTa/aVsi1frn83/1FI/dhCCH+
3UK9msu1l0vPLfUVG5ShfrcU9biBYx2BXPfTEe87Dd8MllNsJSuwZblybVdXqaL+
LvpEIf7ZTQgsDbME9SPFE2e6EvgnenaRWcQv2jXwpfX8ubUOKlQ1gpg71REmLzRa
ipHVPt10QzZJRdztfFIj5MqBe9TNIpG9vEtujOXHqwaMq+j7V7EPo6hXN7UT1WNm
pFxm7Eru/aXKwb3pSQjRohdYc5lC49tIm2BKQWT1dCwniIGDIN/KD/+CXQkhSr3F
Z50kgXwXeWwvpZDz+CjEmNiZHetJyGWLIInkunSSLyvU3n7X
=toza
-----END PGP PUBLIC KEY BLOCK-----
	

history:

-----BEGIN PGP PUBLIC KEY BLOCK-----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=nkv0
-----END PGP PUBLIC KEY BLOCK-----

More Repositories

1

smart-contract-sanctuary

๐Ÿฆ๐ŸŒด๐ŸŒด๐ŸŒด๐Ÿฆ• A home for ethereum smart contracts. ๐Ÿ 
Python
1,423
star
2

solidity-shell

An interactive Solidity Shell
JavaScript
535
star
3

scapy-ssl_tls

SSL/TLS layers for scapy the interactive packet manipulation tool
Python
418
star
4

ecdsa-private-key-recovery

A simple library to recover the private key of ECDSA and DSA signatures sharing the same nonce k and therefore having identical signature parameter r
Python
384
star
5

electron-inject

Inject javascript into closed source electron applications e.g. to enable developer tools for debugging.
Python
296
star
6

ida-batch_decompile

*Decompile All the Things* - IDA Batch Decompile plugin and script for Hex-Ray's IDA Pro that adds the ability to batch decompile multiple files and their imports with additional annotations (xref, stack var size) to the pseudocode .c file
Python
265
star
7

smart-contract-sanctuary-ethereum

๐Ÿฆ๐ŸŒด๐ŸŒด๐ŸŒด๐Ÿฆ• A home for ethereum smart contracts. ๐Ÿ 
251
star
8

ethereum-dasm

An ethereum evm bytecode disassembler and static/dynamic analysis tool
Python
212
star
9

smart-contract-inspector

the magic X-ray machine for solidity smart contracts
JavaScript
172
star
10

striptls

proxy poc implementation of STARTTLS stripping attacks
Python
167
star
11

vscode-interactive-graphviz

Interactive Graphviz Dot Preview for Visual Studio Code
TypeScript
145
star
12

vscode-decompiler

Decompile things directly from VSCode
Python
141
star
13

solgrep

๐Ÿง  A scriptable semantic grep utility for solidity
JavaScript
138
star
14

smart-contract-storage-viewer

๐Ÿ”†๐Ÿ”Ž๐Ÿ‘€ Smart Contract Storage Viewer, DataType Guesser, Toolbox & Transaction Decoder
JavaScript
99
star
15

smart-contract-sanctuary-bsc

๐Ÿฆ๐ŸŒด๐ŸŒด๐ŸŒด๐Ÿฆ• A home for ethereum smart contracts. ๐Ÿ 
75
star
16

smart-contract-vulndb

๐Ÿ‹ An open dataset containing smart contract audit issues from various sources.
JavaScript
63
star
17

ethereum-input-decoder

Decode transaction inputs based on the contract ABI
Python
59
star
18

bugbounty-companion

A BugBounty companion that checks out high-reward yielding bug bounty code-bases from Immunefi/code4rena ๐Ÿ™Œ (use at own risk)
Python
55
star
19

vscode-vyper

Ethereum Vyper language support for Visual Studio Code
JavaScript
52
star
20

unbox

๐ŸŽ unbox - Unpack and Decompile the $h*! out of things
Python
48
star
21

vscode-inline-bookmarks

Customizable inline Bookmarks for Visual Studio Code
JavaScript
45
star
22

smart-contract-sanctuary-arbitrum

๐Ÿฆ๐ŸŒด๐ŸŒด๐ŸŒด๐Ÿฆ• A home for ethereum smart contracts. ๐Ÿ 
Solidity
43
star
23

pyetherchain

A python interface to the ethereum blockchain explorer at www.etherchain.org โคโ›“๐Ÿ
Python
42
star
24

hallucinate.sol

๐Ÿ˜ตโ€๐Ÿ’ซ A Recurrent Neural Network (RNN) hallucinating solidity source code.
Jupyter Notebook
38
star
25

smart-contract-sanctuary-polygon

๐Ÿฆ๐ŸŒด๐ŸŒด๐ŸŒด๐Ÿฆ• A home for ethereum smart contracts. ๐Ÿ 
37
star
26

DSAregenK

Recover the private key from signed DSA messages. (multiple signed messages, static coefficient 'k')
Python
35
star
27

smart-contract-sanctuary-optimism

๐Ÿฆ๐ŸŒด๐ŸŒด๐ŸŒด๐Ÿฆ• A home for ethereum smart contracts. ๐Ÿ 
Solidity
34
star
28

aggroArgs

Bruteforce commandline buffer overflows and automated exploit generation, linux, aggressive arguments
Python
33
star
29

evm-shell

An interactive EVM repl/shell.
JavaScript
30
star
30

smart-contract-sanctuary-avalanche

๐Ÿฆ๐ŸŒด๐ŸŒด๐ŸŒด๐Ÿฆ• A home for ethereum smart contracts. ๐Ÿ 
Solidity
26
star
31

sigbank

๐Ÿฆ SigBank - A Database of Smart Contract Function Signatures
20
star
32

smart-contract-sanctuary-fantom

๐Ÿฆ๐ŸŒด๐ŸŒด๐ŸŒด๐Ÿฆ• A home for ethereum smart contracts. ๐Ÿ 
Solidity
19
star
33

vscode-ethereum-security-bundle

A meta-extension bundling marketplace plugins for secure Ethereum smart contract development.
19
star
34

smart-contract-sanctuary-tron

[Tron] ๐Ÿฆ๐ŸŒด๐ŸŒด๐ŸŒด๐Ÿฆ• A home for ethereum smart contracts. ๐Ÿ 
Solidity
16
star
35

vscode-circom-pro

๐Ÿ‘ฉโ€๐Ÿ’ป Circom compiler, snippets, hover and language support for Visual Studio Code
JavaScript
15
star
36

solidity-workspace

A simple workspace based interface to the solidity-parser and objectified Abstract Syntax Tree
JavaScript
14
star
37

solidity-doppelganger

JavaScript
13
star
38

solidity-ecdsa-malleability-demo

Solidity
12
star
39

scapy-ssh

ssh key exchange layer for scapy
Python
12
star
40

python-smtpd-tls

An extension to the standard python 2.x smtpd library implementing implicit/explicit SSL/TLS/STARTTLS
Python
11
star
41

heroku-eth-address-converter

Ethereum ENR โ‡„ enode โ‡„ MultiAddress converter heroku app
Python
11
star
42

smart-contract-sanctuary-celo

๐Ÿฆ๐ŸŒด๐ŸŒด๐ŸŒด๐Ÿฆ• A home for ethereum smart contracts. ๐Ÿ 
Solidity
10
star
43

solidity-metrics-action

๐Ÿ“Š Generates Solidity Code Metrics Reports for Solidity Source Units in your Repository.
Dockerfile
10
star
44

aragraph

**Repo Moved** Easily generate permission graphs for Aragon DAO Templates
8
star
45

ssl_tls_socket_layers

ssl tls tcp udp layers for python sockets intended for messing with tls ssl protocol fields (fuzzing, exploitation, ...)
Python
7
star
46

IP_UDPFlood

General purpose IP src/dst network flooder
Python
6
star
47

vscode-solidity-language

Solidity Language Support, Syntax Highlighting, and Themes for VSCode - This is the standalone passive language support originally found in the Solidity Visual Developer extension
6
star
48

feedmon

monitor rss/atom feeds for some keywords
Python
4
star
49

tintinweb

4
star
50

EBNFSpill

Create Random Data based on EBNF Syntax description (EBNF parser: simpleparse)
Python
4
star
51

vscode-LLL

Ethereum LLL language support for Visual Studio Code
JavaScript
4
star
52

random-ssl-server

spawns a server listening for HTTPS (SSL) requests supplying random auto-generated certificates for each request. [HTTPS,SSL,Fuzzing,Testing,Resiliency]
Python
4
star
53

pymemscrape

A python-ctypes based process memory scraper that attempts to find key-material by matching template C structs in memory (OpenSSL ssl_session_st, dsa_st, rsa_st, bignum_st, ec_key_st, dh_st and generic ASN.1)
Python
4
star
54

openssl-version_scan

Scan Files and Processes for traces of static and shared OpenSSL libraries and display version information.
Python
4
star
55

vscode-solidity-flattener

Flatten Solidity Contracts using `truffle-flattener`
JavaScript
3
star
56

solcwrapper

Easily run any version of solc with solcwrapper. Automatically downloads/compiles/installs and transparently invokes officially released solc versions.
Python
3
star
57

DHCPv4v6

low-level scapy based dhcp client script (ipv4 ipv6)
Python
2
star
58

HashCollisioneer

checks a predefined list of names and hash-algorithms for collisions to find the best suiting hash-algorithm for some sample data
Python
1
star
59

heroku-vscode-downloader

A Simple Heroku WebApp to download vscode extensions for offline use
HTML
1
star