Discover @ricardojoserf Open Source projects

Ricardo Ruiz (@ricardojoserf)

ricardojoserf

Stars
2,256
Global Rank 13,469 (Top 0.5 %)
Followers 250
Following 28
Registered over 9 years ago
Most used languages

Python
54.2 %

C#
22.9 %

Go
4.8 %

HTML
3.6 %

C++
2.4 %

Java
2.4 %

Shell
2.4 %

CSS
1.2 %

Jupyter Notebook
1.2 %

PowerShell
1.2 %

JavaScript
1.2 %

C
1.2 %

SCSS 1.2 %
Location 🇪🇸 Spain
Country Total Rank 291
Country Ranking

C#
11

Python
31

PowerShell
104

Shell
150

SCSS 344

Go
468

C
488

HTML
524

C++
650

Jupyter Notebook
2,062

CSS
2,143

Java
3,403

JavaScript
3,981

instagram-followers-bot

A bot for Instagram. You can follow users using a tag or in a specific location, unfollow those who dont follow-you-back, and follow-back those who follow you

wifi-pentesting-guide

WiFi Penetration Testing Guide

NativeDump

Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)

WhoamiAlternatives

Different methods to get current username without using whoami

adfsbrute

A script to test credentials against Active Directory Federation Services (ADFS), allowing password spraying or bruteforce attacks.

covert-tube

Youtube as covert-channel - Control systems remotely and execute commands by uploading videos to Youtube

twitter-followers-bot

A bot for Twitter. You can follow users in a specific location or tweeting specific words and unfollow those who do not follow you back (and are not included in whitelist.txt). Also generates REPORTS!

covert-control

Google Drive, OneDrive and Youtube as covert-channels - Control systems remotely by uploading files to Google Drive, OneDrive, Youtube or Telegram

SharpCovertTube

Youtube as C2 - Control Windows systems uploading videos to Youtube

wpa2-enterprise-attack

Virtual machines and scripts to attack WPA2-Enterprise networks through Rogue Access Points downgrading the authentication method to GTC

instagram-user-id

Get the user ID of any user in instagram

http-protocol-exfil

Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)

p-invoke.net

P/Invoke definitions from the now offline pinvoke.net - Website: https://www.p-invoke.net/

spotify-playlist-downloader

Downloading Spotify Playlists

ddos_simulation

DDoS simulation written in Python using "scapy" and "multiprocessing" libraries. Used for educational purposes

OSED-prep

Exploits written while preparing for the OSED exam

subdoler

Easy subdomain finder from a list of company names, IP ranges or domains.

slae32

The SecurityTube Linux Assembly Expert (SLAE) is an online course and certification which focuses on teaching the basics of 32-bit assembly language for the Intel Architecture (IA-32) family of processors on the Linux platform and applying it to Infosec

Tinder-Searcher-and-DB-creation

Tinder user searcher and DB creation. Proof of concept for Tinder security team

vulnserver-exploits

Vulnserver exploits

ntds-analyzer

A tool to analyze Ntds.dit files once the NTLM and LM hashes have been cracked.

SharpObfuscate

Obfuscate payloads using IPv4, IPv6, MAC or UUID strings

s7-parser

Parser of the industrial protocol S7 (S7comm) using Libpcap

Portswigger-Labs

All Apprentice and Practitioner-level Portswigger labs

SSSD-creds

Script to extract the cached credentials from SSSD, getting Active Directory credentials from Unix systems

triangle-position

Triangle a coordinate given 3 or 4 coordinates

SharpNado

Repository to gather all .NET malware related code snippets or programs I will develop

MinidumpParser

C# program to parse Microsoft Minidump files and their streams

omrs-rce-exploit

Online Marriage Registration System (OMRS) 1.0 - Remote code execution

arduino-rubber-ducky-scripts

david hasselhoff wallpaper using arduino pro micro

pywisam

A Wifi pentesting framework written in Python

jeringuilla

Process injection framework in C#. It uses dynamic function loading using delegates and AES-encryption for strings and payloads

SharpNtdllOverwrite

Overwrite ntdll.dll's ".text" section to bypass API hooking. Getting the clean dll from disk, Knowndlls folder, a debugged process or a URL

instagram-liker-all-posts

Like all posts of a user given the username in Instagram

ubucryptor

File encryptor and decryptor in Linux with Python. Using the same file extensions than Wannacry

github-bot

Easy bot for starring or branching a huge number of repositories. Using pyGithub

webmin-tor-bruteforce

Script to bruteforce Webmin allowing to rotate the IP address using Tor

textpattern-exploit-rce

Textpattern <= 4.8.3 Remote code execution (Authenticated)

LM_original_password_cracker

Having the NTLM and a cracked LM hash it is possible to get the original password by testing all the combinations of upper and lowercases. This is useful if a ntds.dit file has both NTLM and LM hashes

SharpSelfDelete

PoC to self-delete a binary in C#

SharpProcessDump

Dump memory regions of a process using NtQueryVirtualMemory and NtReadVirtualMemory

GetProcAddress

GetProcAddress implementation in C# walking the PEB using only ReadProcessMemory

coinhive-example

Easy example using Coinhive in a simple page

google-recaptcha-bypass

Trying to bypass Google Recaptcha. Different approaches in every commit, most of them not working heheh D:

CVE-2019-19033

CVE-2019-19033 description and scripts to check the vulnerability in Jalios JCMS 10 (Authentication Bypass)

StealthyEnv

Stealthier alternative to whoami.exe in C#, it gets environment variables from PEB (PRTL_USER_PROCESS_PARAMETERS)

username-generator

Generate list of possible usernames for attacks such as password spraying

mlhe_psnr

It converts (MP4 -> YUV) and (MP4 -> MLHE -> YUV). Then it calculates the PSNR

NoSQL-injection-example

MongoDB injection example

ipv4info_scraper

Get the IP blocks and domains from a company name by scrapping IPv4info

SharpEA

Read, write and delete Extended Attributes (EAs) within NTFS, to hide malicious payloads

GetModuleHandle

GetModuleHandle implementation in C# using only NtQueryInformationProcess by walking the PEB

nodejs_webshell

Node.js webshell created using AngularJS. It is a MEAN app (MongoDB + Express + AngularJs + Node.js) with a CLI in a text box

lsass-dumper

Dump lsass.exe generating a file with the hostname and date in txt format using C++.

CVE-2021-31159

Zoho ManageEngine ServiceDesk Plus MSP - Active Directory User Enumeration (CVE-2021-31159) - https://ricardojoserf.github.io/CVE-2021-31159/

SharpADS

Read, write and delete Alternate Data Streams (ADS) within NTFS, to hide malicious payloads

botnet-ssh-control

Botnet Command and Control (C&C) controlled via SSH. Based in Paramiko library

wordpress-custom-bruteforce

Script to bruteforce Wordpress allowing to rotate the IP address using Tor

CESP-ADCS-cheatsheet

Cheatsheet for Altered Security's CESP ADCS course

twitter-detector

Create a Twitter listener to detect people tweeting specific words or in a location, then analyze the users data.

instagram-access-token

Get the access token of your Instagram App

elgamal-golang

A Golang implementation of Elgamal algorithm: encryption, decryption and signature generation and verification

dni-spain-wordlist

DNI (Spanish ID card) generator and wordlists

CVE-2021-40845

AlphaWeb XE, the embedded web server running on AlphaCom XE, has a vulnerability which allows to upload PHP files leading to RCE once the authentication is successful - https://ricardojoserf.github.io/CVE-2021-40845/

dns-exfiltration

Notes and custom scripts for DNS exfiltration

random

pylangame

Game to learn vocabulary in any language using Google Translator API

textpattern-bruteforce

Script to bruteforce websites using TextPattern CMS.

rop-emporium-exploits

Rop Emporium - Exploits and brief Walkthroughs

lsass-dumper-csharp

Custom lsass.exe dump using C#: XOR-encoding, Dynamic function resolution, using NTAPIs...

GetModuleHandleRemote

GetModuleHandle implementation in C# for remote processes using only NTAPIs

ricardojoserf.github.io

goNtdllOverwrite

Overwrite ntdll.dll's ".text" section to bypass API hooking. Getting the clean dll from disk, Knowndlls folder or a debugged process

writeups

Vulnhub and HTB writeups

GetProcessByName

Get process handle(s) from process name using NtGetNextProcess and GetProcessImageFileName

url-storing-android-app

App for storing urls (developed in ~2014)

location-android-app

Location Android Application (developed in the summer of 2017)

teleasistencia-App_PE

App Android y Procesador de Eventos para un sistema de Teleasistencia

GuardPagesHooking

C# implementation of Guard Pages API Hooking

elgamal-python

A Python implementation of Elgamal algorithm: encryption, decryption and signature generation and verification

non-ms-binaries

Code snippet to create a process using the "PROCESS_CREATION_MITIGATION_POLICY_BLOCK_NON_MICROSOFT_BINARIES_ALWAYS_ON" flag

niidoru

Framework for Process Injection in Windows using Go

go-GetProcessByName

Get process handle(s) from process name using NtGetNextProcess and GetProcessImageFileName

twitter-database-generation

Twitter database generation using Tweepy libraries

sitc_nahr

Twitter Sentiment Anallysis for SITC

Jupyter Notebook

global-app

App developed for a bus company in 2014 using Apache Cordova ,updated in 2017. Sending a request to an url and scraping the response

file-hider

Hide your files in infinite folders. It creates one folder for every character recursively, so the true file gets stored in the initial route and in the other folders a fake file (with the same name and size) gets stored.