Posts

  • May 16, 2022

    BaRMIe

    Java RMI enumeration and attack tool.

    BaRMIe is a tool for enumerating and attacking Java RMI (Remote Method Invocation) services.

    RMI services often expose dangerous functionality without adequate security controls, however RMI services tend to pass under the radar during security assessments due to the lack of effective testing tools. In 2008 Adam Boulton spoke at AppSec USA (YouTube) and released some RMI attack tools which disappeared soon after, however even with those tools a successful zero-knowledge attack relies on a significant brute force attack (~64-bits/9 quintillion possibilities) being performed over the network.

    The goal of BaRMIe is to enable security professionals to identify, attack, and secure insecure RMI services. Using partial RMI interfaces from existing software, BaRMIe can interact directly with those services without first brute forcing 64-bits over the network.

    Download the latest version build and ready to run here: https://github.com/NickstaDB/BaRMIe/releases/latest

    Tags: #java

  • May 16, 2022

    JointsWP

    A blank WordPress theme built with Foundation 6, giving you all the power and flexibility you need to build complex, mobile friendly websites without having to start from scratch.

    JointsWP requires Node.js v6.9.x or newer. This doesn’t mean you need to understand Node (or even Gulp) - it’s just the steps we need to take to make sure all of our development tools are installed.

    Tags: #php • blank-wordpress-theme • wordpress-theme

  • May 16, 2022

    twill

    Twill is an open source CMS toolkit for Laravel that helps developers rapidly create a custom admin console that is intuitive, powerful and flexible.

    Twill is an open source Laravel package that helps developers rapidly create a custom CMS that is beautiful, powerful, and flexible. By standardizing common functions without compromising developer control, Twill makes it easy to deliver a feature-rich admin console that focuses on modern publishing needs.

    Twill is an AREA 17 product. It was crafted with the belief that content management should be a creative, productive, and enjoyable experience for both publishers and developers.

    Tags: #php • laravel • vue

  • May 15, 2022

    wordsmith

    The aim of Wordsmith is to assist with creating tailored wordlists. This is mostly based on geolocation.

    The aim of Wordsmith is to assist with creating tailored wordlists and usernames that are primarilly based on geolocation.

    Authors: @kawabungah & @porterhau5.

    Wild West Hackin’ Fest 2017 presentation.

    Wordsmith Parsers project: https://github.com/skahwah/wordsmith_parsers.

    Tags: #ruby

  • May 15, 2022

    unicorn-binance-websocket-api

    Description Live Demo Installation How To  
    Documentation Examples Change Log Wiki Social
    Notifications Bugs      
    Contributing Disclaimer Commercial Support    

    An unofficial Python API to use the Binance Websocket API`s (com+testnet, com-margin+testnet, com-isolated_margin+testnet, com-futures+testnet, com-coin_futures, us, tr, jex, dex/chain+testnet) in a easy, fast, flexible, robust and fully-featured way.

    Part of ‘UNICORN Binance Suite’.

    Tags: #python • binance-websocket • webstream

  • May 15, 2022

    alchemy-web3

    Web3 client extended with Alchemy integration

    Web3 client extended with Alchemy and browser provider integration.

    Tags: #typescript

  • May 14, 2022

    heapinspect

    🔍Heap analysis tool for CTF pwn.

    Pwnning is an art.

    HeapInspect is designed to make heap much more prettier.

    Now this tool is a plugin of nadbg. Try it!

    Tags: #python • heap • exploit

  • May 14, 2022

    spotify-web-api-js

    A client-side JS wrapper for the Spotify Web API

    This is a lightweight wrapper for the Spotify Web API (2.6kB gzipped + compressed). It includes helper functions for all Spotify’s endpoints, such as fetching metadata (search and look-up of albums, artists, tracks, playlists, new releases, podcasts) and user’s information (follow users, artists and playlists, and saved tracks management).

    It doesn’t have any dependencies and supports callbacks and promises. It is intended to be run on a browser, but if you want to use Node.JS to make the requests, please check spotify-web-api-node.

    A list of selected wrappers for different languages and environments is available on the Developer site’s Libraries page.

    The wrapper includes helper functions to do the following:

    Tags: #typescript • spotify • wrapper

  • May 14, 2022

    ConsecutiveScroller

    ConsecutiveScrollerLayout是Android下支持多个滑动布局(RecyclerView、WebView、ScrollView等)和普通控件(TextView、ImageView、LinearLayou、自定义View等)持续连贯滑动的容器,它使所有的子View像一个整体一样连续顺畅滑动。并且支持布局吸顶功能。

    ConsecutiveScrollerLayout是Android下支持多个滑动布局(RecyclerView、ViewPager、WebView、ScrollView等)和普通控件(TextView、ImageView、LinearLayou、自定义View等)持续连贯滑动的容器,它使所有的子View像一个整体一样连续顺畅滑动。

    ConsecutiveScrollerLayout支持多种模式的布局吸顶功能,能动态控制吸顶View的显示位置和状态,能适用于大部分的业务场景。

    ConsecutiveScrollerLayout能通过实现接口,支持复杂的、多层嵌套下的滑动布局的滑动处理。

    ConsecutiveScrollerLayout支持NestedScrolling机制。

    Tags: #java • scrollview • recyclerview-webview-scrollview

  • May 13, 2022

    lovelace-fold-entity-row

    🔹 A foldable row for entities card, containing other rows

    Fold away and hide rows in lovelace entities cards.

    Tags: #typescript

subscribe via RSS