Shockz Cybersecurity, CTF’s/Pentesting and Ethical Hacking

SBounty - Project

June 04, 2023 1 minute read

Sbounty is a script that leverages a combination of tools developed in bash and golang to create pipelines aimed at detecting vulnerabilities in web applications. This tool analyzes the routes obtained from a given URL in order to identify potential vulnerabilities, including XSS, SQLi, CORS, LFI, SSTI, Open Redirect, and SSRF.

linux bugbounty hackng pentesting vulnerabilities bash golang

Spotify CSV Exporter - Project

May 21, 2023 1 minute read

This tool automates the process of exporting Spotify playlists and favorite songs in an organized manner, generating CSV files. It leverages the Sportify project to accomplish this. Additionally, it provides the flexibility to seamlessly migrate to other platforms or re-import the playlists back into Spotify, ensuring a smooth transition.

linux windows backup automatitation python script spotify

Wappacvez - Project

May 07, 2023 2 minute read

title= Wappacvez is a command-line tool that analyzes a web application by using a dockerized Wappalyzer. It then extracts the software for which a version is detected, and finally employs the uCVE tool to search for associated CVEs. The output can be exported in HTML or CSV format, depending on the user’s preference.

golang wappalyzer ucve cve nist tecnologies vulnerabilities hacking pentesting reporting

RDPShoot - Project

May 07, 2023 1 minute read

title= This tool captures screenshots of Windows machines that have RDP enabled and NLA disabled, checks for open ports and disabled NLA, then transcribes text using OCR to generate a list of users from the captured images.

bash rdp nla reporting users pentesting

Automatic Notion Backup - Project

April 11, 2023 2 minute read

A script to automate the process of downloading Markdown and CSV backups of Notion. In addition, the data is processed to remove the AWS identifier present in the files.

notion linux windows backup automatitation python script

Grepz - Project

March 13, 2023 2 minute read

grepz Grepz is a versatile command-line tool for searching and highlighting specific terms or regex in a text file. Its customizable color options and ability to display lines before and after a match provide context, and it also offers a special reporting mode that highlights matches with a box.

golang searching reconnaissance analysis

Introducción a la computación cuántica

June 13, 2022 5 minute read

Introducción developer-friendly a la computación cuántica con Qiskit en dispositivos reales de computación cuántica proporcionados por IBM Quantum. Diseño de un circuito básico.

quantum programming python script

Log4Shell (CVE-2021-44228) Explicación de la vulnerabilidad | Pentesting

December 16, 2021 3 minute read

La vulnerabilidad Log4Shell hay estado revolucionando a las empresas desde que se descubrió, en este post contaré en que consiste, como detectarla, explotarla y mitigarla.

log4shell cve-2021-44228 log4j java zero-day cybersecurity

Log4Shell (CVE-2021-44228) Explanation of vulnerability | Pentesting

December 16, 2021 2 minute read

The Log4Shell vulnerability has been revolutionising companies since it was discovered, in this post I will tell you what it is, how to detect it, exploit it and mitigate it.

log4shell cve-2021-44228 log4j java zero-day cybersecurity

Remote Keystrokes Injection Over WiFi (Cheap) with Cactus WHID

October 16, 2021 6 minute read

Cactus WHID is a cheap Bad Usb and an alternative solution with the added feature of being controlled via WiFi through which we can execute instructions to get whatever we want from the device we are attacking or auditing, from exfiltrating passwords and data to a reverse shell to the device itself.

rubberducky whid-injector cactus-whid hacking-tools bad-usb

Recent posts | Total: 52