Reading view

There are new articles available, click to refresh the page.

Designer Vulnerabilities

shellsharks Posts

31 May 2019 at 17:11

A (mostly chronological) list of vulnerabilities that have “designer” names.

Total vulnerabilities:

Bleichenbacher 1 million message attack (1998)
Pizza Thief (CVE-1999-0351)
DHEat (CVE-2002-20001)
Etherleak (CVE-2003-0001)
PPPwn (CVE-2006-4304)
Sockstress (CVE-2008-4609)
EDUCATEDSCHOLAR (CVE-2009-2532 & CVE-2009-3103)
Evil Maid (1/2009)
Cloudburst (6/2009)
Tor’s Hammer (Early 2011)
BEAST (CVE-2011-3389)
Alert (2/2012)
CRIME/TIME (CVE-2012-4929)
BREACH (9/2012)
Lucky Thirteen (CVE-2013-0169)
Cookie Cutter (CVE-2013-2853)
3SHAKE (CVE-2013-6628 & more)
Heartbleed (CVE-2014-0160)
goto fail; (CVE-2014-1266)
BERserk (CVE-2014-1568)
Drupalgeddon (CVE-2014-3704)
SandWorm (CVE-2014-4114)
BadUSB (CVE-2014-4115)
Thunderstrike (CVE-2014-4498)
Shellshock (CVE-2014-6271)
Winshock (CVE-2014-6321)
SKIP-TLS/SMACK (CVE-2014-6593 & CVE-2015-0205)
POODLE (CVE-2014-8730)
SENTER Sandman (2014)
CREAM (11/2014)
Diamond PAC (11/2014)
FREAK/SMACK (CVE-2015-0204, 1067, 1637 & 2235)
GHOST (CVE-2015-0235)
Stagefright (CVE-2015-1538 & more)
Superfish (CVE-2015-2077)
BarMitzvah (CVE-2015-2808)
Venom (CVE-2015-3456)
Thunderstrike 2 (CVE-2015-3692)
Rowhammer (CVE-2015-3693)
Logjam (CVE-2015-4000)
SLOTH (CVE-2015-7575)
Drown (CVE-2016-0800)
Badlock (CVE-2016-2118)
Sweet32 (CVE-2016-2183)
Rotten Potato (CVE-2016-3225)
ImageTragick (CVE-2016-3714 & more)
Dirty COW (CVE-2016-5195)
Boomerang (CVE-2016-5349 & CVE-2016-8762-CVE-2016-8764)
HEIST (CVE-2016-7152 & more)
DUHK (CVE-2016-8492)
Ticketbleed (CVE-2016-9244)
unholy PAC (8/2016)
SHAttered (1/2017)
Cloudbleed (2/2017)
alloc8 (4/2017)
ETERNALBLUE (CVE-2017-0143 & CVE-2017-0144)
ETERNALROMANCE (CVE-2017-0145)
Spectre (CVE-2017-5715 & CVE-2017-5753)
Meltdown (CVE-2017-5754)
ROBOT (CVE-2017-6168 & more)
SambaCry/EternalRed (CVE-2017-7494)
Devil’s Ivy (CVE-2017-9765)
OptionsBleed (CVE-2017-9798)
KRACK (CVE-2017-13077 & more)
BlueBorne (CVE-2017-14315 & more)
Return of Coppersmith’s Attack (ROCA) (CVE-2017-15361)
EFAIL (CVE-2017-17688 & CVE-2017-17689)
RTP bleed (5/2017)
BroadPwn (7/2017)
Epochalypse (7/2017)
CLKSCREW (8/2017)
Ticket Trick (9/2017)
DynoRoot (CVE-2018-1111)
Foreshadow (CVE-2018-3615)
Foreshadow-NG (CVE-2018-3620 & CVE-2018-3646)
Lazy FP State Restore (CVE-2018-3665)
SegmentSmack (CVE-2018-5390)
FragmentSmack (CVE-2018-5391)
PortSmash (CVE-2018-5407)
BLEEDINGBIT (CVE-2018-7080 & CVE-2018-16986)
Drupalgeddon 2 (CVE-2018-7600)
Fallout (CVE-2018-12126)
RIDL (CVE-2018-12127)
VORACLE (8/2018)
Bad Binder (CVE-2019-2215)
ZombieLoad (CVE-2018-12130 & CVE-2019-11091)
BranchScope (3/2018)
ZipperDown (5/2018)
NetSpectre (2018)
TLBleed (8/2018)
WebExec (CVE-2018-15442)
Magellan (CVE-2018-20346, 20505 & 20506)
Zip Slip (CVE-2018-***)
PrinterBug/SpoolSample (10/2018)
RAMBleed (CVE-2019-0174)
SMoTherSpectre (3/2019)
MachSwap (4/2019)
readfile (CVE-2019-0636)
BlueKeep (CVE-2019-0708)
angrypolarbearbug (CVE-2019-0863)
Drop the MIC (CVE-2019-1040)
SWAPGS (CVE-2019-1125)
Drop the MIC 2 (CVE-2019-1166)
DejaBlue (CVE-2019-1181 & CVE-2019-1182)
Ghost Potato (CVE-2019-1384)
Qu1ckR00t (CVE-2019-2215)
PAYDAY (CVE-2019-2633 & CVE-2019-2638)
pantsdown (CVE-2019-6260)
Zombie POODLE (CVE-2019-6485)
GOLDENDOODLE (2/2019)
SockPuppet (CVE-2019-8605)
ShazLocate! (CVE-2019-8791 & CVE-2019-8792)
KNOB (CVE-2019-9506)
Data Dribble (CVE-2019-9511)
Ping Flood (CVE-2019-9512)
Resource Loop (CVE-2019-9513)
Reset Flood (CVE-2019-9514)
Settings Flood (CVE-2019-9515)
ZombieLoad v2 (CVE-2019-11135)
Plundervolt / V0LTpwn (CVE-2019-11157)
NetCAT (CVE-2019-11184 & more)
SACK PANIC (CVE-2019-11477)
URGENT/11 (CVE-2019-12255 & more)
Dragonblood (CVE-2019-13377 & CVE-2019-13456)
AirDoS (8/2019)
Magellan 2.0 (CVE-2019-13734, 13750-13753)
NUCLEUS:13 (CVE-2019-13939, CVE-2020-15795 & more)
SHAmbles (CVE-2019-14855)
Spectra (CVE-2019-15063 & more)
Kr00k (CVE-2019-15126)
SweynTooth (CVE-2019-16336 & more)
Cable Haunt (CVE-2019-19494 & CVE-2019-19495)
Shitrix (CVE-2019-19781)
VoltJockey (11/2019)
wInd3x (2020)
StrandHogg (CVE-2020-0096)
CopyCat (2/2020)
BlueFrag (CVE-2020-0022)
CrossTalk (CVE-2020-0543)
CacheOut, SGAxe & L1DES (CVE-2020-0549)
LVI “Load Value Injection” (CVE-2020-0551)
ChainOfFools/CurveBall (CVE-2020-0601)
BlueGate (CVE-2020-0609 & CVE-2020-0610)
SMBGhost/CoronaBlue/EternalDarkness (CVE-2020-0796)
PrintDemon (CVE-2020-1048)
FaxHell (4/2020)
SMBleed (CVE-2020-1206)
EvilPrinter (CVE-2020-1300)
SMBLost (CVE-2020-1301)
SIGRed (CVE-2020-1350)
GlueBall (CVE-2020-1464)
ZeroLogon (CVE-2020-1472)
Raccoon Attack (CVE-2020-1596, CVE-2020-1968 & CVE-2020-5929)
Ghostcat (CVE-2020-1938)
BigDebIT (CVE-2020-2586 & CVE-2020-2587)
CDPwn (CVE-2020-3110, 3111, 3118, 3119 & 3120)
Thunderspy (4/2020)
RECON (CVE-2020-6287)
ELECTRIC CHROME (CVE-2020-6418)
DEMONS (CVE-2020-6557)
Gateway2Hell (CVE-2020-8257 & CVE-2020-8258)
PLATYPUS (CVE-2020-8694 & CVE-2020-8695)
Sleep Attack (CVE-2020-8705)
Shadow Attacks (CVE-2020-9592 & CVE-2020-9596)
Unauthd (CVE-2020–9854)
BIAS (CVE-2020-10135)
DABANGG (6/2020)
SYLKin (6/2020)
Light Commands (6/2020)
BootHole (CVE-2020-10713)
Achilles (CVE-2020-11201 & more)
Ripple20 (CVE-2020-11896 through CVE-2020-11901)
BleedingTooth (CVE-2020-12351)
CallStranger (CVE-2020-12695)
ZombieVPN (CVE-2020-12828)
CIPHERLEAKs (CVE-2020-12966)
BadAlloc (CVE-2020-13603 & more)
SLS (CVE-2020-13844)
AMNESIA:33 (CVE-2020-13984 & more)
BadPower (7/2020)
SiteCloak (7/2020)
EtherOops (8/2020)
ReVoLTE (8/2020)
ContainerDrip (CVE-2020-15157)
BLURtooth (CVE-2020-15802)
Kraken (9/2020)
Bad Neighbor (CVE-2020-16898)
“Ping of Death” 2020 (CVE-2020-16899)
bits please! (CVE-2020-16938)
DOS2RCE (10/2020)
Kerberos Bronze Bit (CVE-2020-17049)
Plug’nPwn (10/2020)
SAD DNS (CVE-2020-25705)
Marvin (CVE-2020-25659 & more…)
INFRA:HALT (CVE-2020-25767 & more)
NUMBER:JACK (CVE-2020-27213 & more)
KOFFEE (11/2020)
XS-Leak (12/2020)
SpecROP (2020)
KISMET (12/2020)
DNSpooq (1/2021)
KindleDrip (1/2021)
SmashEx (CVE-2021-0186)
RemotePotato0 (4/2021)
ALHACK (CVE-2021-0674, CVE-2021-0675 & CVE-2021-30351)
SLUBStick (CVE-2021-3492 & several more)
PrintNightmare (CVE-2021-1675 & CVE-2021-34527)
Mistune (CVE-2021-1748 & CVE-2021-1864)
Baron Samedit/pwnEDIT (CVE-2021-3156)
Blue Klotski (CVE-2021-3573)
Port Shadow (CVE-2021-3773)
PwnKit (CVE-2021-4034)
vScalation (CVE-2021-22015)
ModiPwn (CVE-2021-22779)
Packet of the Death (CVE-2021-24086)
failStrike (CVE-2021-24348)
FragAttack (CVE-2020-24586 & more)
ISaPWN (CVE-2020-25176, CVE-2020-25180 and CVE-2020-25182)
MaginotDNS (CVE-2021-25220, CVE-2021-43105 & CVE-2022-32983)
Blackswan (CVE-2021-26442 & more)
ProxyLogon (CVE-2021-26855)
SMASH (3/2021)
NAME:WRECK (4/2021)
Evil Maid (Vacuum) (4/2021)
Relaying Potatoes (4/2021)
PrivateDrop (4/2021)
21Nails (CVE-2020-28017 & more)
BRAKTOOTH (CVE-2021-28139 & more)
Airstrike Attack (CVE-2021-28316)
tsuNAME (5/2021)
Half-Double (5/2021)
MouseTrap (CVE-2021-27569 - CVE-2021-27574 | Vuln List)
Talkative Marmot (CVE-2021-28500)
M1RACLES (CVE-2021-30747)
FORCEDENTRY (CVE-2021-30860)
Shrootless (CVE-2021-30892)
powerdir (CVE-2021-30970)
ProxyOracle (CVE-2021-31195 & CVE-2021-31196)
ProxyShell (CVE-2021-31207, CVE-2021-34473 & CVE-2021-34523)
ALPACA (CVE-2021-31971)
Process Ghosting (6/2021)
WiFiDemon (7/2021)
ProxyToken (CVE-2021-33766)
LATENTIMAGE (1/2022)
SymStealer (CVE-2022-3656)
ProxyRelay (CVE-2021-33768, CVE-2022-21979 & CVE-2021-26414)
Sequoia (CVE-2021-33909)
The Miracle Exploit (CVE-2021-35587)
Trivial Authentication (CVE-2021-36367, 36368 & 36369)
Hotcobalt (CVE-2021-36798)
HiveNightmare / SeriousSAM (CVE-2021-36934)
MarkdownTime (CVE-2022-2931 & CVE-2022-39209)
PetitPotam (CVE-2022-26925)
FINDMYPWN (6/2022)
EfsPotato (8/2021)
Glowworm Attack (8/2021)
ChaosDB (8/2021)
SPARROW (CVD-2021-0045 | 8/2021)
VoltPillager (8/2021)
ExpRace (8/2021)
PwnedPiper (CVE-2021-37160 & more)
OMIGOD (CVE-2021-38645, 38647, 38648 & 38649)
Printer Shellz (CVE-2021-39237 & CVE-2021-39238)
CallbackHell (CVE-2021-40449)
Demon’s Cries (CVE-2021-40866)
Draconian Fear (CVE-2021-40867)
Seventh Inferno (CVE-2021-41314)
Azurescape (9/2021)
Spook.js (9/2021)
LANTENNA (10/2021)
Gummy Browsers (10/2021)
PWNYOURHOME (10/2021)
InstallerFileTakeOver (CVE-2021-41379)
Blacksmith (CVE-2021-42114)
Doller Ticket (CVE-2021-42278, CVE-2021-42282 & CVE-2021-42291)
CredManifest (CVE-2021-42306)
ProxyNotRelay (CVE-2021-42321)
Trojan Source (CVE-2021-42574 & CVE-2021-42694)
BigSig (CVE-2021-43527)
Log4Shell (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, CVE-2021-4104 & CVE-2021-44832)
NotLegit (12/2021)
Rolling-PWN (CVE-2021-46145)
SQUIP (CVE-2021-46778)
pool-party attack (12/2021)
doorLock (1/2022)
TLStorm (CVE-2022-0715 & more)
cr8escape (CVE-2022-0811)
Dirty Pipe (CVE-2022-0847)
Y2K22 (1/2022)
NoReboot (1/2022)
Superglue (1/2022)
DrawnApart (1/2022)
Randstorm (1/2022)
JekyllBot:5 (CVE-2022-1059, 1066, 1070, 26423, 27494)
DirtyCred (CVE-2022-2588)
CodeChism (CVE-2022-4046 & CVE-2023-28355)
EntryBleed (CVE-2022-4543)
ÆPIC Leak (CVE-2022-21233)
Psychic Signatures (CVE-2022-21449)
Baton Drop (CVE-2022-21894 & CVE-2023-24932)
SpoolFool (CVE-2022-22718)
Windows Dirty Pipe (CVE-2022-22715)
XMPP Stanza Smuggling (CVE-2022-22784, CVE-2022-22785, CVE-2022-22786 and CVE-2022-22787)
Spring4Shell/SpringShell (CVE-2022-22965 & CVE-2010-1622)
TLStorm 2 (CVE-2022-23676, 23677, 29860 & 29861)
Hertzbleed (CVE-2022-23823 & CVE-2022-24436)
GitBleed (CVE-2022-24975)
Unbridled Optimism (2/2022)
Ice Phishing (2/2022)
BrokenPrint (2/2022)
Golden GMSA Attack (3/2022)
RevEAL (3/2022)
AutoWarp (3/2022)
Access:7 (CVE-2022-25249 & more)
TP240PhoneHome (CVE-2022-26143)
Branch History Injection (3/2022)
Browser in the Browser (BITB) Attack (3/2022)
Brokenwire (4/2022)
NotGitBleed (4/2022)
Frozen Heart (4/2022)
Fermat Attack (CVE-2022-26320)
batsignal (CVE-2022-26704)
Certifried (CVE-2022-26923)
Nimbuspwn (CVE-2022-29799 & CVE-2022-29800)
Package Planting (4/2022)
ExtraReplica (4/2022)
Augury (4/2022)
Retbleed (CVE-2022-29900 & CVE-2022-29901)
OT:ICEFALL (CVE-2022-29952 & 55 more)
SynLapse (CVE-2022-29972)
CrateDepression (5/2022)
ExplosION (5/2022)
GhostTouch (5/2022)
FabricScape (CVE-2022-30137)
ShadowCoerce (CVE-2022-30154)
Follina (CVE-2022-30190)
PACMAN (6/2022)
GhostToken (6/2022)
DFSCoerce (6/2022)
dubious disk (CVE-2022-30203, CVE-2023-21560 & more)
SiriSpy (CVE-2022-32946)
Demonic (CVE-2022-32969)
Screams of Power (CVE-2022-33174 & CVE-2022-33175)
FirmwareBleed (7/2022)
SATAn (7/2022)
PassBleed (7/2022)
ParseThru (8/2022)
Paracosme (CVE-2022-33318)
DogWalk (CVE-2022-34713)
EvilESP (CVE-2022-34718)
The Miracle Exploit (CVE-2022-35587)
Evil PLC (8/2022)
ETHERLED (8/2022)
GIFShell (9/2022)
Spell-Jacking (9/2022)
AttachMe (9/2022)
FabriXss (CVE-2022-35829)
Sandbreak (CVE-2022-36067)
OverLog (CVE-2022-37981)
Nearest Neighbor Attack (CVE-2022-38028)
Crowbleed (CVE-2022-38668)
Downfall (CVE-2022-40982)
ProxyNotShell¹ (CVE-2022–41040 & CVE-2022–41082)
OWASSRF (CVE-2022–41080 + CVE-2022–41082)
Dirty Vanity (10/2022)
Text4Shell (CVE-2022-42889)
LogCrusher (10/2022)
ZippyReads (CVE-2022-41091)
Leeloo Multipath (CVE-2022-41973 & CVE-2022-41974)
PCspooF (11/2022)
SyncJacking (11/2022)
LCDPwn (12/2022)
Hell’s Keychain (12/2022)
CertPotato (12/2022)
COVID-bit (12/2022)
Achilles (CVE-2022-42821)
Blindside (12/2022)
ACSESSED (12/2022)
PMFault (CVE-2022-43309)
MacDirtyCow (CVE-2022-46689)
TSSHOCK (CVE-2022-47931)
ENLBufferPwn (CVE-2022-47949)
DirtyNIB (CVE-2022-48505)
Ransacked (Many CVEs)
Headroll (CVE-2023-0704)
GameOver(lay) (CVE-2023-2640 & CVE-2023-32629)
StackRot (CVE-2023-3269)
Looney Tunables (CVE-2023-4911)
CitrixBleed (CVE-2023-4966)
LeftoverLocals (CVE-2023-4969)
Inception (CVE-2023-20569)
Collide+Power (CVE-2023-20583)
CacheWarp (CVE-2023-20592)
Zenbleed (CVE-2023-20593)
5Ghoul (CVE-2023-20702)
aCropalypse (CVE-2023-21036 & CVE-2023-28303)
QueueJumper (CVE-2023-21554)
bitpixie (CVE-2023-21563)
LocalPotato (CVE-2023-21746)
Blank Image (1/2023)
EmojiDeploy (1/2023)
SH1MMER (1/2023)
NVLeak (3/2023)
Polynonce (3/2023)
Super FabriXss (CVE-2023-23383)
Bad Appointment (CVE-2023-23397)
BLUFFS (CVE-2023-24023)
TETRA:BURST (CVE-2023-24400-CVE-2023-24404)
PwnAgent (CVE-2023-24749)
TuDoor (CVE-2023-26249 & more)
FriendlyName (CVE-2023-27217)
CorePlague (CVE-2023-27898 & CVE-2023-27905)
Red pills (3/2023)
BingBang (3/2023)
WarpAttack (4/2023)
Xortigate (CVE-2023-27997)
Shadow Ban (CVE-2023-29218)
Dirty Vanity (4/2023)
BrokenSesame (4/2023)
ShadowBunny (4/2023)
PPLFault (5/2023)
GodFault (5/2023)
BrutePrint (5/2023)
Hot Pixels (5/2023)
SQUIP (5/2023)
SinkClose (CVE-2023-31315)
MagicDot (CVE-2023-32054, CVE-2023-36396 & CVE-2023-42757)
Migraine (CVE-2023-32369)
ZipJar (6/2023)
nOAuth (6/2023)
RowPress (6/2023)
BlueTrust (6/2023)
lateralus (CVE-2023-32407)
sqlol (CVE-2023-32422)
badmalloc (CVE-2023-32428)
TunnelCrack (CVE-2023-35838, CVE-2023-36671, CVE-2023-36672 & CVE-2023-36673)
LeakyCLI (CVE-2023-36052)
TootRoot (CVE-2023-36460)
Dirty Pagetable (7/2023)
Follina2 (CVE-2023-36884)
Bad.Build (7/2023)
Bleeding Pipe (7/2023)
Timeroasting (7/2023)
ThemeBleed (CVE-2023-38146)
PhishForce (8/2023)
Sierra:21 (CVE-2023-38313 & many more)
Milk Sad (CVE-2023-39910)
BLASTPASS (CVE-2023-41061, CVE-2023-41064)
GPU.zip (9/2023)
ShellTorch (CVE-2023-43654)
Rapid Reset (CVE-2023-44487)
single-packet attack (10/2023)
iLeakage (10/2023)
Reptar (11/2023)
DeleFriend (11/2023)
LogoFAIL (11/2023)
SLAM (12/2023)
AutoSpill (12/2023)
QuadAttack (12/2023)
Terrapin Attack (CVE-2023-46445, CVE-2023-46446 & CVE-2023-48795)
RetSpill (12/2023)
Triangulation (CVE-2023-32424, CVE-2023-32425, CVE-2023-38606 & CVE-2023-41990)
PixieFAIL (CVE-2023-45229 through CVE-2023-45237)
ConnectAround (CVE-2023-46805 & CVE-2024-21887)
ShadowRay (CVE-2023-48022)
KeyTrap (CVE-2023-50387)
SMTP Smuggling (CVE-2023-51764 - CVE-2023-51766)
SSID Confusion Attack (CVE-2023-52424)
KyberSlash (1/2024)
MyFlaw (1/2024)
MavenGate (1/2024)
Sys:All (1/2024)
EventLogCrasher (1/2024)
UEFICANHAZBUFFEROVERFLOW (CVE-2024-0762)
TDXdown (CVE-2024-1544 & CVE-2024-27457)
SlashAndGrab (CVE-2024-1708 & CVE-2024-1709)
GhostRace (CVE-2024-2193)
Native BHI (CVE-2024-2201)
CONTINUATION Flood (CVE-2024-2653 & more)
xzorcist (CVE-2024-3094)
Blast-RADIUS (CVE-2024-3596)
TunnelVision (CVE-2024-3661)
Linguistic Lumberjack (CVE-2024-4323)
WorstFit (CVE-2024-4577)
regreSSHion (CVE-2024-6387)
Evilloader (CVE-2024-7014)
PKfail (CVE-2024-8105)
Downdate (CVE-2024-21302 & CVE-2024-38202)
MonikerLink (CVE-2024-21413)
Leaky Vessels (CVE-2024-21626)
Snap Trap (2/2024)
BadRAM (CVE-2024-21944)
sPACE Attack (CVE-2024-23674)
MMS Fingerprint (2/2024)
EM Eye (2/2024)
PrintListener (2/2024)
COLD-Attack (2/2024)
Shim Shady (CVE-2024-40547)
VoltSchemer (2/2024)
Silver SAML (2/2024)
ArtPrompt (3/2024)
Loop DoS (3/2024)
Unsaflok (3/2024)
FlowFixation (3/2024)
GoFetch (3/2024)
ZenHammer (3/2024)
Last Challenge (3/2024)
WallEscape (CVE-2024-28085)
Crescendo (4/2024)
Ahoi Attacks (4/2024)
Kobold Letters (4/2024)
BatBadBut (4/2024)
HookChain (4/2024)
Pathfinder (4/2024)
Dirty stream (5/2024)
GhostStripe (5/2024)
SLAP & FLOP (5/2024)
DNSBomb (CVE-2024-33655 & more)
CosmicSting (CVE-2024-34102)
Llama Drama (CVE-2024-34359)
Sleepy Pickle (6/2024)
Sticky Pickle (6/2024)
TikTag (6/2024)
GrimResource (6/2024)
Probllama (CVE-2024-37032)
ESXith (CVE-2024-37085)
FetchBench (CVE-2024-37985)
MadLicense (CVE-2024-38077)
FakePotato (CVE-2024-38100)
copy2pwn (CVE-2024-38213)
LNK Stomping (CVE-2024-38217)
SnailLoad (CVE-2024-39920)
GAZEploit (CVE-2024-40865)
ASLRn’t (CVE-2024-42258)
Skeleton Key (6/2024)
Indirector (7/2024)
Kirin (7/2024)
SAPwned (7/2024)
EvilVideo (7/2024)
ConfusedFunction (7/2024)
Thread Name (7/2024)
Sitting Ducks (7/2024)
Shadow Resources (8/2024)
Bucket Monopoly (8/2024)
GhostWrite (8/2024)
0.0.0.0 Day (8/2024)
ArtiPACKED (8/2024)
WireServing (8/2024)
ALBeast (8/2024)
FluidFaults (8/2024)
EUCLEAK (9/2024)
Revival Hijack (9/2024)
RAMBO (9/2024)
PIXHELL (9/2024)
HM Surf (CVE-2024-44133)
Kart”LAN”Pwn (CVE-2024-45200)
Skeleton Cookie (CVE-2024-45488)
DRAY:BREAK
CounterSEVeillance (10/2024)
ClickFix (10/2024)
ConfusedPilot (10/2024)
FortiJump & FortiJump Higher (CVE-2024-47575)
Deceptive Delight (10/2024)
CrossBarking (10/2024)
SysBumps (10/2024)
Clone2Leak (10/2024)
ModeLeak (11/2024)
Ghost Tap (11/2024)
Flowbreaking (11/2024)
DaMAgeCard (12/2024)
_json juggling attack (12/2024)
AuthQuake (12/2024)
TPUXtract (12/2024)
LDAPNightmare (CVE-2024-49113)
Bad Likert Judge (12/2024)
SUN:DOWN (CVE-2024-50691 & more)
EntrySign (CVE-2024-56161)
DoubleClickjacking (1/2025)
KernelSnitch (2/2025)
CrashXTS (CVE-2025-21210)
whoAMI (2/2025)
Wallbleed (2/2025)
IngressNightmare (CVE-2025-1974 & more)
AirBorne (CVE-2025-24252 and many more)
SAMLStorm (CVE-2025-29774 & CVE-2025-29775)
Rules File Backdoor (3/2025)
Line Jumping (4/2025)
ConfusedComposer (4/2025)
Policy Puppetry (4/2025)
OuttaTune (4/2025)
Fontleak (5/2025)

*Disclaimer: This is a best effort at getting all “named” vulnerabilities. It’s very likely I have missed a few.

Feel free to let me know if there are any vulns I am missing! This list will continue to be updated as new named vulnerabilities are announced.

Shout-Outs

- These names are not be confused with those produced by vulnonym.
- Shout out to the folks at 0day.marketing - we have them to thank for some of this madness =).
- I’d like to call out this site which has provided a useful timeline for low-level attacks.
- Cheers to nate at GreyNoise for crediting my list as data-inspiration for this cool infographic and timeline.
- LOL at NOSHIT (CVE-2023-39848), CuppaJoe & Ass Bleed (CVE-2024-3094)

CVE Search

Use the search box below to query the NVD or MITRE database(s) for more information on other vulnerabilities!

^{Search for a particular CVE value or any other search term (e.g. “Heartbleed”)}

Infosec Tools

shellsharks Posts

7 June 2019 at 16:55

A list of information security tools I use for assessments, investigations and other cybersecurity tasks.

Also worth checking out is CISA’s list of free cybersecurity services and tools.

Jump to Section

OSINT / Reconnaissance

Common Crawl - Open repository of web crawl data
Cylect.io - Ultimate AI OSINT searching tool
DarkwebDaily.Live
Dehashed - Data-mining and deep web asset search engine
Dork King - Bug Bounty Dorks
DorkGenius - Generate custom dorks for Google, Bing, DuckDuckGo, & more
DorkSearch.com - Faster Google Dorking
FOFA - Search engine for global cyberspace mapping
Google Advanced Search Operators - A resource for doing advanced Google searches
Have I Been Squatted? - Check if your domain has been squatted.
Hunter.how - Internet search engines for security researchers
IntelligenceX - Search Tor, I2P, data leaks, domains, and emails
Lopseg - OSINT tools
MetaOSINT - Aggregation of “top” tools & resources intended to help jumpstart OSINT investigations
OSINT Framework - Helping people find free OSINT resources
OSINT Industries - Gateway to email-based research
SEC eFilings (EDGAR) - Electronic Data Gathering, Analysis and Retrieval system
SpyOnWeb - Find related websites
Wayback Machine - The archive for the Internet and a time machine for the web
Well-Known Resource Index - Search /.well-known/ resources served by sites across the web
Worldwide OSINT tools map - Phonebooks, cadastral maps, vehicle numbers databases, business registries, passengers lists, court records and much more
ZoomEye - Target information search

Network Tools (IP, DNS, WHOIS)

AbuseIPDB - Check IP address, domain name or subnet
American Registry for Internet Numbers (ARIN) - Administers IP addresses & ASNs
Better Whois - The whois domain search that works with all registrars
DomainTools - Whois lookup, domain availability and IP search tools
DNSCheck - DNS tool
DNSDumpster - DNS recon & research, find & lookup dns records
DNSViz - Tool for visualizing the status of a DNS zone
dnsqueries.com - Collection of online network tools
Hurricane Electric BGP Toolkit - A variety of Internet services and network tools
Internet Namespace Security Observatory - DNSSEC statistics and insights into the global adoption of secure internet namespaces
IPSpy.net - IP Lookup, WHOIS, DNS, Utilities
IPVoid - Discover details about IP addresses
ManageEngine Site24x7 - Free Tools for Network, DevOps and Site Reliability Engineers (SRE)
Netcraft - Collection of internet security services
Network Solutions - Whois lookup for domain registration information
NetworkScan - IP Lookups for Open Ports
NsLookup - Online tool for querying DNS servers
Online Whois Tool - WHOIS
Radar | Cloudflare - Search for locations, AS, reports, domains and IP info
RIPE Network Coordination Centre - Organization that allocates and registers blocks of Internet number resources to ISPs and other organizations
Subdomain Center - Subdomain discovery
who.is - Whois search, domain name, website and IP tools
ZoneDiff - Monitor new and expired domains with daily TXT dumps

Breaches, Incidents & Leaks

Breach HQ - Open database of security incidents
CSIDB - Cyber Security Incident Database
Cybersecurity Incident Tracker | Board Cybersecurity - Tracker for cybersecurity incidents reported in an entity’s 8-K
DataBreaches.net - Information on corporate security breaches
DefiLlama Hacks - Cryptocurrency hack tracker
escape.tech API Data breaches - Database for API data breaches
Firefox Monitor - Find out if your personal information has been compromised
GDPR Enforcement Tracker - Overview of fines and penalties which data protection authorities within the EU have imposed under the EU GDPR.
Leak-Lookup - Data Breach Search Engine
LeakPeek - Data breach search engine
Northrecon - Incident database
PrivacyRights.org Data Breaches - Info on publicly available reported breaches
Public Cloud Security Breaches - Security incidents and breaches from customers in major cloud providers
Ransomfeed
RansomLook - Tracking ransomware posts and activities
Ransomware.live - Ransomware leak monitoring tool and observatory
Ransomwatch - Ransomware page crawler
Ransomwhere - Open, crowdsourced ransomware payment tracker
search.0t.rocks
SnusBase - Data breach search engine
White Intel - Dark-Web Scan

FININT (Financial Intelligence)

GSA eLibrary - Source for the latest GSA contract award information

GEOINT (Geographical Intelligence)

Homemetry
MoonCalc - Calculate moon phase
PeakFinder - Mountains/coordinates
PowerOutage.us - Track, record and aggregate power outages in the US
SunCalc - Sun path computation, solar data & geo data

HUMINT (Human & Corporate Intelligence)

No-Nonsense Intel - List of keywords which you can use to screen for adverse media, military links, political connections, sources of wealth, asset tracing etc
CheckUser - Check desired usernames across social network sites
CorporationWiki - Find and explore relationships between people and companies
Crunchbase - Discover innovative companies and the people behind them
Find Email - Find email addresses from any company
Info Sniper - Search property owners, deeds & more
Library of Leaks - Search documents, companies and people
LittleSis - Who-knows-who at the heights of business and government
NAMINT - Shows possible name and login search patterns
OpenCorporates - Legal-entity database
That’s Them - Find addresses, phones, emails and much more
TruePeopleSearch - People search service
WhatsMyName - Enumerate usernames across many websites
Whitepages - Find people, contact info & background checks

IMINT (Imagery/Maps Intelligence)

Exposing.ai
Insecam - Live cameras directory
Map IPs - Paste up to 500,000 IPs below to see where they’re located on a map
Map of worldwide ransomware attacks
Photo OSINT - A lot of OSINT tools
World Imagery Wayback - Digital archive, providing users with access to the different versions of World Imagery created over time
WorldCam - Webcams from around the world

MASINT (Measurement and Signature Intelligence)

Wigle.net - Database of wireless networks

SOCMINT (Social Media Intelligence)

Discord Servers - Discord server search
Find a Discord - Discord server search
Lyzem - Telegram search engine
Spy.pet - Explore Discord’s data
TGStat - Telegram search channel

Email

DMARC Checker - Check DMARC, DKIM, and SPF Settings
EmailFormat.com - Find the email address formats in use at thousands of companies
Hunter - Search for professional email addresses
merox.io - DNS security and DMARC
MX Lookup Tool - Check your DNS MX records online
MX Toolbox - List MX records for a domain in priority order

Code Search

grep.app - Search across a half million git repos
PublicWWW - Find any alphanumeric snippet, signature or keyword in the web pages HTML, JS and CSS code
searchcode - Search 75 billion lines of code from 40 million projects

Scanning / Enumeration / Attack Surface

Awseye
badkeys.info - Checking cryptographic public keys for known vulnerabilities
Browser History Analyzer - Processes your browser history
Built With - Find out what websites are built with
Censys Search - Search IP address, name, protocol or field
CensysGPT Beta - CensysGPT beta simplifies building queries and empowers users to conduct efficient and effective reconnaissance operations
Cert Central
CertDB - A searcheable database of the internet’s SSL/TLS certificate names
CriminalIP - Search for information about assets connected to the public Internet
crt.sh - Certificate search
CRXcavator - Chrome extension scanning
FullHunt - Attack Surface Enumerator
Grayhat Warfare - Public Bucket Finder
GreyNoise - Internet-connected devices
HTTP Observatory - Analyzing compliance with best security practices
ꓘamerka and ꓘamerka lite - Public ICS identification
LeakIX - Search publicly indexed information to find security misconfigurations
Netlas - Search and monitor internet connected assets.
Onyphe - Cyber defense search engine
OSINT.SH Public Buckets - Public Bucket Finder
S3 Bucket Scanner | purpleleaf - Checks S3 bucket-level permissions that may allow data exposure
Security Headers | Probely - Analyze HTTP headers
SecurityTrails - Attack surface scanning
Shodan - Search engine for internet-connected devices
Shodan | InternetDB - Fast way to see the open ports for an IP address
Shodan-Dork
Should I click? - Tells you if it’s safe to click on a link
SSL Checker - SSL certificate verification
SSL Server Test - Tool from Qualys to perform deep analysis of the configuration of an SSL web server
urlscan.io - Scan and analyze websites
Wappalyzer - Identify technologies on websites

Offensive Security

Exploits

Bug Bounty Hunting Search Engine - Search for writeups, payloads, bug bounty tips, and more…
BugBounty.zip - Your all-in-one solution for domain operations
CP-R Evasion Techniques
CVExploits - Comprehensive database for CVE exploits
DROPS - Dynamic CheatSheet/Command Generator
Exploit Notes - Hacking techniques and tools for penetration testings, bug bounty, CTFs
ExploitDB - Huge repository of exploits from Offensive Security
files.ninja - Upload any file and find similar files
Google Hacking Database (GHDB) - A list of Google search queries used in the OSINT phase of penetration testing
GTFOArgs - Curated list of Unix binaries that can be manipulated for argument injection
GTFOBins - Curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
Hijack Libs - Curated list of DLL Hijacking candidates
Living Off the Living Off the Land - A great collection of resources to thrive off the land
Living Off the Pipeline - CI/CD lolbin
Living Off Trusted Sites (LOTS) Project - Repository of popular, legitimate domains that can be used to conduct phishing, C², exfiltration & tool downloading while evading detection
LOFLCAB - Living off the Foreign Land Cmdlets and Binaries
LoFP - Living off the False Positive
LOLBAS - Curated list of Windows binaries that can be used to bypass local security restrictions in misconfigured systems
LOLC2 - Collection of C2 frameworks that leverage legitimate services to evade detection
LOLESXi - Living Off The Land ESXi
LOLOL - A great collection of resources to thrive off the land
LOLRMM - Remote Monitoring and Management (RMM) tools that could potentially be abused by threat actors
LOOBins - Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in macOS binaries and how they can be used by threat actors for malicious purposes
LOTTunnels - Living Off The Tunnels
Microsoft Patch Tuesday Countdown
offsec.tools - A vast collection of security tools
Shodan Exploits
SPLOITUS - Exploit search database
VulnCheck XDB - An index of exploit proof of concept code in git repositories
XSSed - Information on and an archive of Cross-Site-Scripting (XSS) attacks

Red Team

ArgFuscator - Generates obfuscated command lines for common system tools
ARTToolkit - Interactive cheat sheet, containing a useful list of offensive security tools and their respective commands/payloads, to be used in red teaming exercises
Atomic Red Team - A library of simple, focused tests mapped to the MITRE ATT&CK matrix
C2 Matrix - Select the best C2 framework for your needs based on your adversary emulation plan and the target environment
ExpiredDomains.net - Expired domain name search engine
Living Off The Land Drivers - Curated list of Windows drivers used by adversaries to bypass security controls and carry out attacks
Unprotect Project - Search Evasion Techniques
WADComs - Curated list of offensive security tools and their respective commands, to be used against Windows/AD environments

Web Security

Invisible JavaScript - Execute invisible JavaScript by abusing Hangul filler characters
INVISIBLE.js - A super compact (116-byte) bootstrap that hides JavaScript using a Proxy trap to run code

Security Advisories

CISA Alerts - Providing information on current security issues, vulnerabilities and exploits
ICS Advisory Project - DHS CISA ICS Advisories data visualized as a Dashboard and in Comma Separated Value (CSV) format to support vulnerability analysis for the OT/ICS community

Attack Libraries

A more comprehensive list of Attack Libraries can be found here.

ATLAS - Adversarial Threat Landscape for Artificial-Intelligence Systems is a knowledge base of adversary tactics and techniques based on real-world attack observations and realistic demonstrations from AI red teams and security groups
ATT&CK
Risk Explorer for Software Supply Chains - A taxonomy of known attacks and techniques to inject malicious code into open-source software projects.

Vulnerability Catalogs & Tools

!CVE - Vulnerabilities that don’t have CVEs
CloudVulnDB - List all known cloud vulnerabilities and CSP security issues
CPR-Zero - Check Point Research Vulnerability Repository
CVE - CVE.org
CVE - Common Vulnerabilities and Exposures (CVE) - CVE respository from MITRE
CVE Crowd - CVEs being discussed on Mastodon
CVE Trends - crowdsourced CVE intel
CVEDEB API | Shodan - Check information about vulnerabilities in a service
CVEdetails.com - Provides CPE information for most CVEs, even if they are not provided by NVD
CVEShield - CVEs being discussed on Twitter
CVESky - Bluesky CVE Leaderboard
CVE Tracker | CyberAlerts - Monitor the number of CVEs added to the CVE database
CWE - A community-developed list of software & hardware weaknesses that can become vulnerabilities
Designer Vulnerabilities | Shellsharks - Named vulnerabilities
ENISA - European Union Vulnerability Database
Exploit Observer - Aggregates & interprets exploit/vulnerability data from all over the Internet.
fedisecfeeds - CVE information from the Fediverse
GCVE.eu - Global CVE Allocation System
Go Vulnerability Management
Intel | Intruder
inTheWild - A database of actively exploited vulnerabilities
KEV Catalog Dashboard
KEVIntel - Known exploited vulnerabilities (KEVs) that have been cataloged from over 50 public sources
Known Exploited Vulnerabilities (KEV) Catalog - Authoritative source of vulnerabilities that have been exploited in the wild
Linux Kernel CVEs
LVE Repository - Document and track vulnerabilities and exposures of large language models (LVEs)
National Vulnerability Database | NVD - National Vulnerability Database
Nessus Plugin Search - A search tool for Nessus plugins
OpenCVE - Opensource Vulnerability Management Platform
OSV | Open Source Vulnerabilities - Vulnerability database for open source projects
RUSTSEC - A vulnerability database for the Rust ecosystem
Snyk Vulnerability Database - Database for open source vulnerabilities and cloud misconfigurations
ThreatINT - Information on publicly disclosed Cybersecurity vulnerabilities
V.E.D.A.S. - Vulnerability & Exploit Data Aggregation System
VulDB - Curating and documenting all security vulnerabilities that got published in electronic products
VulnCheck Advisories - Third party vulnerabilities that have been reported by VulnCheck
VulnCheck KEV - Community resource that enables security teams to manage vulnerabilities and risk with additional context and evidence-based validation
Vulnerability-Lookup & Vulnerability-Lookup.org - Facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CVD)
Vulners - Search engine for security intelligence
Wordfence Intelligence - Threat intelligence data platform which currently consists of an incredibly comprehensive database of WordPress vulnerabilities
Zero-Day Tracking Project - Raise awareness for zero-day vulnerabilities

Risk Assessment Models

A more comprehensive list of Risk Assessment Models and tools can be found here.

CVSS Version 2 Calculator - Calculate CVSS risk scores
CVSS v4.0
VISS Calculator - Vulnerability Impact Scoring System

Blue Team

AttackRuleMap - Mapping of open-source detection rules and atomic tests.
Detection Studio
EDR Telemetry - List of telemetry features from EDR products and other endpoint agents
EDR Telemetry Project - Comprehensive resource for comparing Endpoint Detection and Response (EDR) telemetry capabilities across multiple platforms
ETDA Threat Group Cards: A Threat Actor Encyclopedia - Full profiles of all threat groups worldwide that have been identified
Honest Security
malpedia - Resource for rapid identification and actionable context when investigating malware
Microsoft Sentinel Analytic Rules - Beautified catalog of the official Microsoft Sentinel GitHub repository
Rulehound - Detection rules
SaaS Event Maturity Matrix - Comprehensive framework that provides clarity regarding the capabilities and nuances of SaaS audit logging
YARA Toolkit - Write your own Yara rules or copy paste one to edit it
YARA Validator - Compile your rules on all yara versions online to detect compatibility issues!
YaraDbg - Web-based Yara debugger to help security analysts to write hunting or detection rules

CTI & IoCs

Alien Vault OTX - Open threat intelligence community
BAD GUIDs EXPLORER
Binary Edge - Real-time threat intelligence streams
CLOAK - Concealment Layers for Online Anonymity and Knowledge
Cloud Threat Landscape - A comprehensive threat intelligence database of cloud security incidents, actors, tools and techniques. Powered by Wiz Research
CTI AI Toolbox - AI-assisted CTI tooling
CTI.fyi - Content shamelessly scraped from ransomwatch
CyberOwl - Stay informed on the latest cyber threats
Dangerous Domains - Curated list of malicious domains
HudsonRock Threat Intelligence Tools - Cybercrime intelligence tools
InQuest Labs - Indicator Lookup
IOCParser - Extract Indicators of Compromise (IOCs) from different data sources
Malpuse - Scan, Track, Secure: Proactive C&C Infrastructure Monitoring Across the Web
ORKL - Library of collective past achievements in the realm of CTI reporting.
Pivot Atlas - Educational pivoting handbook for cyber threat intelligence analysts
Pulsedive - Threat intelligence
ThreatBook TI - Search for IP address, domain
threatfeeds.io - Free and open-source threat intelligence feeds
ThreatMiner - Data mining for threat intelligence
TrailDiscover - Repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents references, other research references and security implications
URLAbuse - Open URL abuse blacklist feed
urlquery.net - Free URL scanner that performs analysis for web-based malware

URL Analysis

BrightCloud - View threat, content and reputation analysis
CyberGordon - Threat and risk information about observables
defang.me - IOC Defanging Tool
Desenmascara - Is this a fraudulent website?
Google Safe Browsing - Scan for unsafe websites
IP Lookup / Quality Score - Detect high risk IP addresses and check IP fraud scores
Is It Hacked? - Checks URL for spammy links, funny redirects, or if it is hacked
MalwareURL Site Reputation Lookup - URL, domain & IP reputation search
McAfee Single URL Check - Check if a site is categorized
Norton Safe Web - Discover ratings for any site
Palo Alto Test A Site - View details about its current URL categories
Quttera - Scan website
ScamAdviser - Check if website is a scam
SUCURi - Check a website for known malware, viruses, blacklisting status, website errors, out-of-date software, and malicious code
Symantec WebPulse Site Review Request - Check and dispute the current WebPulse categorization for any URL
Talos Intelligence Center Search - Search by IP, URL, domain, network owner or file SHA256
Threat STOP Check IoC - Lookup IP addresses and domains against extensive database of malware-related IOCs
Trend Micro Is it safe? - URL checker
URL Defanger - URL Defanger
urlScore - Is this URL safe to visit?
URLVoid - Detect potentially malicious websites
Web Filter Lookup | Fortiguard - See URL category and history
Zulu URL Risk Analyzer - Dynamic risk scoring engine for web based content
zveloLIVE - Check a URL for its category and safety status

Static / File Analysis

badfiles - Enumerate bad, malicious, or potentially dangerous file extensions
CyberChef - The cyber swiss army knife
DocGuard - Static scanner and has brought a unique perspective to static analysis, structural analysis
dogbolt.org - Decompiler Explorer
EchoTrail - Threat hunting resource used to search for a Windows filename or hash
filescan.io - File and URL scanning to identify IOCs
filesec.io - Latest file extensions being used by attackers
Kaspersky TIP
Manalyzer - Static analysis on PE executables to detect undesirable behavior
PolySwarm - Scan Files or URLs for threats
VirusTotal - Analyze suspicious files and URLs to detect malware

Dynamic / Malware Analysis

JoeSandbox Cloud - Deep malware analysis
MalAPI.io - MalAPI.io maps Windows APIs to common techniques used by malware
Malware Bazaar - Sharing malware samples with the infosec community, AV vendors and threat intelligence providers
Malware.rip - Open documents from untrustworthy websites or users
Malware-Traffic-Analysis.net - A source for pcap files and malware samples
SarlackLab C2 Tracking - Kicking ACKs and taking domain names
WTFBINS - Catalog benign applications that exhibit suspicious behavior

Forensics

DFIQ - Digital Forensics Investigative Questions and the approaches to answering them

Phishing / Email Security

CheckPhish - Can suspicious URLs and monitor for typosquats
dnstwist - Phishing domain scanner
EML Analyzer - Run custom detection rules on live email flow in Microsoft 365 and Google Workspace environments
EML analyzer - Heroku-ified, online instance of EML analyzer
Is It Phishing - Test for phishing
phish.ly - Analyze suspicious emails with Tines & urlscan
PhishTank - Submit and track suspected phish sites
Simple Email Reputation - Checks reputation for emails

Assembly / Reverse Engineering

Compiler Explorer - Emulated compilation environment for a variety of assembly languages
Decimal/Two’s Complement Converter
Disasm.pro
Graph Permissions - Microsoft Graph Permission Explorer
Hex.Dance - client-side binary/file analysis, hex dump viewer & editor
IEEE 754 Converter - Convert between decimal representation and binary format used by modern CPUs
IEEE-754 Floating-Point Conversion - Convert from decimal floating-point to 32-bit and 64-bit hex representations along with their binary equivalents
Linux kernel syscall tables
MIPS Converter - Convert from MIPS instructions to hex and back again
SymbolExchange
Terminus Project - Automatically generated diff of Windows structures
VERGILIUS - Take a look into the depths of Windows kernels and reveal more than 60000 undocumented structures
WinDiff - Exported symbols, debug symbols, modules, types, syscalls

OS / Scripting / Programming

carbon - Create and share beautiful images of source code
Command line reference - Command line references for Linux, macOS, CMD, PowerShell, Databases, VB Script, ASCII, etc…
command-not-found.com - How to install different commands and utilities on various OS’s
explainshell.com - write down a command-line to see the help text that matches each argument
Linux Command Library
LIVEDOM.NG - Enter HTML markup below and compare how it is parsed by various parsers and sanitizers
Microsoft MIB Database - A database of SNMP MIBs
W3 Validator - Check HTML to see if it is W3 compliant

Regex

Password

Diceware Password Generator - Generate high-entropy passwords the easy way!
Have I been pwned? - Check if you have an account that has been compromised in a data breach
LeakedPassword - Has your password been leaked?
ntlm.pw - Input NT/LM hashes in hex format, one per line
Passkeys.directory - Websites, apps and services using passkeys for authentication
Passkeys.io - See which major websites and apps already offer passkey support or are currently working on integration
Passwordhaus - Pseudorandom Passphrase Generator
Secrets.tools - Scan a login page to find secrets, emails, API keys, and embedded URLs
Ultra High Security Password Generator - Generate long, high-quality, random passwords
WEAKPASS - Bruteforce wordlists

AI

OWASP AI Exchange - Comprehensive guidance and alignment on how to protect AI against security threats

Assorted

App Defense Alliance - Improving app quality across the ecosystem
Assetnote Wordlists | Commonspeak2 - Assorted automatically generated wordlists
AWS API Changes - Changes to AWS API
AWS Security Changes
bbradar.io - Latest Bug Bounty Programs
Browserleaks - Displays web browser SSL/TLS capabilities
browserling - Online cross-browser testing
Bug Bounty List - A compiled list of companies which accept responsible disclosure
ChangeWindows - Changes to Windows builds
Cheat.sh - Unified access to the best community driven documentation repositories
Control Validation Compass - Threat modeling aide & purple team content repository
CyberSec Research - Browse, search and filter the latest cybersecurity research papers from arXiv
The DDoS Report
DevSec Hardening Framework - DevSec Hardening Framework Baselines
endoflife.date - documents EOL dates and support lifecycles for various products
Expired.systems - All news regarding expired systems, so you can show your colleagues why it matters to monitor certificates
hackerstoolkit - CTF Assistant
Illustrated TLS 1.3 Connection
Infosec House - Comprehensive range of tools and resources for both offensive and defensive strategies
Is it quantum safe? - Is the browser or connection quantum resistant?
ISMS Mappings - Compliance mappings
LexisNexis Academic & Library Solutions - Search tool for academic documents
Microsoft Patch-A-Palooza
MVSP
No Trace Project - Tools to help anarchists and other rebels
Open Source Security Index - The Most Popular & Fastest Growing Open Source Security Projects on GitHub
Packet Storm - Global security resource
Pastebin
policymaker | disclose.io - Policy generator for anyone launching a vulnerability disclosure program (VDP)
Proxynova - Provide free proxy services as well as the information about using proxies for various purposes
Public Cloud Services Comparison
Rawsec’s CyberSecurity Inventory - An inventory of tools and resources about CyberSecurity
Rebujito.xyz - Hacking tools and resources
SecTemplates - Open source templates you can use to boostrap your security programs
Segfault - Disposable root servers
Shodan 2000
SRI Hash Generator - SRI is a new W3C specification that allows web developers to ensure that resources hosted on third-party servers have not been tampered with
State Cybercrime Laws : Definitions and Defenses | Sheets
The Firewall - Open source cybersecurity project designed to provide powerful, enterprise-grade security tools that are easy to deploy, easy to use, and accessible to businesses of all sizes and budgets
Upcoming EoL - When software goes EoL
URL Cleaner - Removes tracking parameters from URLs
Webhook.site - Generates a free, unique URL and e-mail address and lets you see everything that’s sent there instantly
What The Format - Look up numbers, identifiers, and formats
yProbe - Kubernetes YAML Manifest Sanity Checker

OpSec / Privacy

Awesome Privacy - Find and compare privacy-respecting alternatives to popular software and services
Device Info - A web browser security testing, privacy testing, and troubleshooting tool
Digital Defense (Security List) - Your guide to securing your digital life and protecting your privacy
DNS Leak Test
EFF | Tools from EFF’s Tech Team - Solutions to the problems of sneaky tracking, inconsistent encryption, and more
Privacy Guides - Non-profit, socially motivated website that provides information for protecting your data security and privacy
Privacy.Sexy - Privacy related configurations, scripts, improvements for your device
PrivacyTests.org - Open-source tests of web browser privacy
switching.software - Ethical, easy-to-use and privacy-conscious alternatives to well-known software
What’s My IP Address? - A number of interesting tools including port scanners, traceroute, ping, whois, DNS, IP identification and more
WHOER - Get your IP

Jobs

infosec-jobs - Find awesome jobs and talents in InfoSec / Cybersecurity

Conferences / Meetups

CFPtime - Call For Papers for Security Conferences
InfoCon Hacking Conference Archive - Community supported, non-commercial archive of all the past hacking related convention material
InfoSecMap - Mapping out the best InfoSec events and groups!

Infosec / Cybersecurity Research & Blogs

bug.directory - Collection of vuln research, exploit development, and reverse engineering resources
CTF Writeups Search
Check out this huge list of infosec blogs
intel.taggartinstitute.org - RSS feed of infosec intel
Talkback - Smart infosec resource aggregator, designed to help security enthusiasts, practitioners and researchers be more productive
writeups.xyz - Collection of Information Security and Bug Bounty writeups

Funny

-10x Engineer - How to be a -10x Engineer
1x Engineer - Qualities that make up a 1x engineer
Are We Hacked? - Yeah, We Probably Are
CrowStrike - We stop Crow attacks
Cyber Threat Name Generator
Engineering Festivus - The only thing 2020 needed is Seinfeld making a career change and getting into tech
Hacker Typer - 1337 H4X
HowFuckedIsMyDatabase
HowFuckedIsMyDistro
HTTP Cats - HTTP return codes, as cats!
Insult passphrase generator - Passphrases that are insults
Kenny Log-ins - Generate a secure password from the lyrics of America’s greatest singer songwriter
Kubernetes Failure Stories - A compiled list of links to public failure stories related to Kubernetes
Legal Lullabies - Lull yourself to sleep with soothing white noise of tech giant ToS
Lumon Password Generator
MoanMyIP
Security Master Plan - The master plan.
ShittySecrets.dev - Real stories from real developers that are dealing with hardcoded secrets in source code
Should I use SMBv1? - No.
Social Minefield - “High-stakes Minesweeper” & Clickjacking checker
Stop Silly Security Awards - End the practice of security awards run by marketing companies
The Password Game
YOLO Security

Walls of Shame

Audit Logs Wall of Shame - A list of vendors that don’t prioritize high-quality, widely-available audit logs for security and operations teams
Dumb Password Rules - A compilation of sites with dumb password rules
The SSO Wall of Shame - A list of vendors that treat single sign-on as a luxury feature, not a core security requirement
ssotax.org - A list of vendors that have SSO locked up in an subscription tier that is more than 10% more expensive than the standard price
Why No IPv6? - Wall of shame for IPv6 support

Other

Awesome Pastebins - List of pastebin services
Backdoors & Breaches - An online information security game
CMMC Awesomeness
Cybersecurity is full!
Hacker Strategies - Inspiration for when you’re stuck.
Hacking Is Not A Crime
Movies For Hackers - Every aspiring hacker & cyberpunk must watch these movies
Nmap in the Movies - Movies that feature the Nmap tool
Wi is Fi - Understanding Wi-Fi 4/5/6/6E/7 (802.11 n/ac/ax/be)
xCyclopedia - The Encyclopedia of Executables

Dynamization of Jekyll

shellsharks Posts

25 August 2022 at 20:23

Jekyll is a framework for creating websites/blogs using static plain-text files. Jekyll is used by GitHub Pages, which is also the current hosting provider for Shellsharks.com. I’ve been using Git Pages since the inception of my site and for the most part have no complaints. With that said, a purely static site has some limitations in terms of the types of content one can publish/expose.

I recently got the idea to create a dashboard-like page which could display interesting quantitative data points (and other information) related to the site. Examples of these statistic include, total number of posts, the age of my site, when my blog was last updated, overall word count across all posts, etc… Out of the box, Jekyll is limited in its ability to generate this information in a dynamic fashion. The Jekyll-infused GitHub pages engine generates the site via an inherent pages-build-deployment Git Action (more on this later) upon commit. The site will then stay static until the next build. As such, it has limited native ability to update content in-between builds/manual-commits.

To solve for this issue, I’ve started using a variety of techniques/technologies (listed below) to introduce more dynamic functionality to my site (and more specificially, the aforementioned statboard).

Jekyll Liquid
JavaScript & jQuery
Git Actions
Advanced Git Actions (*Future Update!*)

Jekyll Liquid

Though not truly “dynamic”, Liquid* templating language is an easy, Jekyll-native way to generate static content in a quasi-dynamic way at site build time. As an example, if I wanted to denote the exact date and time that a blog post was published I might first try to use the Liquid template {{ site.time }}. What this actually ends up giving me is a time stamp for when the site was built (e.g. 2025-05-07 17:03:43 -0400), rather than the last updated date of the post itself. So instead, I can harness the posts custom front matter, such as “updated:”, and access that value using the tag {{ page.updated }} (so we get, __).

One component on the (existing) Shellsharks statboard calculates the age of the site using the last updated date of the site (maintained in the change log), minus the publish date of the first-ever Shellsharks post. Since a static, Jekyll-based, GitHub Pages site is only built (and thus only updated) when I actually physically commit an update, this component will be out of date if I do not commit atleast daily. So how did I solve for this? Enter Git Actions.

* Learn more about the tags, filters and other capabilities of Liquid here.

JavaScript & jQuery

Before we dive into the power of Git Actions, it’s worth mentioning the ability to add dynamism by simply dropping straight up, in-line JavaScript directly into the page/post Markdown (.md) files. Remember, Jekyll produces .html files directly from static, text-based files (like Markdown). So the inclusion of raw JS syntax will translate into embdedded, executable JS code in the final, generated HTML files. The usual rules for in-page JS apply here.

One component idea I had for the statboard was to have a counter of named vulnerabilities. So how could I grab that value from the page? At first, I tried fetching the DOM element with the id in which the count was exposed. However this failed because fetching that element alone meant not fetching the JS and other HTML content that was used to actually generate that count. To solve for this, I used jQuery to load the entire page into a temporary <div> tag, then iterated through the list (<li>) elements within that div (similar to how I calculate it on the origin page), and then finally set the dashboard component to the calculated count!

$('<div></div>').load('/infosec-blogs', function () {
  var blogs = $("li",this).length;
  $("#iblogs").html(blogs);
});

Additional notes on the use of JS and jQuery

I used Google’s Hosted Libraries to reference jQuery <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js"></script>.
Be weary of adding JS comments // in Markdown files as I noticed the Jekyll parsing engine doesn’t do a great job of new-lining, and thus everything after a comment will end up being commented.
When using Liquid tags in in-line JS, ensure quotes (‘’,””) are added around the templates so that the JS code will recognize those values as strings (where applicable).
The ability to add raw, arbitrary JS means there is a lot of untapped capability to add dynamic content to an otherwise static page. Keep in mind though that JS code is client-side, so you are still limited in that typical server-side functionality is not available in this context.

Git Actions

Thanks to the scenario I detailed in the Jekyll Liquid section, I was introduced to the world of Git Actions. Essentially, I needed a way to force an update / regeneration of my site such that one of my staticly generated Liquid tags would update at some minimum frequency (in this case, at least daily). After some Googling, I came across this action which allowed me to do just that! Essentially, it forces a blank build using a user-defined schedule as the trigger.

# File: .github/workflows/refresh.yml
name: Refresh

on:
  schedule:
    - cron:  '0 3 * * *' # Runs every day at 3am

jobs:
  refresh:
    runs-on: ubuntu-latest
    steps:
      - name: Trigger GitHub pages rebuild
        run: |
          curl --fail --request POST \
            --url https://api.github.com/repos/${{ github.repository }}/pages/builds \
            --header "Authorization: Bearer $USER_TOKEN"
        env:
          # You must create a personal token with repo access as GitHub does
          # not yet support server-to-server page builds.
          USER_TOKEN: ${{ secrets.USER_TOKEN }}

In order to get this Action going, follow these steps…

Log into your GitHub account and go to Settings (in the top right) –> Developer settings –> Personal access tokens.
Generate new token and give it full repo access scope (More on OAuth scopes). I set mine to never expire, but you can choose what works best for you.
Navigate to your GitHub Pages site repo, ***.github.io –> Settings –> Secrets –> Actions section. Here you can add a New repository secret where you give it a unique name and set the value to the personal access token generated earlier.
In the root of your local site repository, create a .github/workflows/ folder (if one doesn’t already exist).
Create a <name of your choice>.yml file where you will have the actual Action code (like what was provided above).
Commit this Action file and you should be able to see run details in your repo –> Actions section within GitHub.

Additional Considerations for GitHub Actions

When using the Liquid tag {{ site.time }} with a Git Action triggered build, understand that it will use the time of the server which is generating the HTML, in this case the GitHub servers themselves, which means the date will be in UTC (Conversion help).
Check out this reference for informaton on how to specify the time zone in the front matter of a page or within the Jekyll config file.
GitHub Actions are awesome and powerful, but their are limitations to be aware of. Notably, it is important to understand the billing considerations. Free tier accounts get 2,000 minutes/month while Pro tier accounts (priced at about $44/user/year) get 3,000.
For reference, the refresh action (provided above) was running (for me) at about 13 seconds per trigger. This means you could run that action over 9,000 times without exceeding the minute cap for a Free-tier account.
With the above said, also consider that the default pages-build-deployment Action used by GitHub Pages to actually generate and deploy your site upon commit will also consume those allocated minutes. Upon looking at my Actions pane, I am seeing about 1m run-times for each build-and-deploy action trigger.

What’s Next

I’ve only just started to scratch the surface of how I can further extend and dynamize my Jekyll-based site. In future updates to this guide (or in future posts), I plan to cover more advanced GitHub Action capabilities as well as how else to add server-side functionality (maybe through serverless!) to the site. Stay tuned!