31 |
> News
32 |
11-14-2023
33 | We've released a new version of dnsspider, Check out our tools/scanner section!
34 | By noptrix.
35 |
36 |
11-03-2022
37 | New version of sshprank released. Check out our tools/cracker section!
38 |
39 |
10-27-2021
40 | New version of httpgrep released. Check out our tools/cracker section!
41 |
42 |
04-18-2021
43 | New version of sshprank released. Check out our tools/cracker section!
44 |
45 |
04-17-2021
46 | New version of httpgrep released. Check out our tools/scanner section!
47 |
48 |
04-11-2021
49 | New version of httpgrep released. Check out our tools/scanner section!
50 |
51 |
01-19-2021
52 | New version of sshprank released. Check out our tools/cracker section!
53 |
54 |
01-01-2021
55 | Happy new year to all our visitors, friends and mates. 2020 is over and
56 | nullsecurity wishes you health, luck, creativity and new ideas in upcoming 2021.
57 | Stay tuned for some nice releases! By nullsecurity team.
58 |
59 |
04-12-2020
60 | We've released sshprank, an SSH mass-scanner, login cracker and banner grabber
61 | tool using the python-masscan module. Check out our tools/cracker section!
62 |
63 |
04-12-2020
64 | We've released a python tool which scans for HTTP servers and find given strings
65 | in URIs. Check out our tools/scanner section!
66 |
67 |
03-25-2020
68 | Today, we have released nullscan, a modular framework designed to chain and
69 | automate security tests. This is really a beast and it is highly recommended to
70 | learn and use it. :) Check out our tools/automation section!
71 |
72 |
03-23-2020
73 | A new release of our open source PE crypter Hyperion. Version 2.3.1
74 | fixes false positives in .NET detection. Check out our tools/binary section!
75 |
76 |
03-21-2020
77 | A new release of our open source PE crypter Hyperion. Version 2.3 rejects
78 | unsupported .NET executables, preserves GUI/Commandline PE flag, has a lower
79 | AV detection because static stuff was removed and 64 bit output file size was
80 | reduced by 4 kilo bytes. Check out our tools/binary section!
81 |
82 |
03-17-2020
83 | We've released a new version of lulzbuster, a very fast and smart web-dir/file
84 | enumeration tool written in C for the lulz. Check out our tools/scanner section!
85 | By noptrix.
86 |
87 |
03-06-2020
88 | We've released a new version of dnsspider, Check out our tools/scanner section!
89 | By noptrix.
90 |
91 |
03-01-2020
92 | We've released a new version of lulzbuster, a very fast and smart web-dir/file
93 | enumeration tool written in C for the lulz. Check out our tools/scanner section!
94 | By noptrix.
95 |
96 |
02-17-2020
97 | We've released a new version of lulzbuster, a very fast and smart web-dir/file
98 | enumeration tool written in C for the lulz. Check out our tools/scanner section!
99 | By noptrix.
100 |
101 |
01-31-2020
102 | We've released a new version of lulzbuster, a very fast and smart web-dir/file
103 | enumeration tool written in C for the lulz. Check out our tools/scanner section!
104 | By noptrix.
105 |
106 |
01-24-2020
107 | Today, we've released a new tool: lulzbuster. A very fast and smart web-dir/file
108 | enumeration tool written in C for the lulz. Check out our tools/scanner section!
109 | By noptrix.
110 |
111 |
01-01-2020
112 | Happy new year to all our visitors, friends and mates. 2019 is over and
113 | nullsecurity wishes you health, luck, creativity and new ideas in upcoming 2020.
114 | Stay tuned for some nice releases! By nullsecurity team.
115 |
116 |
12-12-2019
117 | Release 1.4 of our Fasm AES library: Removed macros to decrease size by 7kb.
118 | Check out our tools/cryptography section! By belial
119 |
120 |
11-12-2019
121 | A new release of our open source PE crypter Hyperion. Version 2.2 uses tinyAes
122 | instead of the aes.dll blob. Furthermore, FasmAES moved to version 1.3 due to
123 | bugs in older versions. Check out our tools/binary section!
124 |
125 |
11-11-2019
126 | Bugfix in our Fasm AES library. New Version 1.3. Check out our tools/cryptography section! By belial
127 |
128 |
10-07-2019
129 | A new release of our open source PE crypter Hyperion. Version 2.1 got some
130 | makefile cleanup. Check out our tools/binary section!
131 |
132 |
06-08-2019
133 | A new release of our open source PE crypter Hyperion. Finally, version 2.0 supports
134 | 64 bit binaries as well. C++ has been replaced by a more clean C implementation.
135 | More modular concept allows extension with custom payloads.
136 | Check out our tools/binary section!
137 |
138 |
04-11-2019
139 | Release 1.2 of our Fasm AES library: Added 64 bit support. Check out our tools/cryptography section! By belial
140 |
141 |
03-22-2019
142 | A new version of dnsspider (fast, async mulithreaded subdomain scanner) was released. Check out our tools/scanner section!
143 |
144 |
01-24-2019
145 | Bugfix in our Fasm AES library: DLL now runs on Windows 10. Check out our tools/cryptography section! By belial
146 |
147 |
01-18-2019
148 | We released a new tool: HashMaker - Evolutionary Algorithm to create hash algorithms. Check out our tools/cryptography section! By ZehMatt
149 |
150 |
01-01-2019
151 | Happy new year to all our visitors, friends and mates. 2018 is over and nullsecurity wishes you health, luck, creativity and new ideas in upcoming 2017. Stay tuned for some nice releases!
152 |
153 |
07-01-2018
154 | A new version of dnsspider (very fast, async mulithreaded subdomain scanner) is released. Check out our tools/scanner section!
155 |
156 |
02-10-2018
157 | A new version of dnsspider (very fast, async mulithreaded subdomain scanner) is released. Check out our tools/scanner section!
158 |
159 |
01-18-2018
160 | We updated our Arduino sketch genesis2amiga (adapter to connect sega gamepads to an amiga/c64). Now, it can emulate UP via second FIRE button. Check out our tools/misc section!
161 |
162 |
01-01-2018
163 | Happy new year to all our visitors, friends and mates. 2017 is over and nullsecurity wishes you health, luck, creativity and new ideas in 2018. Stay tuned for some nice releases!
164 |
165 |
12-19-2017
166 | We released shell script written with the purpose to automate jumps between boxes via ssh forgetting about IPs, Users, Ports and so on. Check out our tools/automation section!
167 |
168 |
05-10-2017
169 | We released an Arduino sketch to build a Sega Genesis to Amiga game port adapter. Check out our tools/misc section!
170 |
171 |
03-26-2017
172 | We released a new guide about how to buy a commodore amiga in the year 2017 and avoid several pitfalls. Check out our papers section!
173 |
174 |
01-01-2017
175 | Happy new year to all our visitors, friends and mates. 2016 is over and nullsecurity wishes you health, luck, creativity and new ideas in upcoming 2017. Stay tuned for some nice releases!
176 |
177 |
10-08-2016
178 | Today, we have released a new version of http-enum (an automated http enumeration tool). Check out our tools/scanner section!
179 |
180 |
08-12-2016
181 | Today, we have released a FreePBX remote root 0day. Found and exploited by pgt. Check out our tools/exploit section!
182 |
183 |
05-31-2016
184 | We have released a new version of dnsspider (a fast multithreaded subdomain bruterforcer). Check out our tools/scanner section!
185 |
186 |
05-10-2016
187 | We released two Atari 2600 homebrews. First one supports lightguns. Downloads available in tools/misc section, additional information in belials
blog.
188 |
189 |
01-01-2016
190 | Happy new year to all our visitors, friends and mates. 2015 is over and nullsecurity wishes you health, luck, creativity and new ideas in upcoming 2016. Stay tuned for some nice releases!
191 |
192 |
11-16-2015
193 | Today, we released a paper which covers homebrew cartridge and software development for the Nintendo Game Boy Classic. Check out our papers section!
194 |
195 |
11-01-2015
196 | Happy birthday to nullsecurity! Greets to all visitors, friends and mates. Stay tuned for nice releases!
197 |
198 |
09-25-2015
199 | A new version of our fast, multithreaded subdomain bruteforcer, dnsspider, has been released today. Check out our tools/scanner section!
200 |
201 |
06-23-2015
202 | A new version of smalisca (a static code analysis tool for Smali files) has been released today by Cyneox. Check out our tools/scanner section!
203 |
204 |
05-18-2015
205 | Belial finished his PhD thesis about computer science and is now a Doctor of Philosophy. Congratulations :)
206 |
207 |
04-07-2015
208 | Today we released a new tool: smalisca - Static Code Analysis tool for Smali files. Check out our tools/scanner section!
209 |
210 |
03-16-2015
211 | A new version of conscan (a blackbox vulnerability scanner for the concrete5 CMS) has been released today. Check out our tools/scanner section!
212 |
213 |
03-14-2015
214 | A new version of our fast, multithreaded subdomain bruteforcer, dnsspider, has been released today. Check out our tools/scanner section!
215 |
216 |
02-18-2015
217 | A new version of our PE runtime encrypter, hyperion, has been released today. Windows 8 and Windows 8.1 support has been added. Check out our tools/binary section!
218 |
219 |
02-01-2015
220 | Today, we have created a nullsecurity organization on
github. You can find all of our public releases there categorized in three main repositories: tools, advisories and papers.
221 |
222 |
01-01-2015
223 | Happy new year to all our visitors, friends and mates. 2014 is over and
224 | nullsecurity wishes you health, luck, creativity and new ideas in upcoming 2015.
225 | Stay tuned for some nice releases!
226 |
227 |
12-22-2014
228 | A new version of imhooktmpl.py (immunity API function hooking template) has been released by nrz. Check out our tools/reversing section!
229 |
230 |
11-05-2014
231 | Happy birthday to nullsecurity! Greets to all visitors, friends and mates. Stay
232 | tuned for nice releases!
233 |
234 |
10-30-2014
235 | A paper about assembling and controling LED matrix has been released today.
236 | Enjoy reading it. Check out our papers section.
237 |
238 |
07-10-2014
239 | A new version of conscan has been released! Check out our tools/scanner section!
240 |
241 |
05-13-2014
242 | We released a new tool: netgrafio. Aimed at visualizing (network) data. It
243 | provides more or less tools and libraries to visualize your data regardless of
244 | its type. Thanks to Cyneox. Check out our tools/misc section!
245 |
246 |
05-09-2014
247 | A new release of our open source PE crypter Hyperion. Code base has been cleaned
248 | up to decrease size and increase maintainability. Furthermore, a new command line
249 | allows enabling/disabling of logging and verbose informations. Key space can be
250 | reduced too which speeds up the bruteforcing process for larger input files.
251 | Next stop will be AV evasion to reduce detection rate. So stay tuned for new
252 | releases. Check out our tools/binary section!
253 |
254 |
04-10-2014
255 | We just came up with a new version of dnsspider. Our very fast multithreaded dns
256 | subdomain scanner. Check out our tools/scanner section!
257 |
258 |
04-10-2014
259 | Today we released sn00p, our automation framework for security tests and tools.
260 | It is recommended to read the man page before using it. We also released
261 | conscan, a blackbox vulnerability scanner for the concrete5 CMS. Check out our
262 | tools/automation and tools/scanner sections!
263 |
264 |
03-31-2014
265 | We just released immhooktmpl.py, a nice template for function hooking while
266 | reversing with immunity debugger. Check out our tools/reversing section!
267 |
268 |
02-27-2014
269 | A new version of against.py (mass scanning and brute-forcing script for ssh) has
270 | been released today. Check out our tools/cracker section!
271 |
272 |
01-04-2014
273 | A simple trainer, which patches "The Legend of Zelda" for Famicom/NES has been
274 | released today. Check out our tools/misc section!
275 |
276 |
01-01-2014
277 | Happy new year to all our visitors, friends and mates. 2013 is over and
278 | nullsecurity wishes you health, luck, creativity and new ideas in upcoming 2014.
279 | Stay tuned for some nice releases!
280 |
281 |
12-28-2013
282 | Nullsecurity is an official supporter and mirror of
283 |
BlackArch Linux, which is a
284 | lightweight expansion to Arch Linux for penetration testers with over 600 tools!
285 |
286 |
11-06-2013
287 | We just released an advisory about an error based SQL injection in microweber.
288 | Check out our advisories section!
289 |
290 |
11-02-2013
291 | We just released new version of ap-unlock, our version of remote code execution
292 | exploit for apache+php through php-cgi. Check out our tools/exploit section!
293 |
294 |
11-01-2013
295 | Happy birthday to nullsecurity! Nullsecurity.net turns 2, w00t w00t!
296 |
297 |
10-30-2013
298 | Check out our tools/exploit section! We just released new version of ap-unlock.py,
299 | our version of remote code execution exploit for apache+php through php-cgi
300 |
301 |
10-29-2013
302 | We just released ap-unlock.py, our version of remote code execution exploit for
303 | apache+php through php-cgi. Check out our tools/exploit section!
304 |
305 |
10-17-2013
306 | A new tool, mbr_store has been released by atzeton today. This tool stores up to
307 | 426 bytes in the MBR's bootloader code section of unused devices such as usb
308 | drivers, hrd disks (which are not supposed to boot) and other media... Check
309 | out our advisories section!
310 |
311 |
10-17-2013
312 | A new version of hwk has been released by atzeton today. hwk is an easy-to-use
313 | wireless authentication and deauthentication tool. Furthermore, it also supports
314 | probe response fuzzing, beacon injection flooding, antenna alignment and various
315 | injection testing modes. Check out our tools/wireless section!
316 |
317 |
10-09-2013
318 | A new version of u3-pwn has been released by Zy0d0x today. U3-pwn is a tool
319 | designed to automate injecting executables to Sandisk smart usb devices with
320 | default U3 software install. Check out our tools/backdoor section!
321 |
322 |
09-02-2013
323 | A little helper script, ssl-crack.sh, has been added in our cracker section. It
324 | reveals the password for the RSA encrypted private SSL/SSH key.
325 |
326 |
08-29-2013
327 | We have added a new category called 'automation' under our tools section.
328 | There, you will find our first release, wnmap. It is a modular automation and wrapper
329 | script written for nmap. Check it out! Also, stay tuned for some nice releases soon.
330 |
331 |
07-07-2013
332 | A new version of ripdc.sh has been released in our scanner section. It is a
333 | reverse ip domain checker and uses yougetsignal.com to map the given target.
334 | Very useful. Enjoy!
335 |
06-26-2013
336 | Hello b0yz and g1rls! We just released against.py, which is a mass scanning and
337 | brute-forcing script for ssh daemons. See cracker section. Enjoy!
338 |
06-05-2013
339 | Yes, we are alive! Expect some nice releases soon! Also, a lame script for
340 | reverse ip address domain checker has been published. See scanner section.
341 |
342 |
12-31-2012
343 | Happy new year to all our visitors, friends and mates. 2012 is over and
344 | nullsecurity wishes you health, luck, creativity and new ideas in upcoming 2013.
345 |
346 |
12-24-2012
347 | Happy x-mas to all our visitors, friends and mates. Enjoy your holidays!
348 |
349 |
12-13-2012
350 | We released a new paper (nullsec-net-crypter.pdf), which discusses ideas of
351 | advanced runtime encryption of .NET executables. See papers section and enjoy
352 | reading it! Thank you, belial!
353 |
11-01-2012
354 | Hooray, nullsecurity gets one year older. Happy birthday to nullsecurity!
355 |
356 |
10-06-2012
357 | Today, a 64bit Mac OS-X kernel rootkit has been released by prdelka. It
358 | supports: multiple kernel versions, give root privileges, hide files / folders,
359 | hide process, hide user from 'who'/'w', hide network port, sysctl interface for
360 | userland control, execute a binary with root privileges via magic ICMP ping.
361 | See backdoor section.
362 |
08-18-2012
363 | Today, we released a new version of dnsspider. A very fast multithreaded
364 | subdomain bruteforcer. See scanner section.
365 |
07-22-2012
366 | We just finalized our website and updated news section, which will be used to
367 | present you fully news about new releases or even blog posts in a better way.
368 | Stay tuned!
369 |
07-04-2012
370 | U3-Pwn has been released. A tool designed to automate injecting executables to
371 | Sandisk smart usb devices.
372 |
06-22-2012
373 | Presentation video for PE Crypter has been added.
374 |
05-25-2012
375 | Presentation and source code of Hyperion has been released today.
376 |
05-09-2012
377 | A paper about runtime PE files encryption: nullsec-pe-crypter.pdf has been
378 | released.
379 |
04-29-2012
380 | We released a log cleaner for Linux: ropeadope.py. Enjoy!
381 |
04-15-2012
382 | A nice paper about Address Space Layout Randomization and bypassing of ASLR
383 | has been published today.
384 |
03-25-2012
385 | Today we released a fuzzing tool: tftp-fuzz.py. It is specialized for TFTP
386 | servers.
387 |
03-04-2012
388 | Released an advisory and exploit for EasyFTP server. Check out our advisory
389 | section.
390 |
02-13-2012
391 | A really nice release by belial: fasmaes - AES Implementation for Flat Assembler
392 | (FASM). Enjoy!
393 |
02-08-2012
394 | Today we released a nice tool: trixd00r, an advanced and invisible TCP/IP based
395 | userland backdoor. Also, we released a demonstration video for trixd00r.
396 |
397 |
01-28-2012
398 | We just released another fuzzing tool: ftp-fuzz.py. It is specialized for FTP servers.
399 |
01-17-2012
400 | Released an universal fuzzing tool: uniofuzz.py. Also, there is a demonstration video for uniofuzz.py, which you
401 | can find in our video section.
402 |
01-09-2012
403 | Added an advisory for WorldMail 3.0 IMAPD SEH overflow. A working exploit is included.
404 |
01-10-2012
405 | As you can see, our new design went online. Stay tuned for some nice releases!
406 |
01-01-2012
407 | Happy new year to all!
408 |
12-24-2011
409 | Merry Christmas to all!
410 |
11-16-2011
411 | Added new video "Kioptrix level 3 solution".
412 |
11-15-2011
413 | Added hwk_0.3.2.tar.gz - a wireless penetration/flooding application.
414 |
11-14-2011
415 | Added another video "Forensik in virtuellen Welten" (german). Enjoy!
416 |
11-14-2011
417 | Added a new video "Hijacking Execution Flows". Enjoy!
418 |
11-06-2011
419 | Created videos section and added 15 videos.
420 |
11-05-2011
421 | Added an X11 keylogger for UNIX.
422 |
11-03-2011
423 | Added dnsgoblin.c - a DNS server gathering tool.
424 |
11-03-2011
425 | Added sshtrix-0.0.2 - a very fast multithreaded SSH login cracker for SSHv1 and SSHv2.
426 |
11-03-2011
427 | Added 3 shellcodes for Linux.
428 |
11-03-2011
429 | Added one advisory for Google Chrome.
430 |
11-03-2011
431 | Added another Opera advisory.
432 |
11-03-2011
433 | Added dnsdrdos.c - proof of concept code for DNS distributed reflected DoS.
434 |
11-03-2011
435 | Added dnsspider-0.3.py - a very fast subdomain bruteforcer.
436 |
11-03-2011
437 | Added one advisory for Opera.
438 |
11-03-2011
439 | Added one advisory for AudioCrusher.
440 |
11-03-2011
441 | Added one advisory for Adium.
442 |
11-03-2011
443 | Added two advisories for ICQ.
444 |
11-03-2011
445 | Added two advisories for Skype.
446 |
11-01-2011
447 | Our website went online.
448 |
449 |
452 |