1-day current streakΒ·21-day longest streak
Hi there, friend! π π I'm a Cyber Security guy living in FunΓ€sdalen, Sweden π Here at GitHub, you will find my contributions to various open-source projects and some quickβ¦
Hi there, friend! π
π I'm a Cyber Security guy living in FunΓ€sdalen, Sweden π
Here at GitHub, you will find my contributions to various open-source projects and some quick ugly hacks.
[](https://www.linkedin.com/in/jonaslejon/)

-
malicious-pdf
π Generate malicious PDF test files for testing phone-home callbacks, SSRF, XSS, NTLM credential theft, and data exfiltration in PDF viewers, converters, and web applications. Can be used with Burp Collaborator or Interact.sh
Python β 4.1k 1mo agoExplain β -
tor-fingerprint β£
Tor Browser and Tails version fingerprint PoC
JavaScript β 139 7y agoExplain β -
lolcrawler β£
Headless web crawler for bugbounty and penetration-testing/redteaming
Python β 40 2y agoExplain β -
Pentest-Tools β
No description.
β 12 4y agoExplain β -
awesome-pentest β
A collection of awesome penetration testing resources, tools and other shiny things
β 9 4y agoExplain β -
ct-monitor
Certificate Transparency Log Monitor
Python β 8 4mo agoExplain β -
dirs3arch β
HTTP(S) directory/file brute forcer
Python β 6 11y agoExplain β -
powershell-backdoor-generator β
Reverse backdoor written in PowerShell and obfuscated with Python. It generates payloads for popular hacking devices like Flipper Zero and Hak5 USB Rubber Ducky, and changes its signature after every build for evasion.
β 5 3y agoExplain β -
api-hacker
Reads and Swagger/OpenAPI JSON file and routes the requests via Burp Suite
Python β 5 3y agoExplain β -
ad-autopwn
AD AutoPwn v4.10.0 β automated AD attack chain, zero-auth to Domain Admin. Discover/Kerberoast/AS-REP/AD CS ESC1-16/Shadow Creds/RBCD+KCD/Ghost-SPN/TGS-rewrite/Dollar-Ticket/WPAD/WSUS/PXE/SCCM/BloodHound auto-action/Loot/DCSync/DPAPI + Synacktiv 2026 reflection (CVE-2025-58726/2026-24294/2026-26128). Authorized pentesting only.
Python β 4 2mo agoExplain β -
SecLists β
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
PHP β 3 8y agoExplain β -
ssh-eol-checker
Nmap SSH Banner EOL Checker - Identifies Ubuntu and Debian versions from SSH banners and checks their EOL status
Python β 3 9mo agoExplain β -
PyShell β
Multiplatform Python WebShell
Python β 3 4y agoExplain β -
apt10
APT / Cloud Hopper Yara rules
β 3 9y agoExplain β -
awesome-wordpress β
A curated list of amazingly awesome WordPress resources, themes, plugins and shiny things. Inspired by awesome-php.
β 2 6y agoExplain β -
pizero-usb-hid-keyboard β
Fake a raspberry pi zero w to look like a keyboard to a Windows 10 PC
β 2 5y agoExplain β -
homebrew-cask β
π» A CLI workflow for the administration of macOS applications distributed as binaries
Ruby β 2 2y agoExplain β -
jonaslejon
No description.
β 2 1y agoExplain β -
EmailChecker β
Disposable email detection library for PHP
β 2 3y agoExplain β -
FruityWifi β
FruityWiFi is a wireless network auditing tool. The application can be installed in any Debian based system adding the extra packages. Tested in Debian, Kali Linux, Kali Linux ARM (Raspberry Pi), Raspbian (Raspberry Pi), Pwnpi (Raspberry Pi), Bugtraq, NetHunter.
PHP β 1 10y agoExplain β -
Windows-Exploit-Suggester β
This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.
Python β 1 10y agoExplain β -
Pentesting-Guide β
No description.
β 1 8y agoExplain β -
joy β
A package for capturing and analyzing network flow data and intraflow data, for network research, forensics, and security monitoring.
C β 1 8y agoExplain β -
unicorn β
Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.
β 1 6y agoExplain β -
wafw00f β
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
Python β 1 6y agoExplain β -
Network_Forensic_Processing_Analysis_NFPA β
NFPA helps optimize investigations by reducing errors that are typically involved in manually processing and analyzing network-based evidence through various tools and command-line options.
β 1 6y agoExplain β -
docker.github.io β
Source repo for Docker's Documentation
β 1 5y agoExplain β -
moloch β
Moloch is an open source, large scale, full packet capturing, indexing, and database system.
β 1 3y agoExplain β -
openvpn-fingerprint
OpenVPN Fingerprinting Tool
Python β 1 1y agoExplain β -
ForensicsTools β
A list of free and open forensics analysis tools and other resources
β 1 8d agoExplain β -
MISP β
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
β 1 3mo agoExplain β -
burp_log_parser
Python script to parse Burp Suite log files
Python β 1 1y agoExplain β -
lockc β
Making containers more secure with eBPF and Linux Security Modules (LSM)
Rust β 1 3y agoExplain β -
maltrail β
Malicious traffic detection system
Python β 1 3y agoExplain β -
subfinder β
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
β 1 6y agoExplain β -
pcap-mitm-fuzz0r β
Fuzz servers and clients using pcaps or mitm based approaches
β 1 6y agoExplain β -
Kalkun β
Open Source Web based SMS Management
PHP β 1 8y agoExplain β -
keepass-dump
CLI to dump a KeePass database
Python β 1 11y agoExplain β -
eth-phishing-detect β
Utility for detecting phishing domains targeting Ethereum users
JavaScript β 0 3y agoExplain β -
InfoSec-Black-Friday β
All the deals for InfoSec related software/tools this Black Friday
β 0 3y agoExplain β -
multi-juicer β
Run Capture the Flags and Security Trainings with OWASP Juice Shop
β 0 4y agoExplain β -
kolla-ansible β
Ansible deployment of the Kolla containers. Mirror of code maintained at opendev.org.
β 0 4y agoExplain β -
kiterunner β
Contextual Content Discovery Tool
Go β 0 4y agoExplain β -
vccw.cc β
No description.
β 0 5y agoExplain β -
fuzzotron β
A TCP/UDP based network daemon fuzzer
β 0 5y agoExplain β -
RsaCtfTool β
RSA tool for ctf - retreive private key from weak public key and/or uncipher data (feel free to ask questions : @G4N4P4T1)
Python β 0 7y agoExplain β -
unfetter β
The main project for the Unfetter-Discover application. This is the project that will hold the configuration files, the docker-compose files, issue tracking, and documentation
Shell β 0 8y agoExplain β -
signature-base β
Signature base for my scanner tools
Python β 0 9y agoExplain β -
helsingborg.se β
The offical repository for helsingborg.se
PHP β 0 10y agoExplain β -
faas β
Factoring as a Service
C β 0 10y agoExplain β -
fabric β
Simple, Pythonic remote execution and deployment.
Python β 0 12y agoExplain β -
Amazon-SES-Mailer-PHP β
Drop-in replacement of PHPMailer which sends email via Amazon SES
PHP β 0 14y agoExplain β
No repos match these filters.