Giter Club home page Giter Club logo

Hello, friend! I am an Ethical Hacker, CTF Player and IT intern, also working with Bug Bounty and playing WoW in my spare time. I am a big fan of malware and exploit development, and I also have a lot of fun creating hacking tools.

Tech Stack:

LinkedIn TryHackMe Instagram

python logo ruby logo rust logo c logo bash logo powershell logo

Hope you like my projects (if you do, please consider giving them a star ⭐). I'm always around developing cybersecurity tools and exploits 👨‍💻

⚡ Other Projects:

sar2HTML Exploit -> Exploit the Sar2HTML RCE vulnerability and also perform a Shell Upload on the target.

Windows Malware -> Injection of malicious code into legitimate Windows processes for evasion and simple malware to gain unauthorized access

Show Me The Ports -> Scanning and enumeration of open ports on target machine for pentest recognition step.

CVE-2014-6271 -> Shellshock cgi-bin Exploitation. Remote Command Execution Vulnerability

LFI Hunter -> Automated tool to bypass filtering systems and exploit Local File Inclusion
  • Check it out -> offsec.tools <- The place I go to find good bug bounty tools.
  • A bit of motivation: -> Great Stuff <-
  • Check out my other account, focused on development: JMoreira2Dev

João Pedro Moreira's Projects

cronjob-exploit icon cronjob-exploit

Privilege escalation method using writable files in /etc/crontab on linux systems. Made in Shell Script for automation during the hack (and with a special attention to CTFs)

cve-2014-6271 icon cve-2014-6271

Exploitation of "Shellshock" Vulnerability. Remote code execution in Apache with mod_cgi

forcecannon icon forcecannon

"Force Cannon" is a brute force tool made in ruby, that performs attacks on login forms using the POST method without robust filters or protections.

hazard icon hazard

Hazard is a dictionary brute-force attack, constructed using the Rust language for the most sensitive network protocols and services, including FTP, SSH, PostgreSQL, MySQL, and Samba (SMB networking protocol). Its design prioritizes ease of use and a clean interface, making it suitable for use in Capture the Flag (CTF) or Pentest Services.

keylogger-evil_server icon keylogger-evil_server

Advanced keylogger and covert channel - for receiving victim's keystrokes and clipboard data. You can send the results to the attacker's Email when the execution is finished, as well as write the digits from the target machine locally to a file

lfi-hunter icon lfi-hunter

Automated tool to bypass filtering systems and exploit Local File Inclusion, created for Bug Bounty tests and better optimization during the hack (and with special attention to CTFs)

mr_hash icon mr_hash

This is a tool designed for decryption, hash cracking and various other utilities to optimize your hacking or privilege escalation. It contains the most common types of ciphers/hashes used in pentest situations and CTF games. Good hacking!

pwn_wordpress icon pwn_wordpress

Hacking WordPress Plugins - Authenticated Shell Upload, by compromising admin console and upload a malicious plugin with PHP (reverse shell code)

sar2html_exploit icon sar2html_exploit

Exploit the Sar2HTML RCE vulnerability and also perform a Shell Upload on the target

showmetheports icon showmetheports

Simple Rust Port Scanner and Banner Grabber. Made for Investigation, scanning and enumeration of open ports on target machine for pentest recognition step

wind0wsm4lware_ icon wind0wsm4lware_

Works in any version from Windows 7 to 11. Injection of malicious code into legitimate Windows processes for evasion and simple malware to gain unauthorized access, using the Windows API. Serves as proof of concept or intrusion detection exercises.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.