Johnny Watts's Projects
A critical vulnerability in XAMPP's default Apache service settings on Windows systems jeopardizes integrity, confidentiality, and availability. Discovered by Security Researcher Kaotickj, this flaw poses severe security risks. The report offers in-depth analysis, PoC, video demo, and mitigation steps.
Check for CVE-2023-32629 "GameOver(lay)" vulnerability
This guide empowers non-tech Windows users to detect persistence threats, highlighting signs like cmd windows at startup, registry checks, and spotting malicious commands in PowerShell, cmd, rundll32, and wmic.
This tool helps to simplify the dig utility. One quick command automates DNS enumeration. For remote enumeration.
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Full ESX ROleplay Server Template for FiveM server. Up to date with the latest GTA Online patch level.
KPots is a simple honeypots system to capture and log traffic to specified ports. Requires Netcat for monitoring and IPTables for banning. Requires dig for filtering out your own ip address. (Note: I will be adding alternatives in a later realease, but for now, just install dig.)
Optimized for use in Kali Linux, KSploit is a user friendly menu driven control panel in which to drive many metasploit tasks. KSploit simplifies repetitive metasploit functions such as generating payloads, deploying listeners, and injecting msf payloads into Windows exectuables.
The K S.W.A.T. Security Suite not only blocks millions of known bad actors by IP Blacklisting, but also provides protection for PHP driven websites from some of the most common types of threats and attacks on the internet.
Config files for my GitHub profile.
Upated signatures for K S.W.A.T. PHP Security. Includes updated cloud, country, bad bots, email spammers, and harvesters.
PHP website framework. Requires PHP 7.4+ Some functions, such as the RSS Feed and Sitemap generators, require system specific configuration. GNU/GPL3 License. Sample code and content are provided for front end functionality. The current state is a mixture of procedural and object oriented programming that I have (slowly) been converting to OOP. It works well as-is, but will require that you inspect and understand the code to customize it for your needs.
KMap is a user friendly tool for running various types of nmap scans allowing user to set scan parameters by making simple choices. The python version provides a graphical user interface solution for running nmap scans in Linux.
Labyrinth is a turn based strategy RPG.
🔮 Are you curious about your system's inner secrets? Want to know everything about your Linux environment? Look no further! We present: LinFo, the magical script that unveils all the hidden details about your system! With a flick of your command wand, LinFo unveils the magic of information, banishing uncertainty. By the enigmatic KaotickJ 👽
:robot: Self-hosted, community-driven, local OpenAI-compatible API. Drop-in replacement for OpenAI running LLMs on consumer-grade hardware. No GPU required. LocalAI is a RESTful API to run ggml compatible models: llama.cpp, alpaca.cpp, gpt4all.cpp, rwkv.cpp, whisper.cpp, vicuna, koala, gpt4all-j, cerebras and many others!
Metasploit Framework
Password Genie is a secure and user-friendly password management application built with Python and Tkinter. It allows users to generate strong passwords, hash and save passwords for various platforms, and retrieve them securely.
Payload Forge is an advanced payload generation tool developed for cybersecurity professionals, red teamers, and ethical hackers. It allows users to craft and customize payloads for security testing and penetration testing purposes.
A Python program to detect malicious registry persistence entries in the WIndows Registry.
Explore the world of refund and remote access scams in this comprehensive bulletin authored by 30-year cybersecurity veteran, Kaotickj. Learn about their history, tactics, prevention, and reporting strategies. Gain insights to protect yourself and others in the digital realm.
This Python script is a simple yet effective port scanner that allows you to scan a target host for open ports. It supports multi-threading to improve the scanning speed and provides colorful and informative output.
This comprehensive guide aims to provide a standardized approach to ethical hacking and promote best practices within our red team. By following this guide, we can ensure a uniform and consistent methodology across the entire team.
This Python resistor calculator GUI supports 4 and 5 band color codes. Users select colors for resistor bands, triggering the calculate_resistance() function to determine resistance using color_codes. Tolerance is calculated based on the chosen notation.
Generate captivating and immersive names for your RPG characters effortlessly. Unleash your imagination and enhance your storytelling with unique and fitting names.
This tool is intended to be used for on target enumeration to gather and exfiltrate information and then to upload tools such as netcat or msvenom payload for further access to the target.
This is a simple implementation of a threat detection system that uses geolocation and abuse information to determine whether an IP address poses a potential threat. If a threat is detected, an audible alert is played and the information is logged.
This script detects typosquatting domains by generating typo variations of a given domain name, checking if they return a valid HTTP response, and running a WHOIS lookup to determine if the domain is registered, then generates an HTML report with the findings.