This is the second part of my investigation into critical infrastructure around the world. This article should have been
In this episode, we will take a look on disinformation campaign in polish social media platform - wykop.pl. It's very si
In this episode, we will take a look on obfuscated javascript code which is actively used in CP campaign, from at least
This is the first part of Offensive OSINT tutorials which covers preparation (technical and mindset), and presents how t
Script parses Pastebin email:password dumps and collects information about each email address. It supports Google, Truma
Kupa3 allows you to draw connections between scripts on specific website. It search for javascript code or source attrib
I wrote a script, which takes domain, IP or email address as input and search it in various services like: Whois, Revers
As a proof of concept, I wrote script which abuses social media in order to send commands to infected machines, i.e bots
Looking for malware or command and control servers? I wrote a script named Daily dose of malware, which gather informati
Originally published on October 29th, 2017TL;DR With help of AWS3dump and my poor coding skills I found database backups
I wrote a script in Go, which queries Shodan database based on given list of organizations. Next, I retrieve all bug bou
When I’m looking for new target on Hackerone I’m always paying attention to numbers of resolved reports and wonder if hi
I have made scripts and tools related to OSINT, OPSEC and bug bounting for myself and thought it is not worth sharing, u