Projects

XSSBuster

XSSB is a proactive DOM sanitizer defending against client-side injection attacks.

AnonTab

let AnonTab = `${NoScript + HTTPSEverywhere + PrivateBrowsing + proxy}`;

AWS Extender

AWS Extender is a Burp Suite extension to identify and test S3 buckets as well as Google Storage buckets and Azure Storage containers for common misconfiguration issues using the boto/boto3 SDK library.

AWS Extender CLI

AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common misconfiguration issues using the boto/boto3 SDK library.

z00mtrack

A proof-of-concept project for user tracking via the browser zoom levels.

Regaxor

Regaxor (RegExp Haxxor) is a regular expression fuzzer, written in ECMAScript 6.

IDORit (under development)

IDORit is a highly-configurable, one-of-its-kind automated scanner for insecure direct object reference vulnerabilities (IDORV).

Papers

Mass Surveillance and Internet Censorship Under Scrutiny

First place winner of the Fanack Academy cybersecurity and online citizenship essay contest.