Projects

SophSec Projects

libomg - A Proof-of-Concept (PoC) project demonstrating the potential (and likely active) use of social networks for covert communication, specifically for botnets.

Talks:

• ToorCon Seattle (Beta) [ODP].

Wordlist - A Ruby library for generating and working with wordlists. Supports building wordlists from arbitrary text, or custom sources such as web-site content. Wordlist also supports word mutations, for enumerating over every possible variation of words in a list.

ffi-udis86 - Ruby FFI bindings to the udis86 disassembler.

Affiliated Projects

Ronin - Ronin is a Ruby platform for exploit development and security research. Ronin allows for the rapid development and distribution of code, exploits or payloads over many common Source-Code-Management (SCM) systems.

GScraper - GScraper is a Ruby web-scraping interface to various Google Services. Currently supports the Web Search service.

ScanDB (defunct) - ScanDB is a library and utility for importing and analyzing information generated by various network scanning utilities. Currently supports the importing of Nmap XML scan files.

Raingrams - Raingrams is a flexible and general-purpose ngrams library written in Ruby. Raingrams supports ngram sizes greater than 1, text/non-text grams, multiple parsing styles and open/closed vocabulary models.

Seeds of Contempt - Contempt is a framework for designing visual representations of data obtained in a penetration test. Contempt is implemented using the Eclipse Rich Client Platform. Plugins to the framework provide tabs on the interface. Tabs can provide things such as visualizations, database interaction, or network scanners.

A seed is an extensible framework for resource management (cpu, gpu, database, network device, etc). It runs as a daemon on a system, and accepts commands from the contempt UI. Seeds can then act as "agents", able to direct network flow, and distribute such things as cpu and database resources over large networks.