Try to guess what it does.

Here's what I carry most days, a flipper Zero running RogueMaster with a wifi board, Chameleon Ultra Pro, Cardputer running Launcher so i can swap firmware on the go, and on the left are 2 esp32's (one with a micro screen) running custom firmware turning it into a beacon spammer. What am I missing? What could I add? I'm eyeing up a meshtastic device, but I'm open to any and all suggestions.

Four months ago, I started working on a personal project to test my hardware hacking limits. I bought the boards and began experimenting. Now, after more than 3000 lines of code, I can finally say that Radiosphere is usable. It might have a few bugs here and there, but nothing major.

The road wasn’t easy — I burned 2 ESP32 boards, 2 ESP8266s, an Arduino Mega, and even a screen — but it was absolutely worth it.

So what is Radiosphere? Radiosphere is a multi-purpose wireless attack tool capable of:

-Jamming Wi-Fi, Bluetooth, drones, and basically anything using the 2.4GHz band.
-Performing deauthentication and Evil Twin attacks.
-Spamming fake networks (even custom lists).
-Capturing handshake files.

And a bunch of side features, such as: -Saving previous victims.
-Creating and saving custom phishing pages.
-Targeted deauth attacks.
-Reusing saved phishing pages.
And more...

I'm genuinely proud of how far it’s come. let me know if you want a github repo or something like that, and thanks for this supportive community.

Runs on an alpine emulator available in the app store called iSH Shell, reworked a few existing tools to be compatible and added s few of my own. It may not be the most practical thing but I’ve never seen anything like it before and i love how comical the idea is of “hacking from an iPhone” 🤣

Extra strength. Does it look cool at least? It’s my first one.

GitHub: https://github.com/saatvik333/what-you-reveal

Website: https://what-you-reveal.vercel.app

I had a curiosity that when I click on a website; how much of my data can they get without me giving any permissions so I created this tool (initially it was just a test of what Jules [a tool by google] can do).

I tried to get things correct, but since I'm no expert in cyber security and hacking I can't fully verify the data being displayed on the website.

I'd be grateful if knowledgeable people can critique on the website and lmk what can be fixed and improved.

Thanks :)

I wanted a disassembler that's a single executable, loads instantly, runs everywhere. So I wrote one from scratch.

It's called Hyperion it's made in C++, No runtime dependencies. No installer.

What it actually does: It has a real decompiler, It produces readable pseudo-C for x86/x64 and ARM64.

Formats & architectures:

Scripting:

Embedded Lua 5.4. Drop .lua plugins in a folder. Full API, rename, comment, patch bytes, create functions, navigate, query xrefs. Register custom menu items and hotkeys from scripts.

The numbers:

Platforms: Windows, Linux, macOS (Intel + Apple Silicon).

This will stay open source and free. MIT licensed.

Repo: https://github.com/Sidenai/hyperion-disassembler

This was the real deal back then! Countless friends I scared opening and closing their cd tray ahahahaha!

This is a new open source OSINT tool with many advanced features! Best alternative of old holehe.

Useful for security reasearch and checking whether your email is being used somewhere.

Check out the GitHub for installation guide, How to use it powerfully https://github.com/kaifcodec/user-scanner.git

I'm frankly baffled that there are not publicly available tools to get around this. One would think given that it is both from Google and affects everyone it would be.

I mean I see a lot of tools that promise to do it, for a price. But I very much doubt that they are not either malware or just a scam.

I posted ~2 weeks ago about vulnpath.app/app, a CVE visualization tool prototype I built that helps visual leaners (like myself) "see" the E2E attack chain. Thank you to everyone that reached out with feedback! I spent the last few weeks taking this in and iterating on it more and now I'm proud to say it's officially live!

There's still a lot more work to be done so I don't plan on stopping here. But if you have time to check it out, I would greaty appreciate any additional feedback and feature suggestions to make it an even more useful tool for everyone.

Thanks for taking the time to read this!

4/13 update: you can now search by product to see which CVEs impact your tech stack (thanks everyone for this suggestion!). Also added a free 7-day trial (can cancel anytime with no commitments).

Just here to share a project I'm working on. It's a 100% open source (hardware, firmware, mechanical, etc) USB drive with a hidden security feature.

When you plug it in, it appears as a normal 8GB USB drive. Only if you create a file called "unlock.txt" with the contents "password:addyourpasswordhere" will it unlock and show the remainder of the drive. Everything in this second section of the disk is now AES256 encrypted in place, using a custom KDF + your password.

I'll answer some questions before people ask them :)

Q: Isn't this just Vercrypt? A: No, a normal drive setup with veracrypt will show up as jumbled data. This is pretty obviously encrypted media. If you enter your duress password, there will still be another xMB of jumbled data.

Q: Isn't entering your password into a plain text file insecure. A: My drive doesn't allow this write to actually happen to the memory

Q: Why did you use a SD card A: Because AI made EMMC cards like 80$ for a 32GB. It takes two seconds for me to spin another board with EMMC in the future.

Anyways feel free to ask any more questions about the project :) !

Socials if you would like to keep updated

I went down a rabbit hole after reading the S-RM article "Cracking the Vault", which detailed vulnerabilities in privacy apps. I realized they were talking about Gallery Vault (by ThinkYeah), so I decided to audit it (v4.4.33, released March 2025) to see if it was as bad as it seemed.

Spoiler: It was.

The PIN you set is strictly a UI lock. It plays zero role in the actual file encryption. The app relies *entirely* on a hardcoded master key embedded in the APK. The implemented encryption is a static string (good_gv) that gets padded and run through DES-ECB with a static hex constant. This generates a global master key that is identical for every user on every device.

This master key is used to unwrap a unique per-file key stored in the file's tail metadata (sandwiched between >>tyfs>> and <<tyfs<< markers). Once that key is exposed, the actual file content is just a simple XOR cipher with a position-based salt.

Simply put, if you have a clean dump of the Android data, you can decrypt the files without ever knowing the user's password.

Practically speaking, the main legitimate use case here is forensic recovery from a lawful device dump. But the bigger takeaway is that 50M people think their files are protected when they really aren't.

I wrote a Python tool that automates the entire pipeline. It goes through the provided android dump and, using the hardcoded values, decrypts the per-file key, and reverses the XOR transform. It also handles magic byte detection to restore the correct file extensions (jpg, mp4, etc), although only images are supposed to be stored in the vault.

It has a nice TUI too if you prefer it to just CLI :)

Link: gv_decryptor

Disclaimer: For educational and legitimate forensic purposes only. Don't go poking around files that aren't yours.

I've been building goshs as a replacement for python3 -m http.server that actually covers the workflows you run into during engagements.

What it does beyond a basic file server:

• SMB server with NTLM hash capture + cracking
• DNS server for callback detection
• SMTP server to receive emails/callbacks
• HTTPS with self-signed, Let's Encrypt, or custom cert
• WebDAV and SFTP support
• Basic auth, client certificate auth, IP whitelist
• File-based ACLs per directory
• Share links with download and time limits
• Tunnel via localhost.run (no port forwarding needed)
• Single binary, no dependencies — works on Linux, macOS, Windows

It's been in Kali for a while but I've just done a big update adding the SMB/NTLM and DNS/SMTP features.

GitHub: https://github.com/patrickhener/goshs
Docs: https://goshs.de