Awesome-Mainframe-Hacking
https://github.com/samanL33T/Awesome-Mainframe-Hacking
Last synced: 14 days ago
JSON representation
-
[↑](#table-of-contents) Scripts and Tools
- tso-enum.nse
- tso-brute.nse
- vtam-enum.nse
- lu-enum.nse
- cics-enum.nse
- cics-info.nse
- cics-user-brute.nse
- cics-user-enum.nse
- TN3270 Clients - X3270
- Multipurpose Nmap Scripts
- tn3270-screen.nse
- SETRRCVT by @jaytay79
- FTP - JCL commmand execution - Metasploit Modules by @bigendiansmalls
- Metasploit Payloads for z/OS
- zOSFTPlib - python ftplib-like library specifically for Z/OS
-
[↑](#table-of-contents) Books
-
[↑](#table-of-contents) Tutorials
- TSO Tutorial
- Z/OS Introduction- An IBM Redbooks video course
- Multiple Mainframe Security guides from Chicago Classic Computing
- Using UNIX System Services to escalate your privileges on z/OS
- The crash course to z/OS pentesting
- Multiple Mainframe Security guides from Chicago Classic Computing
- Emulating a MVS/zOS with Hercules
- bigiron - Wiki/Collection of materials related to IBM z/OS security
-
[↑](#table-of-contents) Presentations and Talks
- Video - All the talks by Soldier of FORTRAN (@mainframed767)
- How to Break into z/OS Systems - Staurt Henderson
- How to Break Into z/OS Systems Through USS, TCP/IP, and the Internet
- Video - Mainframe [z/OS
- Video - Security Necromancy : Further Adventures in Mainframe Hacking by Soldier of FORTRAN (@mainframed767) & @bigendiansmalls
- Top 10 Security Vulnerabilities in z/OS by John Hillman (Vanguard)
- The current state of Mainframe Hacking by Phil Young - Soldier of FORTRAN (@mainframed767)
- Advanced Mainframe Hacking by Phil Young - Soldier of FORTRAN (@mainframed767)
- Defcon 22 From ROOT to SPECIAL - Soldier of FORTRAN (@mainframed767)
- Mainframes: What the F$#K is That About? - Soldier of FORTRAN (@mainframed767)
- BSidesAustin Mainframes: Everybody has one but nobody knows how to hack them - Soldier of FORTRAN (@mainframed767)
- BSidesLV 2013 - Legacy 0-Day How hackers breached the Logica Mainframe - Soldier of FORTRAN (@mainframed767)
- Gaps in your Defense: Hacking the Mainframe by Soldier of FORTRAN (@mainframed767)
- Video - Gaps in your Defense: Hacking the Mainframe by Soldier of FORTRAN (@mainframed767)
- Hacking Mainframes; Vulnerabilities in applications exposed over TN3270 by Dominic White (Sensepost)
- Video - Hacking Mainframes; Vulnerabilities in applications exposed over TN3270 by Dominic White (Sensepost)
- Video - Ransomware on the Mainframe: Checkmate by @bigendiansmalls
- Video - Learning Mainframe Hacking: Where the hell did all my free time go? by @bigendiansmalls
- Post exploit goodness on a Mainframe SPECIAL is the new root by (@ayoul3__)
- Video - Hacking Customer Information Control System (CICS) by Ayoub Elaassal (@ayoul3__)
- Video - IBM Networking Attacks-Or The Easiest Way To Own A Mainframe by Martyn Ruks
- Video - Cracking Mainframe Passwords by Nigel Pentland
- Video - Exploiting the Mainframe - Z/OS integrity 101 by Mark Wilson & Ray Overby
- Video - A Gentle Introduction to Hacking Mainframes by Dan Helton
- PDF- Talk - Gibson 101 - Quick Introduction to Hacking Mainframes in 2020
- Video - Buffer overflow on the mainframe, presented by Jake Labelle
- PDF- Talk - How I Found Mainframe Buffer Overflows by Jake Labelle
- PDF- Talk - Gibson 101 - Quick Introduction to Hacking Mainframes in 2020
-
[↑](#table-of-contents) ACF2 Specific references
-
[↑](#table-of-contents) Labs
-
[↑](#table-of-contents) Misc
- Evil Mainframe Hacking Training/Course
- CBT Tape - Collection of Freeware & Open Source distribution of IBM mainframe MVS & OS/360 Environments
- DoD Security Technical implementation Guides(STIGS) - Search for ACF2, Z/OS, RACF etc.
- Default Accounts
- z/OS Internet Library by IBM - Collection of manuals,guides & books about z/OS
-
[↑](#table-of-contents) iSeries Books
-
[↑](#table-of-contents) Tutorials and Checklists
- AS/400 Security Assessment Mindmap
- iSeries Penetration Testing
- Security Audit of IBM AS/400 and System i : Part 1
- Security Audit of IBM AS/400 and System i : Part 2
- Security Assessment of the IBM i (AS 400) System : Part 1
- Seclists Mailing list thread on Pentesting AS/400
- Resources from Shalom Carmel's talk at BH Europe - 2006
- AS/400 Security Assessment Mindmap
-
[↑](#table-of-contents) Tools
-
[↑](#table-of-contents) iSeries Presentations and Talks
-
[↑](#table-of-contents) Miscellaneous
Categories
[↑](#table-of-contents) Presentations and Talks
28
[↑](#table-of-contents) Scripts and Tools
15
[↑](#table-of-contents) Tutorials
8
[↑](#table-of-contents) Tutorials and Checklists
8
[↑](#table-of-contents) Misc
5
[↑](#table-of-contents) iSeries Books
3
[↑](#table-of-contents) Books
3
[↑](#table-of-contents) ACF2 Specific references
3
[↑](#table-of-contents) iSeries Presentations and Talks
3
[↑](#table-of-contents) Tools
2
[↑](#table-of-contents) Miscellaneous
2
[↑](#table-of-contents) Labs
1
Sub Categories