Alexandre Dulaunoy

Bio

My name is Alexandre Dulaunoy (adulau). I break stuff and I do stuff. The majority of my work is open source (or free software) in various fields such as information security. I’m part of the following organisation on GitHub where I’m regularly contributing such as @MISP @AIL-project @d4-project @circl @cve-search @hashlookup and some others where I’m contributing a bit less.

Alexandre Dulaunoy's Mastodon Alexandre Dulaunoy's Twitter Alexandre Dulaunoy's flickr

Keeping track on all the software I contributed or started is nearly impossible. You can have a look at some below but it’s just some recent ones:

Software I initially developed and maintain

Software Vulnerabilities and CVE

Software Description State
git-vuln-finder Finding potential software vulnerabilities from git commit messages (only!). Active
cpe-guesser Tool to guess CPE name based on common software name. Active
shvi-allocation/allocator Software and procedure supporting the allocation of SHVI number (software and hardware vulnerability identifier) via a community portal. Prototype/Hibernating

Digital and Network Forensic

Software Description State
DomainClassifier DomainClassifier is a simple Python library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text files following their existence, localization or attributes. Active
hashlookup-forensic-analyser Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service. Active
hashlookup-lib Hashlookup is a library to import hashes records into a hashlookup server. Active
hashlookup-nsrl hashlookup-nsrl is a NSRL RDSv3 importer for hashlookup-server. Active
hashlookup-server hashlookup-server is a minimal and fast open source server (ReST/API) to lookup quickly hash value from large dataset. Active
mmdb-server mmdb-server is an open source fast API server to lookup IP addresses for their geographic location, AS number. The server can be used with any MaxMind DB File Format or file in the same format. An open data and free GeoOpen database is included and maintained by me. Active

Software I co-developed and co-maintain

Software Vulnerabilities and CVE

Software Description State
cve-search a tool to perform local searches for known vulnerabilities. Active

Software I mantain because no one give a f*ck to maintain open source software

Software Description State
ssldump ssldump is an SSLv3/TLS network protocol analyzer. It identifies TCP connections on the chosen network interface and attempts to interpret them as SSLv3/TLS traffic. When it identifies SSLv3/TLS traffic, it decodes the records and displays them in a textual form to stdout. If provided with the appropriate keying material, it will also decrypt the connections and display the application data traffic. It also includes a JSON output option, supports JA3 and IPv6. Active