A Red Teamer DiariesRedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (-77.7%)
WsltoolsWeb Scan Lazy Tools - Python Package
Stars: ✭ 288 (-83.19%)
Grauditgrep rough audit - source code auditing tool
Stars: ✭ 747 (-56.39%)
Pentest NotesCollection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)
Stars: ✭ 89 (-94.8%)
Gscan本程序旨在为安全应急响应人员对Linux主机排查时提供便利,实现主机侧Checklist的自动全面化检测,根据检测结果自动数据聚合,进行黑客攻击路径溯源。
Stars: ✭ 1,177 (-31.29%)
LibdiffuzzCustom memory allocator that helps discover reads from uninitialized memory
Stars: ✭ 147 (-91.42%)
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (-89.38%)
InqlInQL - A Burp Extension for GraphQL Security Testing
Stars: ✭ 715 (-58.26%)
Audit scriptsScripts to gather system configuration information for offline/remote auditing
Stars: ✭ 55 (-96.79%)
PurifyAll-in-one tool for managing vulnerability reports from AppSec pipelines
Stars: ✭ 72 (-95.8%)
NotrulerThe opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.
Stars: ✭ 72 (-95.8%)
Nix LinterLinter for the Nix expression language
Stars: ✭ 100 (-94.16%)
SwiftdiSwiftDI the new way to use your dependency in Swift 5.1
Stars: ✭ 107 (-93.75%)
Awesome Aws SecurityCurated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
Stars: ✭ 100 (-94.16%)
ArlARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Stars: ✭ 1,357 (-20.78%)
Fisy FuzzThis is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.
Stars: ✭ 110 (-93.58%)
Backfuzzprotocol fuzzing toolkit
Stars: ✭ 106 (-93.81%)
Screen Recorder Ffmpeg Cpp*Multimedia project* A screen recording application to capture your desktop and store in a video format. Click here to watch the demo
Stars: ✭ 98 (-94.28%)
PowershellarmouryA PowerShell armoury for penetration testers or other random security guys
Stars: ✭ 99 (-94.22%)
Riff TutorialHow-to guide for testing the riff FaaS platform and Istio on Google Kubernetes Engine.
Stars: ✭ 99 (-94.22%)
WsmanagerWebshell Manager
Stars: ✭ 99 (-94.22%)
YamllintA linter for YAML files.
Stars: ✭ 1,750 (+2.16%)
VulrecVulnerability Recurrence:漏洞复现记录
Stars: ✭ 109 (-93.64%)
Singularity CriThe Singularity implementation of the Kubernetes Container Runtime Interface
Stars: ✭ 97 (-94.34%)
SliverAdversary Simulation Framework
Stars: ✭ 1,348 (-21.31%)
DekstereconWeb Application recon automation
Stars: ✭ 109 (-93.64%)
Image SpecOCI Image Format
Stars: ✭ 1,851 (+8.06%)
SsrfmapAutomatic SSRF fuzzer and exploitation tool
Stars: ✭ 1,344 (-21.54%)
Burp Unauth Checkerburpsuite extension for check unauthorized vulnerability
Stars: ✭ 99 (-94.22%)
PatrowldocsPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 105 (-93.87%)
SquealerTelling tales on you for leaking secrets!
Stars: ✭ 97 (-94.34%)
BulwarkAn organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
Stars: ✭ 113 (-93.4%)
Outisoutis is a custom Remote Administration Tool (RAT) or something like that. It was build to support various transport methods (like DNS) and platforms (like Powershell).
Stars: ✭ 111 (-93.52%)
Doc8Style checker for sphinx (or other) rst documentation.
Stars: ✭ 105 (-93.87%)
Keylogger🔐 Open Source Python Keylogger Collection
Stars: ✭ 97 (-94.34%)
GorshA Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface
Stars: ✭ 97 (-94.34%)
GopherciGopherCI was a project to help you maintain high-quality Go projects, by checking each GitHub Pull Request, for backward incompatible changes, and a suite of other third party static analysis tools.
Stars: ✭ 105 (-93.87%)
AttacksurfaceanalyzerAttack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.
Stars: ✭ 1,341 (-21.72%)
EmbedosEmbedOS - Embedded security testing virtual machine
Stars: ✭ 108 (-93.7%)
RegDocker registry v2 command line client and repo listing generator with security checks.
Stars: ✭ 1,485 (-13.31%)
CloudsploitCloud Security Posture Management (CSPM)
Stars: ✭ 1,338 (-21.89%)
Hacker ContainerContainer with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters
Stars: ✭ 105 (-93.87%)
FaasdA lightweight & portable faas engine
Stars: ✭ 1,330 (-22.36%)
Graphql Go ToolsTools to write high performance GraphQL applications using Go/Golang.
Stars: ✭ 96 (-94.4%)
Nordvpn NetworkmanagerA CLI tool for automating the importing, securing and usage of NordVPN (and in the future, more) OpenVPN servers through NetworkManager.
Stars: ✭ 111 (-93.52%)
ArchivefuzzHunt down the secrets from the WebArchives for Fun and Profit
Stars: ✭ 108 (-93.7%)
OuroborosAutomatically update running docker containers with newest available image
Stars: ✭ 1,474 (-13.95%)
AmonetA bootrom exploit for MediaTek devices
Stars: ✭ 96 (-94.4%)
UnimportA linter, formatter for finding and removing unused import statements.
Stars: ✭ 96 (-94.4%)
PipelineBanzai Cloud Pipeline is a solution-oriented application platform which allows enterprises to develop, deploy and securely scale container-based applications in multi- and hybrid-cloud environments.
Stars: ✭ 1,445 (-15.65%)
Pre Commit HooksA set of useful (and documented!) git pre-commit hooks.
Stars: ✭ 95 (-94.45%)
Docker SlimDockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)
Stars: ✭ 11,712 (+583.71%)
Linter Js StandardAtom linter plugin for JavaScript, using JavaScript Standard Style
Stars: ✭ 95 (-94.45%)