NmapIdiomatic nmap library for go developers
Stars: ✭ 391 (+9.52%)
Slack WatchmanMonitoring your Slack workspaces for sensitive information
Stars: ✭ 159 (-55.46%)
WriteupsThis repository contains writeups for various CTFs I've participated in (Including Hack The Box).
Stars: ✭ 61 (-82.91%)
FSEC-VMBackend logic implementation for Vulnerability Management System
Stars: ✭ 19 (-94.68%)
GorsairGorsair hacks its way into remote docker containers that expose their APIs
Stars: ✭ 678 (+89.92%)
NIST-to-TechAn open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
Stars: ✭ 61 (-82.91%)
haiti🔑 Hash type identifier (CLI & lib)
Stars: ✭ 287 (-19.61%)
NatlasScaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.
Stars: ✭ 333 (-6.72%)
wifi-deautherA fully automatic wifi deauther coded in Python
Stars: ✭ 25 (-93%)
H2csmugglerHTTP Request Smuggling over HTTP/2 Cleartext (h2c)
Stars: ✭ 292 (-18.21%)
remote-code-execution-sampleDemonstrate how usage of the Java Security Manager can prevent Remote Code Execution (RCE) exploits.
Stars: ✭ 18 (-94.96%)
ChepyChepy is a python lib/cli equivalent of the awesome CyberChef tool.
Stars: ✭ 295 (-17.37%)
Threat-Intel-Slack-BotInteractive Threat Intelligence Bot that leverages serverless framework, AWS/GCP, and Slack
Stars: ✭ 26 (-92.72%)
aeacus🔐 Vulnerability remediation scoring system
Stars: ✭ 52 (-85.43%)
Attack ScriptsScripts and a (future) library to improve users' interactions with the ATT&CK content
Stars: ✭ 290 (-18.77%)
NSE-scriptsNSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473
Stars: ✭ 105 (-70.59%)
WiFi-ProjectPre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️
Stars: ✭ 22 (-93.84%)
Ctf Writeups PublicWriteups for infosec Capture the Flag events by team Galaxians
Stars: ✭ 331 (-7.28%)
ConfusedTool to check for dependency confusion vulnerabilities in multiple package management systems
Stars: ✭ 314 (-12.04%)
IdentywafBlind WAF identification tool
Stars: ✭ 291 (-18.49%)
SubzySubdomain takeover vulnerability checker
Stars: ✭ 287 (-19.61%)
MX1014MX1014 is a flexible, lightweight and fast port scanner.
Stars: ✭ 79 (-77.87%)
Zeek-Network-Security-MonitorA Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.
Stars: ✭ 38 (-89.36%)
Reverse Engineering TutorialA FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
Stars: ✭ 5,763 (+1514.29%)
Traitor⬆️ ☠️ Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, polkit, docker socket
Stars: ✭ 3,473 (+872.83%)
log4jscanwinLog4j Vulnerability Scanner for Windows
Stars: ✭ 142 (-60.22%)
CTF-WriteupsRepository of my CTF writeups
Stars: ✭ 25 (-93%)
LegionAutomatic Enumeration Tool based in Open Source tools
Stars: ✭ 280 (-21.57%)
NmapAutoRunThis script will automating scanning list of hosts with nmap
Stars: ✭ 24 (-93.28%)
cvehoundCheck linux sources dump for known CVEs.
Stars: ✭ 74 (-79.27%)
WinappdbgWinAppDbg Debugger
Stars: ✭ 338 (-5.32%)
Htrace.shMy simple Swiss Army knife for http/https troubleshooting and profiling.
Stars: ✭ 3,465 (+870.59%)
Ir RescueA Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.
Stars: ✭ 311 (-12.89%)
Xunfeng巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Stars: ✭ 3,131 (+777.03%)
SherlockThis script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)
Stars: ✭ 36 (-89.92%)
nseNmap NSE scripts
Stars: ✭ 23 (-93.56%)
findsshAsyncio concurrent Python finds SSH servers (or other services with open ports) on an IPv4 subnet, WITHOUT NMAP
Stars: ✭ 36 (-89.92%)
ImpulsiveDLLHijackC# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.
Stars: ✭ 258 (-27.73%)
HettyHetty is an HTTP toolkit for security research.
Stars: ✭ 3,596 (+907.28%)
Penetration testing poc渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Stars: ✭ 3,858 (+980.67%)
APAC-MeetupsA community contributed consolidated list of InfoSec meetups in the Asia Pacific region.
Stars: ✭ 52 (-85.43%)
domfindA Python DNS crawler to find identical domain names under different TLDs.
Stars: ✭ 22 (-93.84%)
log4j2-rce-exploitlog4j2 remote code execution or IP leakage exploit (with examples)
Stars: ✭ 62 (-82.63%)
Awesome InfosecA curated list of awesome infosec courses and training resources.
Stars: ✭ 3,779 (+958.54%)
MalsubA Python RESTful API framework for online malware analysis and threat intelligence services.
Stars: ✭ 308 (-13.73%)
WordlistsInfosec Wordlists
Stars: ✭ 271 (-24.09%)
SimpleKeyloggerSimple Keylogger with smtp to send emails on your account using python works on linux and Windows
Stars: ✭ 32 (-91.04%)
Pwdb-PublicA collection of all the data i could extract from 1 billion leaked credentials from internet.
Stars: ✭ 2,529 (+608.4%)
CripsIP Tools To quickly get information about IP Address's, Web Pages and DNS records.
Stars: ✭ 272 (-23.81%)
RecoverPy🙈 Interactively find and recover deleted or 👉 overwritten 👈 files from your terminal
Stars: ✭ 189 (-47.06%)
idsaThis is the main repository of International Data Spaces Association on GitHub, where you can find general overview and required information on IDS Open Source Landscape.
Stars: ✭ 22 (-93.84%)
Vulapps快速搭建各种漏洞环境(Various vulnerability environment)
Stars: ✭ 3,353 (+839.22%)
Cve 2019 1003000 Jenkins Rce PocJenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)
Stars: ✭ 270 (-24.37%)
Application Security Engineer Interview QuestionsSome of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
Stars: ✭ 267 (-25.21%)