Open.WinKeyboardHookA simple and easy-to-use .NET managed wrapper for Low Level Keyboard hooking.
Stars: ✭ 20 (-16.67%)
awesome-policy-as-codeA curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.
Stars: ✭ 121 (+404.17%)
sample-scan-filesSample scan files for testing DefectDojo imports
Stars: ✭ 60 (+150%)
Nist Data MirrorA simple Java command-line utility to mirror the CVE JSON data from NIST.
Stars: ✭ 135 (+462.5%)
appsec-educationPresentations, training modules, and other education materials from Duo Security's Application Security team.
Stars: ✭ 59 (+145.83%)
DbgChildDebug Child Process Tool (auto attach)
Stars: ✭ 221 (+820.83%)
YawastYAWAST ...where a pentest starts. Security Toolkit for Web-based Applications
Stars: ✭ 181 (+654.17%)
zap-sonar-pluginIntegrates OWASP Zed Attack Proxy reports into SonarQube
Stars: ✭ 66 (+175%)
mhookA Windows API hooking library
Stars: ✭ 167 (+595.83%)
PidrilaPython Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
Stars: ✭ 125 (+420.83%)
edgeApplication-embedded connectivity and zero-trust components
Stars: ✭ 44 (+83.33%)
cryptoniceCryptoNice is both a command line tool and library which provides the ability to scan and report on the configuration of SSL/TLS for your internet or internal facing web services. Built using the sslyze API and ssl, http-client and dns libraries, cryptonice collects data on a given domain and performs a series of tests to check TLS configuration…
Stars: ✭ 91 (+279.17%)
threatmodel-sdkA Java library for parsing and programmatically using threat models
Stars: ✭ 68 (+183.33%)
vulndb-data-mirrorA simple Java command-line utility to mirror the entire contents of VulnDB.
Stars: ✭ 36 (+50%)
Sast ScanScan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.
Stars: ✭ 234 (+875%)
RenHookAn open-source x86 / x86-64 hooking library for Windows.
Stars: ✭ 80 (+233.33%)
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Stars: ✭ 187 (+679.17%)
bank mitigationsAnti keylogger, anti screen logger... Strategy to protect with hookings or improve your sandbox with spyware detection... - Demo
Stars: ✭ 17 (-29.17%)
OvaaOversecured Vulnerable Android App
Stars: ✭ 152 (+533.33%)
RedditVancedReddit Android app mod inspired by Aliucord
Stars: ✭ 41 (+70.83%)
Njsscannjsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
Stars: ✭ 128 (+433.33%)
tutorialsAdditional Resources For Securing The Stack Tutorials
Stars: ✭ 36 (+50%)
solutions-bwappIn progress rough solutions to bWAPP / bee-box
Stars: ✭ 158 (+558.33%)
SecurityratOWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
Stars: ✭ 115 (+379.17%)
dll injectorA simple commandline injector using classic DLL injection
Stars: ✭ 81 (+237.5%)
dependency-check-pluginJenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
Stars: ✭ 107 (+345.83%)
FindTheStupidWindowWindows API hooking project to log all the windows / UIs with the exact timestamp when they are opened.
Stars: ✭ 13 (-45.83%)
nodejssecurityDocumentation for Essential Node.js Security
Stars: ✭ 64 (+166.67%)
vapivAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
Stars: ✭ 674 (+2708.33%)
hook-any-textThe goal of this project is to provide an alternative to well established text hookers, whose features are restrained to a certain number of game engines and emulators.
Stars: ✭ 51 (+112.5%)
SSI Extra MaterialsIn my computer security courses I make extensive usage of cheatsheets for various tools and extra materials to complement the student learning if they are willing to do so. I have decided to share them to enable others to take advantage of them
Stars: ✭ 42 (+75%)
hookeyEnables all the DLCs. Like Creamapi but just for linux and a subset of Paradox games.
Stars: ✭ 87 (+262.5%)
PayloadsGit All the Payloads! A collection of web attack payloads.
Stars: ✭ 2,862 (+11825%)
KicsFind security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Stars: ✭ 189 (+687.5%)
SnifferIHDLL Hooking Packet Sniffer
Stars: ✭ 15 (-37.5%)
Zap HudThe OWASP ZAP Heads Up Display (HUD)
Stars: ✭ 201 (+737.5%)
BlisqyVersion 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).
Stars: ✭ 179 (+645.83%)
nerdbugFull Nuclei automation script with logic explanation.
Stars: ✭ 153 (+537.5%)
Threat Model CookbookThis project is about creating and publishing threat model examples.
Stars: ✭ 159 (+562.5%)
www-project-zapOWASP Zed Attack Proxy project landing page.
Stars: ✭ 52 (+116.67%)
Web MethodologyMethodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
Stars: ✭ 142 (+491.67%)
Simplified-JNAMulti-threaded JNA hooks and simplified library access to window/key/mouse functions.
Stars: ✭ 30 (+25%)
KurukshetraKurukshetra - A framework for teaching secure coding by means of interactive problem solving.
Stars: ✭ 131 (+445.83%)
juice-shopOWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Stars: ✭ 7,533 (+31287.5%)
Oob ServerA Bind9 server for pentesters to use for Out-of-Band vulnerabilities
Stars: ✭ 125 (+420.83%)
MinHook.NETA C# port of the MinHook API hooking library
Stars: ✭ 128 (+433.33%)
subhook.nimsubhook wrapper for Nim https://github.com/Zeex/subhook
Stars: ✭ 15 (-37.5%)
sqlinjection-training-appA simple PHP application to learn SQL Injection detection and exploitation techniques.
Stars: ✭ 56 (+133.33%)
ObsidianSailboatNmap and NSE command line wrapper in the style of Metasploit
Stars: ✭ 36 (+50%)
singlefilefeatured cs:go internal hack, one file and less than 1000 lines.
Stars: ✭ 47 (+95.83%)
hookingResources About Hooking. For All Platforms. Currently 300+ Tools And 600+ Posts.
Stars: ✭ 212 (+783.33%)
hooking-by-exampleA series of increasingly complex programs demonstrating function hooking on 64 bit Windows. Culminating in a program that hooks mspaint to make it always paint orange.
Stars: ✭ 144 (+500%)