dhayalanb Goto Github PK

airachnid-burp-extension

A Burp Extension to test applications for vulnerability to the Web Cache Deception attack

angora

Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.

apk-mitm

🤖 A CLI application that prepares Android APK files for HTTPS inspection

attacking-and-auditing-docker-containers-and-kubernetes-clusters

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

attacksurfaceanalyzer

Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.

awesome-malware-analysis

A curated list of awesome malware analysis tools and resources

awesome-windows-exploitation

A curated list of awesome Windows Exploitation resources, and shiny things. Inspired by awesom

breaking-and-pwning-apps-and-servers-aws-azure-training

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

burpproxy

SimplePlugin To switch proxy ON/OFF

can-i-take-over-xyz

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

cloudflair

🔎 Find origin servers of websites behind by CloudFlare using Internet-wide scan data from Censys.

crossdomain-exploitation-framework

Everything you need to exploit overly permissive crossdomain.xml files

cve-2019-0708

Scanner PoC for CVE-2019-0708 RDP RCE vuln

detectdynamicjs

The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and aid in finding user/session data.

doublefree

eqgrp

Decrypted content of eqgrp-auction-file.tar.xz

eqgrp_lost_in_translation

Decrypted content of odd.tar.xz.gpg, swift.tar.xz.gpg and windows.tar.xz.gpg

espusb

Software-only ESP8266 USB Device

evilginx

Man-in-the-middle attack framework used for phishing credentials and session cookies of any web service.

fuzzdb

Web Fuzzing Discovery and Attack Pattern Database

gitrob

Reconnaissance tool for GitHub organizations

grok-1

Grok open release

h8mail

Password Breach Hunting and Email OSINT, locally or using premium services. Supports chasing down related email

hercules

HERCULES is a special payload generator that can bypass antivirus softwares.

iotgoat

IoT Goat is a deliberately insecure firmware based on OpenWrt

monkey

Infection Monkey - An automated pentest tool

motivationthesis

Contains code for the Master Thesis Computer Science 2020/2021

payloadsallthethings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

pentest-lab

Pentest Lab on OpenStack with Heat, Chef provisioning and Docker

phpggc