0x0FB0's starred repositories
cloudsplaining
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
My-Shodan-Scripts
Collection of Scripts for shodan searching stuff.
chunked-coding-converter
Burp suite 分块传输辅助插件
python_sec
python安全和代码审计相关资料收集 resource collection of python security and code review
rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
httprebind
Automatic tool for DNS rebinding-based SSRF attacks
WeblogicScan
增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持
assessment-mindset
Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
coronavirus
Folding@home COVID-19 efforts
cloud_enum
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
DumpsterDiver
Tool to search secrets in various filetypes.
enumerate-iam
Enumerate the permissions associated with AWS credential set
SubDomainizer
A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
AzureADRecon
AzureADRecon is a tool which gathers information about the Azure Active Directory and generates a report which can provide a holistic picture of the current state of the target environment.
Web-Attack-Cheat-Sheet
Web Attack Cheat Sheet