0x13337's repositories
policy_sentry
IAM Least Privilege Policy Generator
git-secrets
Prevents you from committing secrets and credentials into git repositories
oss-fuzz
OSS-Fuzz - continuous fuzzing of open source software.
clusterfuzz
Scalable fuzzing infrastructure.
safeside
A project to understand and mitigate software-observable side-channels
AllThingsSSRF
This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
honggfuzz
Security oriented fuzzer with powerful analysis options. Supports evolutionary, feedback-driven fuzzing based on code coverage (software- and hardware-based)
syzkaller
syzkaller is an unsupervised coverage-guided kernel fuzzer
WebFundamentals
Best practices for modern web development
httprebind
Automatic tool for DNS rebinding-based SSRF attacks
House-of-Corrosion
A description of the "House of Corrosion" GLIBC heap exploitation technique.
CVE-2019-3396_EXP
CVE-2019-3396 confluence SSTI RCE
binary-exploitation-intro
A gentle introduction to binary exploitation
TheRomanXpl0it.github.io
:triangular_flag_on_post: TheRomanXpl0it is an italian academic CTF team from Sapienza, University of Rome.
trxmalloc
A dummy allocator ptmalloc-inspired that we use to introduce n00bs to heap exploitation
TLS-Padding-Oracles
New TLS Padding Oracles
Swiss_E-Voting_Publications
Our publications of the Swiss E-Voting Public Intrusion Test (PIT)
Cheatsheets-1
Penetration Testing/Security Cheatsheets
AndrewSpecial
AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.
httpie
As easy as httpie /aitch-tee-tee-pie/ 🥧 Modern command line HTTP client – user-friendly curl alternative with intuitive UI, JSON support, syntax highlighting, wget-like downloads, extensions, etc. https://twitter.com/clihttp
idapython
A collection of IDAPython modules made with 💚 by Duo Labs
miniupnpd_poc
Read out-of-bounds PoC for miniupnpd <= v2.1
impacket
Impacket is a collection of Python classes for working with network protocols.
DVFaaS-Damn-Vulnerable-Functions-as-a-Service
Intentionally Vulnerable Serverless Functions to understand the specifics of Serverless Security Vulnerabilities
PrivExchange
Exchange your privileges for Domain Admin privs by abusing Exchange
dnSpy
.NET debugger and assembly editor