Sean Nicholls's repositories
threat-modelling
Threat Modelling Assets (STRIDE, DREAD, etc. cheat sheets)
snitch-rules
Little Snitch firewall rules for Mac OS
secret-patterns
A collection of regular expressions which match against sensitive and/or private information such as api keys, credit cards etc.
trufflehog_v3_loc_bug
This repository documents a line of code calculation bug which is present in TruffleHog secrets scanner.
0x736E
Config files for my GitHub profile.
NIST-Juliet-1.3-EMBEDDED-CREDS
NIST Juliet 1.3 tests for CWE-256, CWE-259, CWE-321, CWE-789 in all available languages
NIST-Juliet-C-CPP-1.3
A collection of test cases in the C/C++ language. It contains examples organized under 118 different CWEs. Version 1.3 adds test cases for increment and decrement and fixes some dozen systematic problems in 1.2 cases.
NIST-Juliet-CSharp-1.3
A collection of test cases in the C# language. It contains examples organized under 105 different CWEs. Version 1.3 is the first release of the C# test suite. It is labelled 1.3 to remain consistant with the C/C++ and Java test suites.
NIST-Juliet-Java-1.3
A collection of test cases in the Java language. It contains examples organized under 112 different CWEs. Version 1.3 adds test cases for increment and decrement.
expired-creds
A collection of revoked or expired API keys, tokens and passwords for use in testing.
git-scanner-benchmark
Benchmark of various secret scanners for git
hyperpolyglot
A fast programming language detector
javscript-binaryclock
A Javascript implementation of a binary clock
kos-api-examples
Mods for Kerbal Space Program (KSP) which use the kOS exposed API to enable scriptability
ksp-scripts
scripts for kerbal space program
MeanStackSPA
example mean stack single page application using Angular 2, Socket.io, Express, Mongoose et. al.
PEG-LANG-TEST
playing around with 'Parsing Expression Grammar' (PEG) to parse programming language files
pentest-caesarcracker
caesarcrack is a native (C++) program which analyzes a ciphertext encrypted using the caesar-cypher, also known as Rot13, and determines the probability of both the language encoded and the probable key used to encrypt the data.
random-data-samples
Samples of authentication keys, passwords, tokens, certificates etc. which are generated at random to be used in testing
rust-script-engine-benchmark
Benchmark of scripting engines in Rust
tor-firefox-analysis
An analysis of Tor Browser and Firefox Web Browser digital artefacts
trufflehog
Find and verify credentials
trufflehog_v3_archive_bug
This repo documents a bug in the archive decoder in TruffleHog
VegetablePlanter
Designs & Plans for a raised planter box
vuln-foss-sources
a collection of curated FOSS projects with known vulnerabilities