303sec's repositories
InfoSec-Learning-Materials
Resource for developing infosec skills for OSCP
log4shell-everywhere
A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers
CVE-2019-0708
POC for CVE-2019-0708
Firefox-Session-Header
A Firefox plugin to add an HTTP header detailing the session container in use with a web request.
303sec.github.io
Public Blog
add-custom-header
A Burp Suite extension to add a custom header (e.g. JWT)
blind_chess
Converting PGNs to more Natural Language for TTS generation
BuildParser
Not useful to the outside world. Makes a script's output much more helpful.
cookie-session
Simple cookie-based session middleware
django-DefectDojo
DefectDojo is a DevSecOps and vulnerability management tool.
doxycannon
A poorman's proxycannon and botnet, using docker, ovpn files, and a dante socks5 proxy
EuroPi
EuroPi: A reprogrammable Eurorack module based on the Raspberry Pi Pico
exclude-cdn
Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin
git-fingerprint
Enumerate information from a target using git
How-to-get-a-job-in-Pentesting
Notes from a talk at BSides Glasgow 2018
markdown-cheatsheet
Markdown Cheatsheet for Github Readme.md
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
public-bugbounty-programs
Community curated list of public bug bounty and responsible disclosure programs.
python-redir-server
Simple redirection python server for SSRF
rengine
reNgine is a reconnaissance engine(framework) that does end-to-end reconnaissance with the help of highly configurable scan engines and does information gathering about the target web application. reNgine makes use of various open-source tools and makes a configurable pipeline of reconnaissance.
truffleHog
Searches through git repositories for high entropy strings and secrets, digging deep into commit history