Luis Ancheta's starred repositories
the-practical-linux-hardening-guide
This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
security-misc
Kernel Hardening; Protect Linux User Accounts against Brute Force Attacks; Improve Entropy Collection; Strong Linux User Account Separation; Enhances Misc Security Settings - https://www.kicksecure.com/wiki/Security-misc
systemd-service-hardening
Basic guide to harden systemd services
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
android-best-practices
Do's and Don'ts for Android development, by Futurice developers
awesome-android-complete-reference
Here I list down all of the high-quality blogs that I publish on my website.
android_guides
Extensive Open-Source Guides for Android Developers
How-To-Secure-A-Linux-Server
An evolving how-to guide for securing a Linux server.
linux-insides
A little bit about a linux kernel
PENTESTING-BIBLE
articles
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
linux-hardened
Minimal supplement to upstream Kernel Self Protection Project changes. Features already provided by SELinux + Yama and archs other than multiarch arm64 / x86_64 aren't in scope. Only tags have stable history. Shared IRC channel with KSPP: irc.freenode.net ##linux-hardened. Currently maintained at https://github.com/anthraxx/linux-hardened.
kernel_configs
Base and recommended kernel configurations. The base configurations are enforced by the VTS and are modified to permit GrapheneOS changes.
Get.Work.Done
The revolutionary and happy way of freelancing. Start today!
awesome-sec-talks
A collected list of awesome security talks
ghidra_scripts
Scripts for the Ghidra software reverse engineering suite.
fw1-loggrabber
FW1-Loggrabber is a command-line tool to grab logfiles from remote Checkpoint devices using OPSEC LEA (Log Export API)
CitrixHoneypot
Detect and log CVE-2019-19781 scan and exploitation attempts.
tsunami-security-scanner
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
phishing_detection
Phishing detection regex for Blueteams
Phishing.Database
Phishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains used for Phishing are still active.
forensic_challenges
THP Forensic Challenges
ghost-usb-honeypot
A honeypot for malware that propagates via USB storage devices