Silentsoul04's repositories
33-js-concepts
📜 33 JavaScript concepts every developer should know.
authz0
🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URL and Role.
awesome-list-of-secrets-in-environment-variables
🦄🔒 Awesome list of secrets in environment variables 🖥️
cloud-security-remediation-guides-1
Security Remediation Guides
CVE-2021-4034
CVE-2021-4034 1day
CVE-2021-45897
PoC for CVE-2021-45897
cve-search
cve-search - a tool to perform local searches for known vulnerabilities
DotGit
An extension for checking if .git is exposed in visited websites
eval_villain
A Firefox Web Extension to improve the discovery of DOM XSS.
github-unfollower-detector
:skull: Small application to detect evil users who have stopped following you on Github :skull:
huginn
Create agents that monitor and act on your behalf. Your agents are standing by!
hurl
Hurl, run and test HTTP requests with plain text.
kb-1
kb=$(cat sillynotes.txt)
kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
kubectl-who-can
Show who has RBAC permissions to perform actions on different resources in Kubernetes
ldap_shell
AD ACL abuse
nuclei-action
Dynamic Application Security Testing (DAST) with Nuclei
okyouwin
Nothing to see here
pip-audit
Audits Python environments and dependency trees for known vulnerabilities
RefleXXion
RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCreateSection, NtOpenSection and NtMapViewOfSection found in the LdrpThunkSignature array.
ReverseEngineering
Repo for all my notes and techniques related to reverse engineering
Review_Reverse
:wave:2019年末总结下今年做过的逆向,整理代码,复习思路。:pray:拼夕夕Web端anti_content参数逆向分析:japanese_goblin: WEB淘宝sign逆向分析;:smiley_cat:努比亚Cookie生成逆向分析;:raised_hands:百度指数data加密逆向分析 :footprints:今日头条WEB端_signature、as、cp参数逆向分析:notes:知乎登录formdata加密逆向分析 :clown_face:KNN猫眼字体反爬:tongue:Boss直聘Cookie加密字段__zp_stoken__逆向分析
ShadowClone
Unleash the power of cloud
static-analysis
⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
trivy
Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues
Vision2
Nmap's XML result parse and NVD's CPE correlation to search CVE.
WeblogicScan
Weblogic一键漏洞检测工具,V1.5,更新时间:20200730
You-Dont-Know-JS
A book series on JavaScript. @YDKJS on twitter.