Rustam Agametov's starred repositories
ivre
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, etc.
threatspec
threatspec - continuous threat modeling, through code
SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
ProcMon-for-Linux
Procmon is a Linux reimagining of the classic Procmon tool from the Sysinternals suite of tools for Windows. Procmon provides a convenient and efficient way for Linux developers to trace the syscall activity on the system.
GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
awesome-devsecops-russia
Awesome DevSecOps Π½Π° ΡΡΡΡΠΊΠΎΠΌ ΡΠ·ΡΠΊΠ΅
BugBountyScanner
A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
spring-view-manipulation
When MVC magic turns black
MicroBurst
A collection of scripts for assessing Microsoft Azure security
content-type-research
Content-Type Research
PoC-in-GitHub
π‘ PoC auto collect from GitHub. β οΈ Be careful Malware.
Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
ParamSpider
Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
scanomaly-2years
This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping
awesome-shodan-queries
π A collection of interesting, funny, and depressing search queries to plug into shodan.io π©βπ»
Nope-Proxy
TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
awesome-google-vrp-writeups
π A list of writeups from the Google VRP Bug Bounty program
AFLplusplus
The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
mongoaudit
π₯ A powerful MongoDB auditing and pentesting tool π₯