Andrew's starred repositories
tsunami-security-scanner
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
bugcrowd_university
Open source education content for the researcher community
client-side-prototype-pollution
Prototype Pollution and useful Script Gadgets
Interception
The Interception API aims to build a portable programming interface that allows one to intercept and control a range of input devices.
Gf-Patterns
GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
shapeshifter
GraphQL security testing tool
interception_py
A python port (not a wrapper) of interception dll
meteor-login-token
Automatically log in a user if a valid, unexpired, single-use `authToken` is present in the URL.