André Rainho's starred repositories
ansible-collection-hardening
This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
API-Security
OWASP API Security Project
stunserver
Version 1.2. This is the source code to STUNTMAN - an open source STUN server and client code by john selbie. Compliant with the latest RFCs including 5389, 5769, and 5780. Also includes backwards compatibility for RFC 3489. Compiles on Linux, MacOS, BSD, Solaris, and Win32 with Cygwin. Windows binaries avaialble from www.stunprotocol.org.
API-SecurityEmpire
API Security Project aims to present unique attack & defense methods in API Security field
security-apis
A collective list of public APIs for use in security. Contributions welcome
linux-baseline
DevSec Linux Baseline - InSpec Profile
assessment-mindset
Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
github-subdomains
Find subdomains on GitHub.
email-header-analyzer
E-Mail Header Analyzer
macOS-Fortress
Firewall and Privatizing Proxy for Trackers, Attackers, Malware, Adware, and Spammers with Anti-Virus On-Demand and On-Access Scanning (PF, squid, privoxy, hphosts, dshield, emergingthreats, hostsfile, PAC file, clamav)
pwn-machine
The Pwning Machine
massh-enum
OpenSSH 2.3 up to 7.4 Mass Username Enumeration (CVE-2018-15473).
nostalgy-xpi
nostalgy addon updated for Thunderbird 68 and now Thunderbird 78 - 115. Original code by Alain Frisch.
shipfast-api-protection
Learn practical Mobile and API security techniques: API Key, Static and Dynamic HMAC, Dynamic Certificate Pinning, and Mobile App Attestation.
latex-describe-rest-api
latex package for describing rest apis
makefile.sec
Use 'Makefile.sec + Docker' to run security tests in CI/CD pipelines.
secureapps-ci
SecureApps@CI is a system to enable application security into CI/CD pipelines.
openconnect_pulse_tfa
Easily connect to TFA enabled PulseVPN servers using OpenConnect