Josh's repositories
dotfiles_and_environment_setup
Dotfiles/environment configs for new mac setup
algorithms
Minimal examples of data structures and algorithms in Python
awesome-shodan-queries
🔍 A collection of interesting, funny, and depressing search queries to plug into https://shodan.io/ 👩💻
axiom215.github.io
website
Bash-Oneliner
A collection of handy Bash One-Liners and terminal tricks for data processing and Linux system maintenance.
can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
cartography
Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powered by a Neo4j database.
chomp-scan
A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
commonspeak2
Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
CTFd
CTFs as you need them
dirble
Fast directory scanning and scraping tool
gitleaks
Audit git repos for secrets 🔑
GTFOBins.github.io
Curated list of Unix binaries that can be exploited to bypass system security restrictions
hostyoself
Host yo' self from your browser, your phone, your toaster.
keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
keytransparency
A transparent and secure way to look up public keys.
MozDef
MozDef: Mozilla Enterprise Defense Platform
pentest-tools
Custom pentesting tools
python-fire
Python Fire is a library for automatically generating command line interfaces (CLIs) from absolutely any Python object.
simple-enum
Making subdomain enumeration great again... or just automating it. Whatever you prefer.
template-incident-management
A sample of managing incidents via Slack
the-art-of-command-line
Master the command line, in one page
timesketch
Collaborative forensic timeline analysis
tko-subs
A tool that can help detect and takeover subdomains with dead DNS records
tls-exercises
Programming secure connections in Python and Java
validator.js
String validation
vpn-utils
Scripts to manage PIA via OpenVPN