babywyrm's repositories
katana
A next-generation crawling and spidering framework.
PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
prowler
Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls and many more additional checks that help on GDPR, HIPAA and other security frameworks.
Web-CTF-Cheatsheet
Web CTF CheatSheet 🐈
adPEAS
Powershell tool to automate Active Directory enumeration.
alpine-chrome
Chrome Headless docker images built upon alpine official image
attack_data
A repository of curated datasets from various attacks
CTF-XSS-BOT
Craft engaging XSS challenges effortlessly with CTF-XSS-BOT. This template simplifies setting up an environment for Capture The Flag competitions. Simulate admin actions using Puppeteer and control interactions with rate limiting.
cyclonedx-gradle-plugin
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
docker-selenium
Provides a simple way to run Selenium Grid with Chrome, Firefox, and Edge using Docker, making it easier to perform browser automation
gimme-aws-creds
A CLI that utilizes Okta IdP via SAML to acquire temporary AWS credentials
gotty-client
:wrench: terminal client for GoTTY
k3sup
bootstrap K3s over SSH in < 60s 🚀
kube-beacon
Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification
kubernetes-goat
Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.
KubiScan
A tool to scan Kubernetes cluster for risky permissions
ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Mindmap
This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them
netscout
OSINT tool that finds domains, subdomains, directories, endpoints and files for a given seed URL.
ntlm_theft
A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
OFFAT
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.
precompiled-binaries
Collection of useful pre-compiled .NET binaries or other executables for penetration testing Windows Active Directory environments
PrivescCheck
Privilege Escalation Enumeration Script for Windows
pywhisker
Python version of the C# tool for "Shadow Credentials" attacks
sbom-tool
The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.
tetragon
eBPF-based Security Observability and Runtime Enforcement
wasm3
🚀 A fast WebAssembly interpreter and the most universal WASM runtime
websocat
Command-line client for WebSockets, like netcat (or curl) for ws:// with advanced socat-like functions