brnoleal

followers

following

stars

Sao Paulo, Brazil

https://www.linkedin.com/in/brnoleal/

Bruno Leal's starred repositories

awesome-compose

Awesome Docker Compose samples

Language:HTMLCC0-1.03299000

HackTheBox-CTF-Writeups

This cheasheet is aimed at the CTF Players and Beginners to help them sort Hack The Box Labs on the basis of Operating System and Difficulty.

hackerone-reports

Top disclosed reports from HackerOne

Language:Python355700

AllVideoPocsFromHackerOne

This script grab public report from hacker one and make some folders with poc videos

Language:Shell86800

browneria

Language:JavaScript200

BBTz

BBT - Bug Bounty Tools (examples💡)

Language:Python167700

S3Scanner

Scan for misconfigured S3 buckets across S3-compatible APIs!

Language:GoMIT248400

BurpSuite_403Bypasser

Burpsuite Extension to bypass 403 restricted directory

Language:Python153300

docem

A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)

Language:Python49700

OneListForAll

Rockyou for web fuzzing

Language:Shell251800

django-react-session-auth

Language:Python1500

DevSecOps

♾️ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe 😎

Language:GoMIT171900

pentestmindmap

a mindmap on pentest #pentestmindmap #oscp #lpt #ecsa #ceh #bugbounty

Language:HTML24300

AllThingsSSRF

This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location

MIT120300

betterdefaultpasslist

HowToHunt

Collection of methodology and test case for various web vulnerabilities.

GPL-3.0600600

pix-api

API Pix: a API do Arranjo de Pagamentos Instantâneos Brasileiro, Pix, criado pelo Banco Central do Brasil.

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Language:PythonNOASSERTION866500

containernet

Mininet fork adding support for container-based (e.g. Docker) emulated hosts.

Language:PythonNOASSERTION38300

Network-Intrusion-Detection

Network Intrusion Detection KDDCup '99', NSL-KDD and UNSW-NB15

Language:Python65200

detection-rules

Language:PythonNOASSERTION187300

cloud-ranges

A list of cloud ranges from different providers.

Language:Ruby46100

OWASP-Testing-Checklist

OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and pending test cases.

Ghost

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.

Language:PythonMIT271800

PEASS-ng

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Language:C#NOASSERTION1556800

owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

Language:PythonCC-BY-SA-4.01153800

django-DefectDojo

DevSecOps, ASPM, Vulnerability Management. All on one platform.

Language:HTMLBSD-3-Clause356300

Awesome-Bugbounty-Writeups

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

Language:Python450400

django-dashboards

Django Dashboards - Admin Panels coded in Django | AppSeed

MIT34100

Guia-Completo-Elastic-Stack

Deixando você EXPERT em todos os produtos da Elastic

3500