bsysop

followers

following

stars

Crowdsec

bsysop's repositories

servicenow

ServiceNow widge-simple-list misconfiguration scanner

Language:PythonApache-2.060 90

blind-ssrf-chains

An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability

Apache-2.015 10

IpLogger

Language:PythonApache-2.014 10

reflection-public

Language:Python2 10

sj

A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

Language:GoMIT100

Web-Cache-Vulnerability-Scanner

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

Language:GoNOASSERTION100

asvs

A simple web app that helps developers understand the ASVS requirements.

Language:HTMLMIT010

awesome-cheatsheet

:beers: awesome cheatsheet

Language:PythonMIT010

awesome-industrial-control-system-security

A curated list of resources related to Industrial Control System (ICS) security.

Language:PythonApache-2.0010

Awesome-Red-Teaming

List of Awesome Red Teaming Resources

MIT010

awesome-web-security

🐶 A curated list of Web Security materials and resources.

010

CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC

CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator

000

extended-ssrf-search

Smart ssrf scanner using different methods like parameter brute forcing in post and get...

Language:Python010

ezXSS

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

Language:PHPMIT000

feroxbuster

A fast, simple, recursive content discovery tool written in Rust.

Language:RustMIT010

ffuf

Fast web fuzzer written in Go

Language:GoMIT000

h8mail

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Language:PythonNOASSERTION010

httpie

As easy as /aitch-tee-tee-pie/ 🥧 Modern, user-friendly command-line HTTP client for the API era. JSON support, colors, sessions, downloads, plugins & more. https://twitter.com/httpie

Language:PythonBSD-3-Clause010

knary

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

Language:GoGPL-3.0010

kubernetes-goat

Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.

Language:HTMLMIT010

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonMIT010

PipeCheck

Language:GoGPL-3.0000

poc-empty-repo

000

rootAVD

Script to root AVDs running with QEMU Emulator from Android Studio

Language:ShellGPL-3.0000

SecretScanner

Find secrets and passwords in container images and file systems

Language:GoMIT010

shell-bot

:robot: Telegram bot that executes commands and sends the live output

Language:JavaScriptGPL-3.0000

uddup

Urls de-duplication tool for better recon.

Language:PythonMIT010

unfurl

Pull out bits of URLs provided on stdin

Language:GoMIT010

waf-bypass

Check your WAF before an attacker does

Language:PythonMIT000

xsshunter-express

An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!

Language:JavaScriptMIT010