bsysop's starred repositories
refined-github
:octocat: Browser extension that simplifies the GitHub interface and adds useful features
docker-openvpn
🔒 OpenVPN server in a Docker container complete with an EasyRSA PKI CA
unredacter
Never ever ever use pixelation as a redaction technique
kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
ScoutSuite
Multi-Cloud Security Auditing Tool
kube-hunter
Hunt for security weaknesses in Kubernetes clusters
awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
burp-awesome-tls
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
OpenSCA-cli
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the community.
SlackPirate
Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace
awesome-wordlists
A curated list wordlists for bruteforcing and fuzzing
JS-Tap
JavaScript payload and supporting software to be used as XSS payload or post exploitation implant to monitor users as they use the targeted application. Also includes a C2 for executing custom JavaScript payloads in clients, and a "mimic" feature that automatically generates custom payloads.
CloudflareBypassForScraping
A cloudflare verification bypass script for webscraping
ghostbuster
Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.
nord-stream
Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently supports Azure DevOps, GitHub and GitLab.
graphquail
Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
godeclutter
Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.
socks-my-vpn
OpenVPN-client + SOCKS server in a Docker container
ActionsCacheBlasting
Proof-of-concept code for research into GitHub Actions Cache poisoning.
ActionsTOCTOU
Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)