Giters
Carlos Villa Sánchez (carlosvillasanchez)

carlosvillasanchez

Geek Repo

11

followers

22

following

84

stars

Company:Oracle

Location:Madrid

Home Page:https://carlosvilla.herokuapp.com/

Github PK Tool:Github PK Tool

Carlos Villa Sánchez's starred repositories

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonLicense:MITStargazers:58922Issues:1815Issues:0

dive

A tool for exploring each layer in a docker image

Language:GoLicense:MITStargazers:44882Issues:357Issues:324

masscan

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

Language:CLicense:AGPL-3.0Stargazers:23085Issues:653Issues:557

difftastic

a structural diff that understands syntax 🟥🟩

Language:RustLicense:MITStargazers:20209Issues:61Issues:578

vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

Language:DockerfileLicense:MITStargazers:17212Issues:575Issues:179

bettercap

The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Language:GoLicense:NOASSERTIONStargazers:16060Issues:413Issues:877

XSStrike

Most advanced XSS scanner.

Language:PythonLicense:GPL-3.0Stargazers:13021Issues:274Issues:284

owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

Language:PythonLicense:CC-BY-SA-4.0Stargazers:11516Issues:425Issues:1090

super-linter

Combination of multiple linters to run as a GitHub Action or standalone

Language:ShellLicense:MITStargazers:9320Issues:305Issues:1313

Arjun

HTTP parameter discovery suite.

Language:PythonLicense:AGPL-3.0Stargazers:5049Issues:87Issues:141

hakrawler

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

Language:GoLicense:GPL-3.0Stargazers:4348Issues:60Issues:103

unioffice

Pure go library for creating and processing Office Word (.docx), Excel (.xlsx) and Powerpoint (.pptx) documents

Language:GoLicense:NOASSERTIONStargazers:4304Issues:85Issues:228

waybackurls

Fetch all the URLs that the Wayback Machine knows about for a domain

Language:GoStargazers:3344Issues:64Issues:42

ysoserial.net

Deserialization payload generator for a variety of .NET formatters

Language:C#License:MITStargazers:3126Issues:76Issues:62

NoSQLMap

Automated NoSQL database enumeration and web application exploitation tool.

Language:PythonLicense:GPL-3.0Stargazers:2827Issues:106Issues:75

judge0

🔥 The most advanced open-source online code execution system in the world.

Language:HTMLLicense:GPL-3.0Stargazers:2408Issues:35Issues:405

php-reverse-shell

Language:PHPLicense:GPL-2.0Stargazers:2133Issues:46Issues:8

hackthebox-writeups

Writeups for HacktheBox 'boot2root' machines

License:GPL-3.0Stargazers:1857Issues:115Issues:33

Nope-Proxy

TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.

Language:JavaStargazers:1527Issues:59Issues:72

XSS-Payloads

List of XSS Vectors/Payloads

Stargazers:1152Issues:42Issues:0

oxml_xxe

A tool for embedding XXE/XML exploits into different filetypes

Language:RubyStargazers:1024Issues:32Issues:30

Autorize

Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests

Language:PythonStargazers:907Issues:26Issues:78

JSONBee

A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.

Language:PHPLicense:GPL-3.0Stargazers:641Issues:20Issues:2

bbrf-client

The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices

Language:PythonLicense:MITStargazers:603Issues:25Issues:99

commonspeak2-wordlists

Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.

License:Apache-2.0Stargazers:512Issues:24Issues:0

saml-idp

Simple SAML Identity Provider (IdP) for Node

Language:JavaScriptLicense:MITStargazers:438Issues:14Issues:44

recon-pipeline

An automated target reconnaissance pipeline.

Language:PythonLicense:MITStargazers:422Issues:11Issues:63

mobileAudit

Django application that performs SAST and Malware Analysis for Android APKs

Language:HTMLLicense:GPL-3.0Stargazers:198Issues:9Issues:26

dnmasscan

A script that can resolve an input file of domains and scan them with masscan

Language:ShellLicense:GPL-3.0Stargazers:154Issues:4Issues:0

Teleport

The Teleport command is an improvement on the Unix/Linux cd command

Language:ShellLicense:GPL-3.0Stargazers:25Issues:4Issues:2