Patrick Thomas's starred repositories
awesome-falsehood
😱 Falsehoods Programmers Believe in
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
hardentools
Hardentools simply reduces the attack surface on Microsoft Windows computers by disabling low-hanging fruit risky features.
awesome-iot-hacks
A Collection of Hacks in IoT Space so that we can address them (hopefully).
bucket-stream
Find interesting Amazon S3 Buckets by watching certificate transparency logs.
Burp-Non-HTTP-Extension
Non-HTTP Protocol Extension (NoPE) Proxy and DNS for Burp Suite.
Salamandra
Salamandra is a tool to find spy microphones that use radio freq to transmit. It uses SDR.
repo-supervisor
Scan your code for security misconfiguration, search for passwords and secrets. :mag:
bugcrowd-levelup-subdomain-enumeration
This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference
metadataproxy
A proxy for AWS's metadata service that gives out scoped IAM credentials from STS
certstream-python
Python library for connecting to CertStream
Popular-Site-Subdomains
A list of subdomains for some of the most popular sites on the internet
curl-tap-sh
tap curl in your editor before it gets to sh it
Book_SecDevOps_Risk_Workflow
Content for 'JIRA Risk Project' book published at LeanPub
new-eng-mgr-guide
A practical guide for new engineering managers.
burp-multi-browser-highlighting
Highlight Burp proxy requests made by different browsers