EvCuQ4HgGJd74Lhz's repositories
application-security-handbook
A knowledge base of best practices for application security
Awesome-GPT-Agents
A curated list of GPT agents for cybersecurity
awesome-list
Cybersecurity oriented awesome list
BB-Writeups
Will share some interesting writeups here :)
bug-bounty-reference
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
cariddi
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
cheat-sheets
A list of cheat sheets for application security
CloudPulse
A tool to curate compelling news on cloud technologies and cybersecurity. By aggregating information from RSS feeds and Reddit, it identifies the most noteworthy and impactful updates in the tech industry.
community-scripts
A set of open-source community scripts
CVE-2023-33733
CVE-2023-33733 reportlab RCE
cve-2023-50164-poc
Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")
domainim
A fast and comprehensive tool for organizational network scanning
f5-bigip-hardening-AS3
F5 Secure Cloud AS3 Examples
firefly
Black box fuzzer for web applications
ghauri
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
git-alerts
Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
gpt-crawler
Crawl a site to generate knowledge files to create your own custom GPT from a URL
heaptruffle
Mine URLs from Browser's Heap Snapshot for fun and profit
httpninja
HTTP.ninja
IIS-ShortName-Scanner
latest version of scanners for IIS short filename (8.3) disclosure vulnerability
MySecurityArticle
My Security Article space on GitHub dedicated to sharing insights, best practices, and discussions related to cybersecurity, ensuring safer code and applications.
pathbuster
A path-normalization pentesting tool using path replacements.
Preferred-Network-List-Sniffer
PNLS is a reconnaissance tool that captures and displays SSIDs from device's Preferred Network List.
sebel
a Go package that provides functionality for checking SSL/TLS certificates against malicious connections, by identifying and blacklisting certificates used by botnet command and control (C&C) servers.
top10webseclist
Top Ten Web Hacking Techniques List
wstg
The OWASP Web Security Testing Guide includes a "best practice" penetration testing framework which users can implement in their own organizations and a "low level" penetration testing guide that describes techniques for testing most common web application and web service security issues.