Giters
Ashwin Goel (goelashwin36)

goelashwin36

Geek Repo

32

followers

46

following

59

stars

Company:JPMorgan Chase & Co.

Location:Ghaziabad, UP, India

Home Page:ashwingoel.com

Twitter:@ashwingoel36

Github PK Tool:Github PK Tool

Ashwin Goel's starred repositories

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonLicense:MITStargazers:59159Issues:1818Issues:0

dive

A tool for exploring each layer in a docker image

Language:GoLicense:MITStargazers:44998Issues:356Issues:329

trufflehog

Find, verify, and analyze leaked credentials

Language:GoLicense:AGPL-3.0Stargazers:15161Issues:169Issues:619

dockerfiles

Various Dockerfiles I use on the desktop and on servers.

Language:DockerfileLicense:MITStargazers:13640Issues:428Issues:206

chalice

Python Serverless Microframework for AWS

Language:PythonLicense:Apache-2.0Stargazers:10574Issues:236Issues:1233

prowler

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

Language:PythonLicense:Apache-2.0Stargazers:10412Issues:126Issues:890

juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Language:TypeScriptLicense:MITStargazers:9984Issues:161Issues:814

Sublist3r

Fast subdomains enumeration tool for penetration testers

Language:PythonLicense:GPL-2.0Stargazers:9583Issues:231Issues:216

my-arsenal-of-aws-security-tools

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Language:ShellLicense:Apache-2.0Stargazers:8850Issues:394Issues:33

ScoutSuite

Multi-Cloud Security Auditing Tool

Language:PythonLicense:GPL-2.0Stargazers:6522Issues:132Issues:862

pacu

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Language:PythonLicense:BSD-3-ClauseStargazers:4248Issues:109Issues:126

aws-well-architected-labs

Hands on labs and code to help you learn, measure, and build using architectural best practices.

Language:PythonLicense:Apache-2.0Stargazers:1968Issues:113Issues:0

Malcolm

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

Language:PythonLicense:NOASSERTIONStargazers:1868Issues:55Issues:163

bucket-stream

Find interesting Amazon S3 Buckets by watching certificate transparency logs.

Language:PythonLicense:MITStargazers:1740Issues:69Issues:21

cloud_enum

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

Language:PythonLicense:MITStargazers:1581Issues:38Issues:29

crowbar

Crowbar is brute forcing tool that can be used during penetration tests. It is developed to support protocols that are not currently supported by thc-hydra and other popular brute forcing tools.

Language:PythonLicense:MITStargazers:1350Issues:65Issues:52

AWSBucketDump

Security Tool to Look For Interesting Files in S3 Buckets

Language:PythonLicense:MITStargazers:1344Issues:46Issues:8

secDevLabs

A laboratory for learning secure web and mobile development in a practical manner.

Language:PHPLicense:BSD-3-ClauseStargazers:881Issues:33Issues:69

cka-practice-environment

A sample lab test environment to help in preparation of CKA certification.

Language:JavaScriptLicense:MITStargazers:859Issues:37Issues:13

awesome-serverless-security

A curated list of awesome serverless security resources such as (e)books, articles, whitepapers, blogs and research papers.

License:CC0-1.0Stargazers:578Issues:36Issues:2

nimbostratus

Tools for fingerprinting and exploiting Amazon cloud infrastructures

Language:PythonLicense:AGPL-3.0Stargazers:442Issues:28Issues:10

DarkScrape

OSINT Tool For Scraping Dark Websites

Language:PythonLicense:MITStargazers:433Issues:26Issues:6

s3enum

Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.

Language:GoLicense:ISCStargazers:193Issues:7Issues:10

dvca

Damn Vulnerable Cloud Application

Language:CSSStargazers:181Issues:9Issues:1

slurp-old

A tool to enumerate S3 buckets manually or via certstream

Language:GoLicense:AGPL-3.0Stargazers:80Issues:6Issues:4

slurp

Preventing malicious takeover of the retired slurp AWS tool

Language:GoStargazers:40Issues:0Issues:0

datasploit

Utilizing various Open Source Intelligence (OSINT) tools and techniques that we have found to be effective, DataSploit brings them all into one place, correlates the raw data captured and gives the user, all the relevant information about the domain/email/ phone number/person, etc. It allows you to collect relevant information about a target which can expand your attack/defence surface very quickly. Sometimes it might even pluck the low hanging fruits for you without even touching the target and give you quick wins. More documentation here: http://datasploit.readthedocs.io/en/latest/.

Language:PythonLicense:GPL-3.0Stargazers:28Issues:3Issues:0

techloop-ml-plus

Archives and Tasks for ML+ sessions

Language:PythonLicense:MITStargazers:22Issues:0Issues:0

techloop-w-plus

Archives of webdev sessions

Language:JavaScriptLicense:MITStargazers:20Issues:0Issues:0

online-community-management

Developed a forum using Express JS, Node JS, Mongo Db wherein people can grow together by asking questions from the community and getting answers from the members. The forum is secured using an authentication system.

Language:JavaScriptStargazers:1Issues:0Issues:2