Luca Carettoni's starred repositories
semgrepper
An extension to use Semgrep inside Burp Suite.
AppSecEzine
AppSec Ezine Public Repository.
JNDI-Injection-Exploit
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
electronegativity-action
The action integrates Electronegativity, a tool to identify misconfigurations and security anti-patterns in Electron applications, into GitHub CI/CD.
jquery-xss-in-html
jQuery < 3.5 Cross-Site Scripting (XSS) in html()
frida-fuzzer
This experimetal fuzzer is meant to be used for API in-memory fuzzing.
TamperThemAll
A tampered payload generator to Fuzz Web Application Firewalls
vdexExtractor
Tool to decompile & extract Android Dex bytecode from Vdex files
electronegativity
Electronegativity is a tool to identify misconfigurations and security anti-patterns in Electron applications.
awesome-browser-exploit
awesome list of browser exploitation tutorials
mattermost-retention
Data retention /cleanup script for mattermost
BugBountySubdomains
Tools to gather subdomains from Bug Bounty programs
Keychain-Dumper
A tool to check which keychain items are available to an attacker once an iOS device has been jailbroken
SSRF-Testing
SSRF (Server Side Request Forgery) testing resources
sleepy-puppy
Deprecated please use https://github.com/Netflix/sleepy-puppy
GlobaLeaks
GlobaLeaks is free, open source software enabling anyone to easily set up and maintain a secure whistleblowing platform.