ls4cfk

Aleksi Kistauri's starred repositories

Docker-OSX

Run macOS VM in a Docker! Run near native OSX-KVM in Docker! X11 Forwarding! CI/CD for OS X Security Research! Docker mac Containers.

Language:ShellGPL-3.036107 382 601

nativefier

Make any web page a desktop application

Language:TypeScriptMIT34763 440 1237

cli

🥧 HTTPie CLI — modern, user-friendly command-line HTTP client for the API era. JSON support, colors, sessions, downloads, plugins & more.

Language:PythonBSD-3-Clause32714 87 863

evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

Language:GoBSD-3-Clause10259 290 853

katana

A next-generation crawling and spidering framework.

Language:GoMIT10229 88 273

yakit

Cyber Security ALL-IN-ONE Platform

Language:TypeScriptAGPL-3.06242 347 772

apk-mitm

🤖 A CLI application that automatically prepares Android APK files for HTTPS inspection

Language:TypeScriptMIT3606 44 144

Fuzzing101

An step by step fuzzing tutorial. A GitHub Security Lab initiative

Apache-2.02368 54 22

one_gadget

The best tool for finding one gadget RCE in libc.so.6

Language:RubyMIT1994 27 33

weird_proxies

Reverse proxies cheatsheet

Language:Python1733 58 5

IIS-ShortName-Scanner

latest version of scanners for IIS short filename (8.3) disclosure vulnerability

Language:Java1327 30 31

cook

A wordlist framework to fullfill your kinks with your wordlists. For security researchers, bug bounty and hackers.

Language:GoMIT965 20 15

mapcidr

Utility program to perform multiple operations for a given subnet/CIDR ranges.

Language:GoMIT954 27 47

damn-vulnerable-defi

The offensive security playground for the decentralized finances.

Language:SolidityMIT841 13 6

Web-Cache-Vulnerability-Scanner

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

Language:GoNOASSERTION821 16 15

cookiemonster

🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.

Language:GoMIT760 11 6

damn-vulnerable-defi

Language:SolidityMIT651 13 8

bbrf-client

The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices

Language:PythonMIT582 25 98

webapp-wordlists

This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contains a wordlist of all the files directories for this version.

482 12 1

hbctool

Hermes Bytecode Reverse Engineering Tool (Assemble/Disassemble Hermes Bytecode)

Language:PythonMIT413 12 30

beanshooter

JMX enumeration and attacking tool.

Language:JavaGPL-3.0368 9 16

react-native-decompiler

Decompile React Native Android/IOS Bundle.

Language:TypeScriptAGPL-3.0253 8 16

request_smuggler

Http request smuggling vulnerability scanner

Language:RustGPL-3.0221 8 3

CVE-2022-44268

A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read

Language:Rust213 2 2

mkpath

Make URL path combinations using a wordlist

Language:GoMIT169 3 3

jwt-reauth

Language:JavaApache-2.0101 10 4

Snowflake

Snowflake is a tool for exploiting randomness vulnerabilities by seed recovery attacks targetting the rand() and mt_rand() generators in PHP applications.

Language:C83 12 2

Sapito

A mDNS sniffer and interpreter.

Language:PythonGPL-3.078 6 1

burp-browser-profiles

Make better use of the embedded browser that comes by default with Burp

Language:PythonMIT38 10

PHDays9

My fuzzing workshop from PHDays9

27 30