Stuart Gray's repositories
oh-my-zsh
A delightful community-driven (with 1,200+ contributors) framework for managing your zsh configuration. Includes 200+ optional plugins (rails, git, OSX, hub, capistrano, brew, ant, php, python, etc), over 140 themes to spice up your morning, and an auto-update tool so that makes it easy to keep up with the latest updates from the community.
awesome-shell
A curated list of awesome command-line frameworks, toolkits, guides and gizmos. Inspired by awesome-php.
bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
CMSeeK
CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and 130 other CMSs
django-DefectDojo
DefectDojo is an open-source application vulnerability correlation and security orchestration tool.
dorkbot
Command-line tool to scan Google search results for vulnerabilities
find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Groovy and Scala projects)
glutton
All eating honeypot
JohnTheRipper
This is the official repo for the Jumbo version of John the Ripper. The "bleeding-jumbo" branch (default) is based on 1.8.0-Jumbo-1 (but we are literally several thousands of commits ahead of it).
linWinPwn
linWinPwn is a bash script that automates a number of Active Directory Enumeration and Vulnerability checks
NodeGoat
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
nsjail
A light-weight process isolation tool, making use of Linux namespaces and seccomp-bpf syscall filters (with help of the kafel bpf language)
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with mi
toriptables3
Tor Iptables script is an anonymizer that sets up iptables and tor to route all services and traffic including DNS through the Tor network.
tornado
Anonymously Reverse Shell over Tor Network using Hidden services without Portforwarding.
trilium
Build your personal knowledge base with Trilium Notes
upx
UPX - the Ultimate Packer for eXecutables
uro
declutters url lists for crawling/pentesting
whistle
HTTP, HTTP2, HTTPS, Websocket debugging proxy