magma2's repositories
AllThingsSSRF
This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
assetfinder
Find domains and subdomains related to a given domain
Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
awesome-reversing
A curated list of awesome reversing resources
awesome-web-security
🐶 A curated list of Web Security materials and resources.
BurpSQLTruncSanner
Messy BurpSuite plugin for SQL Truncation vulnerabilities.
Collabfiltrator
Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
crtndstry
Yet another subdomain finder
Cyber-Sec-Resources
An organized list of resources including tools, blog-posts and how-to tutorials compiled and created by SCSP community members.
DVSA
a Damn Vulnerable Serverless Application
GadgetProbe
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
Grapefruit
(WIP) Next generation Passionfruit. Runtime Application Instruments for iOS
HackingNeuralNetworks
A small course on exploiting and defending neural networks
HawkScan
Security Tool for Reconnaissance and Information Gathering on a website. (python 2.x & 3.x)
kubernetes-goat
Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.
nmapAutomator
A script that you can run in the background!
OWASP-Web-Checklist
OWASP Web Application Security Testing Checklist
Practical-Cryptography-for-Developers-Book
Practical Cryptography for Developers: Hashes, MAC, Key Derivation, DHKE, Symmetric and Asymmetric Ciphers, Public Key Cryptography, RSA, Elliptic Curves, ECC, secp256k1, ECDH, ECIES, Digital Signatures, ECDSA, EdDSA
Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
rustls
A modern TLS library in Rust
tplmap
Server-Side Template Injection and Code Injection Detection and Exploitation Tool