Andrea Cosentino's starred repositories
trufflehog
Find and verify secrets
langchain4j
Java version of LangChain
awesome-threat-detection
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
hackerone-reports
Top disclosed reports from HackerOne
InfoSec-Black-Friday
All the deals for InfoSec related software/tools this Black Friday
firefox_decrypt
Firefox Decrypt is a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles
linux-malware
Tracking interesting Linux (and UNIX) malware. Send PRs
kafka-in-production
:books: Tech blogs & talks by companies that run Kafka in production
certificate-ripper
🔐 A CLI tool to extract server certificates
pantagrule
large hashcat rulesets generated from real-world compromised passwords
websec-answers
Websec interview questions by tib3rius answered
cyclonedx-maven-plugin
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
nord-stream
Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently supports Azure DevOps, GitHub and GitLab.
haklistgen
Turns any junk text into a usable wordlist for brute-forcing.
Terrapin-Artifacts
This repository contains the artifacts for the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".
echoserver
A test image for http1.1, http2, GRP, TCP, UDP protocols.
potential-cassandra
CVE discovery