oscerd

followers

following

stars

Red Hat

Rome, Italy

http://oscerd.github.io

Organizations

fabric8io

fusesource

hawtio

jboss-fuse

Andrea Cosentino's starred repositories

vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

Language:DockerfileMIT17126 574 179

PEASS-ng

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Language:C#NOASSERTION15444 227 182

trufflehog

Find and verify secrets

Language:GoAGPL-3.014555 169 607

gobuster

Directory/File, DNS and VHost busting tool written in Go

Language:GoApache-2.09343 152 278

AutoRecon

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

Language:PythonGPL-3.04965 101 164

langchain4j

Java version of LangChain

Language:JavaApache-2.04073 72 649

awesome-threat-detection

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

hackerone-reports

Top disclosed reports from HackerOne

Language:Python3405 137 9

InfoSec-Black-Friday

All the deals for InfoSec related software/tools this Black Friday

Gopherus

This tool generates gopher link for exploiting SSRF and gaining RCE in various servers

Language:PythonMIT2754 22 14

firefox_decrypt

Firefox Decrypt is a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles

Language:PythonGPL-3.01940 48 75

waymore

Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!

Language:PythonMIT1569 14 45

legba

A multiprotocol credentials bruteforcer / password sprayer and enumerator. 🥷

Language:RustNOASSERTION1334 13 44

KubeArmor

Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).

Language:GoApache-2.01318 22 599

linux-malware

Tracking interesting Linux (and UNIX) malware. Send PRs

Language:HTMLUnlicense1099 42 790

kafka-in-production

:books: Tech blogs & talks by companies that run Kafka in production

MIT888 170

certificate-ripper

🔐 A CLI tool to extract server certificates

Language:JavaApache-2.0684 15 11

aws2tf

aws2tf - automates the importing of existing AWS resources into Terraform and outputs the Terraform HCL code.

Language:PythonMIT-0526 20 67

CloudRecon

Language:GoMIT397 4 4

pantagrule

large hashcat rulesets generated from real-world compromised passwords

MIT386 110

websec-answers

Websec interview questions by tib3rius answered

cyclonedx-maven-plugin

Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects

Language:JavaApache-2.0283 15 185

nord-stream

Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently supports Azure DevOps, GitHub and GitLab.

Language:PythonGPL-3.0239 6 3

haklistgen

Turns any junk text into a usable wordlist for brute-forcing.

Language:Go211 8 1

top4grep

find relevant security papers published in the top-4 conferences (S&P, USENIX, CCS, NDSS)

Language:Python157 1 3

Terrapin-Artifacts

This repository contains the artifacts for the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".

Language:PythonApache-2.052 5 1

CTF-Repos

Material from CTF machines I have attempted

Language:Python28 60

echoserver

A test image for http1.1, http2, GRP, TCP, UDP protocols.

Language:Go13 10

potential-cassandra

CVE discovery

Language:Java1 30

camel-http-ssl

Language:JavaApache-2.0100