Blessen Thomas's repositories
agartha
a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to spot authentication/authorization issues, and converts Http requests to Javascript for further XSS exploitation and more.
alerting-detection-strategy-framework
A framework for developing alerting and detection strategies for incident response.
Awesome-web3-Security
A curated list of web3Security materials and resources For Pentesters and Bug Hunters.
AWSealion
A tool to keep AWS pentests efficient, organized, and stealthy.
azure-finder
Simple script to find all Azure-based assets given a domain list
burp-extensions
Burp Extensions
cloud-security-remediation-guides
Security Remediation Guides
container-security-checklist
Checklist for container security - devsecops practices
ghsec-jaeles-signatures
Signatures for jaeles scanner by @j3ssie
iOS
Most usable tools for iOS penetration testing
kiterunner
Contextual Content Discovery Tool
medaudit
A tool for auditing medical devices and healthcare infrastructure
Mockingjay---Vulnerable-DLL-Finder
Mockingjay Process Injection Vulnerable DLL Finder
Mysignature
Jaeles SIgnature
Nuclei-Templates-Collection
Nuclei Templates Collection
OneListForAll
Rockyou for web fuzzing
owasp-fstm
The Firmware Security Testing Methodology (FSTM) is composed of nine stages tailored to enable security researchers, software developers, consultants, hobbyists, and Information Security professionals with conducting firmware security assessments.
PurplePanda
Identify privilege escalation paths within and across different clouds
RedTeam-OffensiveSecurity
Tools & Interesting Things for RedTeam Ops