Blessen Thomas's repositories
AAPG
[A]ndroid [A]pplication [P]entest [G]uide
amicontained
Container introspection tool. Find out what container runtime is being used as well as features available.
android-webview-security-challeges
This repository contains two apps where your task is to extract data of secretfunction from your own controlled website using the webview......Find the security flaw and see how you can exploit the webview......
awesome-burp-suite
Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
awesome-vehicle-security
🚗 A curated list of resources for learning about vehicle security and car hacking.
botb
A container analysis and exploitation tool for pentesters and engineers.
breaking-and-pwning-apps-and-servers-aws-azure-training
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
Damn_Vulnerable_Device_Driver
Damn vulnerable linux device driver for people to play with.
defcon-26-workshop-attacking-and-auditing-docker-containers
DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
Defending-DevOps
Lab Material for the Two-Day Defending Modern DevOps Environments Course
Docker-Security
Getting a handle on container security
DVFaaS-Damn-Vulnerable-Functions-as-a-Service
Intentionally Vulnerable Serverless Functions to understand the specifics of Serverless Security Vulnerabilities
DVSA
a Damn Vulnerable Serverless Application
dvws
Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn real world web service vulnerabilities. NOTE: This project is out of date, please use https://github.com/snoopysecurity/dvws-node
kube-auto-analyzer
Kubernetes Auto Analyzer
kubernetes-rbac-audit
Tool for auditing RBACs in Kubernetes
KubiScan
A tool to scan Kubernetes cluster for risky permissions
ostorlab_insecureApp
Vulnerable Android application for Ostolab Security Scanner
peirates
Peirates - Kubernetes Penetration Testing tool
Pentest-Notes
Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)
pwn_jenkins
Notes about attacking Jenkins servers
Redpoint
Digital Bond's ICS Enumeration Tools
serverless-prey
Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions
SkyArk
SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
SQL-Injection-Payloads
SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...
WaTF-Bank
WaTF Bank - What a Terrible Failure Mobile Banking Application for Android and iOS