Blessen Thomas's repositories
AWAE-PREP
This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with the AWAE course. This repo will likely contain custom code by me and various courses.
awesome-static-analysis
Static analysis tools for all programming languages
burp-flow
Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
burp-jwt-fuzzhelper-extension
JWT Fuzzer for BurpSuite
Command-Mobile-Penetration-Testing-Cheatsheet
Mobile penetration testing android command cheatsheet
container-breakouts
Testing/collecting some container breakouts
cs-suite
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
DockerSecurityPlayground
A Microservices-based framework for the study of Network Security and Penetration Test techniques
evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Exploit_Development_OSCE
All exploits written during OSCE preparation
flutter-app
Sample Flutter application for Android
frida-cycript
Cycript fork powered by Frida.
Hackthebox-writeups
Most of my write-ups for completed Hackthebox.eu machines.
handouts
materials we hand out
harpoon
A collection post-exploitation scripts for determining if that shell you just got is in a container, what kind, and ways to escape.
juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
kube-goat
A deliberately vulnerable Kubernetes cluster
meetup
Slides of IT-Security Meetup Kassel
MeetupMaterial
This repository contains presentations and potentially course/example material.
payloads
Git All the Payloads! A collection of web attack payloads.
RE-iOS-Apps
A completely free, open source and online course about Reverse Engineering iOS Applications.
skf-labs
Repo for all the OWASP-SKF Docker lab examples
TrustedIntents
library for flexible trusted interactions between Android apps
vulscan
Advanced vulnerability scanning with Nmap NSE
Wordlists
Various Payload wordlists
XSS-Payloads-1
List of XSS Vectors/Payloads