Giters
Lorenzo Stella (phosphore)

phosphore

Geek Repo

149

followers

213

following

390

stars

Company:@wavemm

Location:Italy

Home Page:https://lorenzostella.it/

Twitter:@lorenzostella

Github PK Tool:Github PK Tool

Organizations
nsaway
PequalsNP-team
RevampMovies
wavemm

Lorenzo Stella's starred repositories

the_silver_searcher

A code-searching tool similar to ack, but faster.

Language:CLicense:Apache-2.0Stargazers:26103Issues:427Issues:841

lowdb

Simple and fast JSON database

Language:JavaScriptLicense:MITStargazers:21397Issues:240Issues:450

awless

A Mighty CLI for AWS

Language:GoLicense:Apache-2.0Stargazers:4976Issues:93Issues:269

terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Language:GoLicense:Apache-2.0Stargazers:4703Issues:68Issues:430

BITB

Browser In The Browser (BITB) Templates

Language:JavaScriptStargazers:2760Issues:57Issues:0

Burp-Non-HTTP-Extension

Non-HTTP Protocol Extension (NoPE) Proxy and DNS for Burp Suite.

Language:JavaStargazers:1388Issues:60Issues:61

enumerate-iam

Enumerate the permissions associated with AWS credential set

Language:PythonLicense:GPL-3.0Stargazers:1076Issues:17Issues:11

Windows-exploits

This project is only used for vulnerability verification to help security engineers better understand the system and carry out repair work. Please do not use it for other purposes.

Stargazers:1013Issues:24Issues:0

NimPlant

A light-weight first-stage C2 implant written in Nim.

Language:RustLicense:MITStargazers:789Issues:13Issues:22

regexploit

Find regular expressions which are vulnerable to ReDoS (Regular Expression Denial of Service)

Language:PythonLicense:Apache-2.0Stargazers:789Issues:14Issues:16

paranoid_crypto

Paranoid's library contains implementations of checks for well known weaknesses on cryptographic artifacts.

Language:PythonLicense:Apache-2.0Stargazers:785Issues:24Issues:10

weirdAAL

WeirdAAL (AWS Attack Library)

Language:PythonStargazers:774Issues:26Issues:55

tko-subs

A tool that can help detect and takeover subdomains with dead DNS records

Language:GoLicense:MITStargazers:740Issues:27Issues:22

tor-socks-proxy

🐳 Tiny Docker image (🤏 10MB) as 🧅 Tor SOCKS5 proxy 🛡

Language:DockerfileLicense:GPL-3.0Stargazers:533Issues:14Issues:32

xxeserve

XXE Out of Band Server.

Language:RubyStargazers:168Issues:7Issues:2

r2flutch

Tool to decrypt iOS apps using r2frida

Language:PythonLicense:GPL-3.0Stargazers:167Issues:5Issues:5

gatekeeper

GATEKEEPER: Inline and on-target defense

Language:CStargazers:119Issues:45Issues:42

calc_security_poc

A sample of proof of concept scripts that run Calc.exe with full source code.

Language:C++Stargazers:90Issues:4Issues:2

Poiana

Meterpreter Reverse shell over TOR network using hidden services

Language:PythonLicense:MITStargazers:89Issues:2Issues:7

frida-ios

Frida scripts

Language:JavaScriptLicense:GPL-3.0Stargazers:45Issues:4Issues:1

confuser

Dependency Confusion Security Testing Tool

Language:PythonStargazers:39Issues:3Issues:7

evil

Linux netfilter module to toggle evil bit (RFC 3514) in all outgoing IPv4 packets

Language:CLicense:GPL-2.0Stargazers:27Issues:4Issues:1

request-filtering-agent

An http(s).Agent implementation that block request Private/Reserved IP addresses. Prevent SSRF.

Language:TypeScriptLicense:MITStargazers:21Issues:4Issues:9

electronegativity-action

The action integrates Electronegativity, a tool to identify misconfigurations and security anti-patterns in Electron applications, into GitHub CI/CD.

Stargazers:14Issues:3Issues:1

imagemagick-security-policy-evaluator

The ImageMagick Security Policy Evaluator allows developers and security experts to check if an XML Security Policy is hardened against a wide set of malicious attacks. It assists with the process of reviewing such policies, which is usually a manual task, and helps identify the best practices for ImageMagick deployments.

Language:JavaScriptStargazers:14Issues:4Issues:3

Not-In-Pentesting-Class

The Dirty Secrets They Didn't Teach You In Pentesting Class

Language:RubyStargazers:13Issues:4Issues:0

jwe-sender

Language:HTMLStargazers:11Issues:2Issues:1

GitSh1t

I am a simple shell script that downloads all repositories from a user and then hunts them for sh1t.

Language:ShellStargazers:11Issues:3Issues:0

electrolint

An open source VSCode plugin for Electron applications

Language:TypeScriptLicense:MITStargazers:10Issues:0Issues:0

CVE-2020-9283

Exploit for CVE-2020-9283 based on Go

Language:GoStargazers:4Issues:2Issues:0