python4004's repositories
Sneakymailer-HTB
Sneakymailer is a linux machine from hack the box
SplunkWhisperer2
Local privilege escalation, or remote code execution, through Splunk Universal Forwarder (UF) misconfigurations
Privilege-Escalation
This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.
Awesome-WAF
🔥 Everything about web-application firewalls (WAF).
brakeman
A static analysis security vulnerability scanner for Ruby on Rails applications
Broken-brute-force-protection-multiple-credentials-per-request
Portswigger Lab: Broken brute-force protection, multiple credentials per request
can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
community-scripts
A collection of ZAP scripts provided by the community - pull requests very welcome!
container-security-checklist
Checklist for container security - devsecops practices
crtfinder
Simple script tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com
CVE-2020-9484-Mass-Scan
CVE-2020-9484 Mass Scanner, Scan a list of urls for Apache Tomcat deserialization (CVE-2020-9484) which could lead to RCE
deepdarkCTI
Collection of Cyber Threat Intelligence sources from the deep and dark web
learn365
This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.
p0wny-shell
Single-file PHP shell
privilege-escalation-awesome-scripts-suite
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
python4004.github.io
Leaf - Jekyll Theme
Rails-doubletap-RCE
RCE on Rails 5.2.2 using a path traversal (CVE-2019-5418) and a deserialization of Ruby objects (CVE-2019-5420)
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
syntribos
Python API security testing tool from OpenStack Security Group