r0ug3's starred repositories
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
nginx-admins-handbook
How to improve NGINX performance, security, and other important things.
PENTESTING-BIBLE
articles
Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
GolangTraining
Training for Golang (go language)
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
Awesome-Red-Teaming
List of Awesome Red Teaming Resources
awesome-web-scraping
List of libraries, tools and APIs for web scraping and data processing.
Cheatsheet-God
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
iptables-essentials
Iptables Essentials: Common Firewall Rules and Commands.
Security-Research
Exploits written by the Rhino Security Labs team
DomainCheck
DomainCheck is designed to assist operators with monitoring changes related to their domain names. This includes negative changes in categorization, VirusTotal detections, and appearances on malware blacklists. DomainCheck currently works only with NameCheap.
HardeningAuditor
Scripts for comparing Microsoft Windows compliance with the ASD 1709 & Office 2016 Hardening Guides
Source2URL
Parse source code directories and output list of URLs that are then sent through a proxy.
threat_hunting_tables
Theat hunting notes in flat file format and mapped to MITRE's ATT&CK IDs
Presentations
Presentation Slides
cert-change-watcher
Alert when a issuer, or domain changes for a signed certificate
Penetration-Testing
Virtual scenario for Network Penetration Testing