Wes Ladd's repositories
quiet-riot
Unauthenticated enumeration of AWS, Azure, and GCP Principals
SubDomainizer
A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
avred
Analyse your malware to chirurgicaly obfuscate it
aws-api-models
A collection of documented and undocumented AWS API models
aws-public-account-ids
Publicly-listed AWS account IDs for easy lookup. Great for cleaning up false positives from unknown Account IDs in Cloudtrail
BypassAV
This map lists the essential techniques to bypass anti-virus and EDR
cleanlab
The standard data-centric AI package for data quality and machine learning with messy, real-world data and labels.
cloudformation-guard
A set of tools to check AWS CloudFormation templates for policy compliance using a simple, policy-as-code, declarative syntax
cloudshell
Xterm.js with a Go backend meant for use in containers
dnstwist
Domain name permutation engine for detecting typo squatting, phishing and corporate espionage
dockerfile-image-update
A tool that helps you get security patches for Docker images into production as quickly as possible without breaking things
domain-protect
Protect against subdomain takeover
domain-protect-gcp
Protect against subdomain takeover
FigmaChain
FigmaChain is a set of Python scripts that generate HTML/CSS code based on Figma designs. Using OpenAI's GPT-3 model, FigmaChain enables developers to quickly generate HTML/CSS code from a Figma design input. It also includes a Streamlit-based chatbot interface for interactive code generation.
hackingthe.cloud
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
leapp
Leapp is the tool to access your cloud; It securely stores your access information and generates temporary credential sets to access your cloud ecosystem from your local machine.
LLaMA-Factory
Easy-to-use LLM fine-tuning framework (LLaMA, BLOOM, Mistral, Baichuan, Qwen, ChatGLM)
mistral-go
Mistral API Client in Golang
partykit
PartyKit simplifies developing multiplayer applications
pentest-reports
Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.
Phishing.Database
Phishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains used for Phishing are still active.
subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.