shariqmalik

Shariq Malik's starred repositories

prowler

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

Language:PythonApache-2.010620 127 917

clair

Vulnerability Static Analysis for Containers

Language:GoApache-2.010286 225 665

apkleaks

Scanning APK file for URIs, endpoints & secrets.

Language:PythonApache-2.04872 79 58

afrog

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Language:GoMIT3383 52 111

profile-readme-generator

🎨 Enhance your GitHub profile with this amazing tool, which allows you to create a personalized README quickly and easily. This profile README generator is the best you'll find 🚀

Language:TypeScriptMIT1588 17 36

PoolParty

A set of fully-undetectable process injection techniques abusing Windows Thread Pools

Language:C++BSD-3-Clause922 13 3

Shockwave-OSS

740 350

Leaked-Credentials

how to look for Leaked Credentials !

731 11 2

r4ven

Track the GPS location of the user's smartphone or PC and capture a picture of the target, along with IP and device information.

Language:HTMLMIT621 19 7

nmap-did-what

Nmap Dashboard Mini Project

Language:PythonGPL-2.0508 5 9

Moriarty

Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in Windows environments.

Language:C#GPL-3.0468 9 5

iam-vulnerable

Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.

Language:HCLMIT467 18 3

BackupOperatorToDA

From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller

Language:C++394 7 3

LetMeowIn

A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.

Language:C++360 9 5

gplaydl

Command Line Google Play APK downloader. Download APK files to your PC directly from Google Play Store.

Language:PythonMIT350 5 27

gocheck

Because AV evasion should be easy.

Language:Go300 2 3

ICS-Pentesting-Tools

A curated list of tools related to Industrial Control System (ICS) security and Penetration Testing

CC-BY-4.0265 13 2

bambdas

Bambdas collection for Burp Suite Professional and Community.

Language:JavaLGPL-3.0193 8 7

Task-Ninja

Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!

Language:GoGPL-3.0142 30

HackTheBox-Reporting

Hack The Box CPTS, CBBH Exam and Lab Reporting / Note-Taking Tool

118 3 2

bgpipe

BGP reverse proxy and firewall

Language:GoMIT106 2 2

AD-Pentesting-Tools

All about Active Directory pentesting

Language:PowerShell86 30

whispers

Identify hardcoded secrets in static structured text (version 2)

Language:PythonBSD-3-Clause85 1 8

AcuAutomate

Unofficial Acunetix CLI tool for automated pentesting and bug hunting across large scopes.

Language:PythonGPL-3.070 1 4

CVE-2023-36884-MS-Office-HTML-RCE

MS Office and Windows HTML RCE (CVE-2023-36884) - PoC and exploit

Language:Python35 2 1

CVE-2024-25600_Nuclei-Template

Nuclei template and information about the POC for CVE-2024-25600

27 10

KnowledgeBase

Open Source and publicly modifiable knowledgebase about CyberSecurity Topics, Concepts, and Terminology. This replaces our prior repo which included basic install guides and tools.

Language:Roff12 30

CRTO-Lab-Status

Posts the latest status of CRTO labs, running/stopped and hours in Discord/Slack

Language:PythonMIT200

exploitation-course

Offensive Software Exploitation Course

100

osed-scripts

bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)

MIT100