Andre Silva's repositories
badPods
A collection of manifests that will create pods with elevated privileges.
bashscripts
Repositorio utilizado para armazenar scripts de estudo
bitcoin
Bitcoin Core integration/staging tree
checkov
Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
devops-exercises
Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP, DNS, Elastic, Network, Virtualization. DevOps Interview Questions
devsecops-1
The Material theme from MkDocs provided as a Jekyll template, optimized for GitHub Pages
django-DefectDojo
DefectDojo is an open-source application vulnerability correlation and security orchestration tool.
docker-bench
Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark
faraday
Collaborative Penetration Test and Vulnerability Management Platform
fundamentos-engenharia-reversa
Livro: Fundamentos de Engenharia Reversa
getting-started
Getting started with Docker
gMSADumper
Lists who can read any gMSA password blobs and parses them if the current user has access.
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
huskyCI
Performing security tests inside your CI
impacket
Impacket is a collection of Python classes for working with network protocols.
landscape
🌄The Cloud Native Interactive Landscape filters and sorts hundreds of projects and products, and shows details including GitHub stars, funding or market cap, first and last commits, contributor counts, headquarters location, and recent tweets.
ldapdomaindump
Active Directory information dumper via LDAP
localstack
💻 A fully functional local AWS cloud stack. Develop and test your cloud & Serverless apps offline!
MalwareSourceCode
Collection of malware source code for a variety of platforms in an array of different programming languages.
opencspm
Open Cloud Security Posture Management Engine
OSINT-Brazuca
Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
Polkit-exploit
Privilege escalation with polkit - CVE-2021-3560
Presentations
Some of my presentations and published articles in different conferences
scorecard
Security Scorecards - Security health metrics for Open Source
ScoutSuite
Multi-Cloud Security Auditing Tool
SILENTTRINITY
An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
silva-andrre
Config files for my GitHub profile.
theZoo
A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
vapi
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios in the means of Exercises.