taiji-xo's repositories
awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
Awesome-web3-Security
A curated list of web3Security materials and resources For Pentesters and Bug Hunters.
AWSCertifiedSolutionsArchitectUnofficialStudyGuide
비공식 AWS 공인 솔루션스 아키텍트 – 어소시에이트 시험 가이드
checksec.sh
Checksec.sh
cloudgoat
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
ctf-writeups-1
My writeups of various CTFs & security challenges
CVE-2021-44228-Apache-Log4j-Rce
Apache Log4j 远程代码执行
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
former2
Generate CloudFormation / Terraform / Troposphere templates from your existing AWS resources.
frida-android-unpinning
A Frida script to disable SSL certificate pinning in a target application
frida-ios-dump
pull decrypted ipa from jailbreak device
go-reverse-shell
A basic shell made in go for windows and linux
Hacking-Windows
A FREE Windows C development course where we will learn the Win32API and reverse engineer each step utilizing IDA Free in both an x86 and x64 environment.
ImHex
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
JNDI-Injection-Exploit
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
Keka
The macOS file archiver
log4shell-vulnerable-app
Spring Boot web application vulnerable to CVE-2021-44228, nicknamed Log4Shell.
Log4shell_JNDIExploit
Among the existing Log4shell practice materials JNDIExploit v1.2
MagiskTrustUserCerts
A Magisk module that automatically adds user certificates to the system root CA store
MBE
Course materials for Modern Binary Exploitation by RPISEC
mousejiggler
Mouse Jiggler is a very simple piece of software whose sole function is to "fake" mouse input to Windows, and jiggle the mouse pointer back and forth.
ntfstool
Forensics tool for NTFS (parser, mft, bitlocker, deleted files)
nuclei-templates
Community curated list of templates for the nuclei engine to find a security vulnerability in the application.
owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
prowler
Prowler is an Open Source security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing