taiji-xo's repositories
RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
Awesome-web3-Security
A curated list of web3Security materials and resources For Pentesters and Bug Hunters.
Keka
The macOS file archiver
checksec.sh
Checksec.sh
owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
prowler
Prowler is an Open Source security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
nuclei-templates
Community curated list of templates for the nuclei engine to find a security vulnerability in the application.
ImHex
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
frida-android-unpinning
A Frida script to disable SSL certificate pinning in a target application
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
former2
Generate CloudFormation / Terraform / Troposphere templates from your existing AWS resources.
ctf-writeups-1
My writeups of various CTFs & security challenges
ntfstool
Forensics tool for NTFS (parser, mft, bitlocker, deleted files)
cloudgoat
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
AWSCertifiedSolutionsArchitectUnofficialStudyGuide
비공식 AWS 공인 솔루션스 아키텍트 – 어소시에이트 시험 가이드
Hacking-Windows
A FREE Windows C development course where we will learn the Win32API and reverse engineer each step utilizing IDA Free in both an x86 and x64 environment.
mousejiggler
Mouse Jiggler is a very simple piece of software whose sole function is to "fake" mouse input to Windows, and jiggle the mouse pointer back and forth.
frida-ios-dump
pull decrypted ipa from jailbreak device
CVE-2021-44228-Apache-Log4j-Rce
Apache Log4j 远程代码执行
log4shell-vulnerable-app
Spring Boot web application vulnerable to CVE-2021-44228, nicknamed Log4Shell.
Log4shell_JNDIExploit
Among the existing Log4shell practice materials JNDIExploit v1.2
JNDI-Injection-Exploit
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
MBE
Course materials for Modern Binary Exploitation by RPISEC
go-reverse-shell
A basic shell made in go for windows and linux
MagiskTrustUserCerts
A Magisk module that automatically adds user certificates to the system root CA store