Warren Baker's starred repositories
MagInkDash
E-Ink Magic Dashboard that runs off a battery powered Inkplate 10; displaying content from Google Calendar, OpenWeatherMap and OpenAI that are retrieved and rendered by a Raspberry Pi.
frameless-bitb
A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented by login pages like Microsoft and the use with Evilginx.
My-Hunting-Methodology-
My Private Bug Hunting Methodology
webcopilot
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
awesome-security
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
MITMonster
A monster cheatsheet on MITM attacks
AD-AssessmentKit
Contains a collection of Bash scripts designed for comprehensive security audits and network mapping of Active Directory (AD) environments. The scripts automate various tasks including LDAP querying, Kerberos ticket analysis, SMB enumeration, and exploitation of known vulnerabilities like Zerologon and PetitPotam.
moonwalk-back
Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
Blue-Team-Tools
A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-Team defense under an active threat.
porch-pirate
Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitation of API endpoints and secrets committed to workspaces, collections, requests, users and teams. Porch Pirate can be used as a client or be incorporated into your own applications.
deepsecrets
Secrets scanner that understands code
roundcube-cve-2021-44026
A demo exploit for CVE-2021-44026, a SQL injection in Roundcube
MasterParser
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
DarkGate-Install-Script-via-DNS-TXT-Record
PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
SecurityResearcher-Note
Cover various security approaches to attack techniques and also provides new discoveries about security breaches.