websecresearch's repositories
agentic_security
Agentic LLM Vulnerability Scanner
bandit
Bandit is a tool designed to find common security issues in Python code.
Blockchain-dark-forest-selfguard-handbook
Blockchain dark forest selfguard handbook. Master these, master the security of your cryptocurrency.
CrimsonEDR
Simulate the behavior of AV/EDR for malware development training.
CVE-2024-32002
CVE-2024-32002 RCE PoC
f1rstResponder
f1rstResponder is designed to act as a honeypot for instances of responder running on a network.
fabric
fabric is an open-source framework for augmenting humans using AI. It provides a modular framework for solving specific problems using a crowdsourced set of AI prompts that can be used anywhere.
Findomain
The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.
fuzz.txt
Potentially dangerous files
gungnir
CT Log Scanner
http-garden
Differential testing and fuzzing of HTTP servers and proxies
irene
I AM SHER LOCKED. Dashboard for Appknox Users.
IronSharpPack
IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then reflective load the C# project.
karma_v2
β‘·β πππππ ππΈβ β’Ύ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)
knock
Knock Subdomain Scan
nim-shell
Reverse shell that can bypass windows defender detection
nodejsscan
nodejsscan is a static security code scanner for Node.js applications.
OneListForAll
Rockyou for web fuzzing
personal-security-checklist
π A compiled checklist of 300+ tips for protecting digital security and privacy in 2024
reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
spotbugs
SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
subfuz
A subdomain fuzzing tool
svn-extractor
simple script to extract all web resources by means of .SVN folder exposed over network.
ultimate_discovery
Ultimate Wordlist for Web Content Discovery
wordlists
Automated & Manual Wordlists provided by Assetnote
wtfis
Passive hostname, domain and IP lookup tool for non-robots