zrthstr's starred repositories
gh-hijack-runner
A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.
iam-vulnerable
Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
neuroglancer
WebGL-based viewer for volumetric data
graphquail
Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
tracker-scraper
A simple torrent tracker scraper
rbac-police
Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
CVE-2023-4911
CVE-2023-4911 proof of concept
prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
awesome-google-vrp-writeups
🐛 A list of writeups from the Google VRP Bug Bounty program
cartography-queries
Utilities for programmatic analysis of Cartography data.
computer-science
:mortar_board: Path to a free self-taught education in Computer Science!
SecurityExplained
SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.
PurplePanda
Identify privilege escalation paths within and across different clouds
libgen_torrent_cardiography
Monitor Library Genesis and Sci-Hub's torrent health
Shellcode-Encryptor
A simple shell code encryptor/decryptor/executor to bypass anti virus.