zuBux

drydock

drydock provides a flexible way of assessing the security of your Docker daemon configuration and containers using editable audit templates

badbucket

badbucket checks your s3 bucket for common misconfigurations

pyfuzzer

Quick 'n' dirty file format fuzzer utilizing zzuf mutation techniques

CSPgen

Content Security Policy semi-automatic generator in Python

aloe-security-features

BDD security-related features and steps for Aloe

zubu.re

Backup for my personal website

actuary

An actuary is a business professional who analyzes the financial consequences of risk.

adr-log

Generate an architectural decision record log (adr-log) out of architectural decision records (ADRs)

afl

american fuzzy lop (copy of the source code for easy access)

afl-slave

Containerized Jenkins build slave for fuzzing purposes

beef

The Browser Exploitation Framework Project

certstream-go

Go library for connecting to CertStream

clair

Vulnerability Static Analysis for Containers

cosign

Container Signing

crashwalk

Bucket and triage on-disk crashes. OSX and Linux.

gitrob

Reconnaissance tool for GitHub organizations

gophish

Open-Source Phishing Toolkit

homepage

Code for my homepage

obsidian-starter-templates

:rocket: Starter templates for Obsidian.md

p4transfer

[Community Supported] Utility for transferring a subset of files (with complete history of all changelists) from one Helix Core repository to another, only requiring read access to the source repository.

parliament

AWS IAM linting library

qark

Tool to look for several security related Android application vulnerabilities

safe-commit-hook

pre-commit hook for Git that checks for suspicious files.

SlackPirate

Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace

smalisca

Static Code Analysis for Smali files

spamcan

Spam trap management

write-ups

Wiki-like CTF write-ups repository, maintained by the community.

zaproxy

The OWASP ZAP core project

zuBux.github.io