0xb1tByte

0xb1tByte's Stars

• NickstaDB/SerializationDumper

  A tool to dump Java serialization streams in a more human readable form.

  Language:Java992125

• NickstaDB/DeserLab

  Java deserialization exploitation lab.

  Language:Java23748

• cobbr/Covenant

  Covenant is a collaborative .NET C2 framework for red teamers.

  Language:C#4.2k773

• logstash-plugins/logstash-input-example

  Example input plugin. This should help bootstrap your effort to write your own input plugin!

  Language:Ruby2143

• miollek/Free-Elasticsearch-Books

  18162

• logstash-plugins/logstash-filter-java_filter_example

  EXPERIMENTAL: Example Java filter plugin for Logstash to bootstrap your effort to write your own Java filter plugin!

  Language:Java1836

• ninfo-py/ninfo

  Plugin based information gathering library

  Language:Python278

• fastly/ftw

  Framework for Testing WAFs (FTW!)

  Language:Python26458

• coreruleset/coreruleset

  OWASP CRS (Official Repository)

  Language:Python2.3k382

• jtmelton/appsensor

  A toolkit for building self-defending applications through real-time event detection and response

  Language:JavaScript278102

• owasp-modsecurity/ModSecurity

  ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.

  Language:C++8.3k1.6k

• attackercan/regexp-security-cheatsheet

  Language:PHP710105

• wburgers/Session-Binding-Proxy

  An Nginx module capable of binding the application session to the SSL session by encrypting the application cookie with a secret key and the SSL master key

  Language:C147

• nginxinc/nginx-wiki

  ARCHIVED -- Source for the now archived NGINX Wiki section of https://www.nginx.com

  Language:HTML290309

• SamuraiWTF/samuraiwtf

  The main SamuraiWTF collaborative distro repo.

  Language:Shell468119

• webpwnized/mutillidae

  OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, security enthusiasts, classrooms, CTF, and vulnerability assessment tool targets.

  Language:PHP1.3k414

• payloadbox/xxe-injection-payload-list

  🎯 XML External Entity (XXE) Injection Payload List

  1.1k302

• staaldraad/xxeserv

  A mini webserver with FTP support for XXE payloads

  Language:Go32656

• 0xRick/0xRick.github.io

  Infosec blog

  Language:HTML13034

• frohoff/ysoserial

  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

  Language:Java7.8k1.8k

• TCM-Course-Resources/Windows-Privilege-Escalation-Resources

  Compilation of Resources from TCM's Windows Priv Esc Udemy Course

  700235

• itm4n/PrivescCheck

  Privilege Escalation Enumeration Script for Windows

  Language:PowerShell3k434

• RPISEC/MBE

  Course materials for Modern Binary Exploitation by RPISEC

  Language:C5.5k882

• feakk/xxxpwn

  Advanced XPath Injection Tool

  Language:Python3213

• wireghoul/dotdotpwn

  DotDotPwn - The Directory Traversal Fuzzer

  Language:Perl990177

• 1N3/IntruderPayloads

  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

  Language:BlitzBasic3.7k1.2k

• payloadbox/sql-injection-payload-list

  🎯 SQL Injection Payload List

  5k1.2k

• danielhnmoreno/Xpath-Blind-Explorer

  XPath Blind Explorer tool

  62

• cure53/H5SC

  HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors

  Language:JavaScript2.9k420

• IVMachiavelli/OSINT_Team_Links

  Links for the OSINT Team

  573112