MoisesTapia
Development in Python and Shell IT Security, Pentester, Threat Hunting, DevSecOps Cl0wnR3v
Mexico
Pinned Repositories
awesome-malware-analysis
Defund the Police.
burpsuitecertifiedlabs
This repo is just a guide where you can find all labs of burp suite resolved, you can see the workflow and all type of web attacks
cheat.sh
the only cheat sheet you need
Docker4Pentesters
Hack-Stack
HiddenEye
Modern Phishing Tool With Advanced Functionality And Multiple Tunnelling Services [ Android-Support-Available ]
Infra-Basic
This project is a demo of the terraform work with the integration of Chef Inspec to be able to carry out IAC and later verification of the infrastructure
JwtTransversal
This script is just a baseline to PoC JWT path transversal, please feel free to contribuite to dis script
StalkPhish
StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
TWAPT
Deploy your own lab of web application penetration testing with docker and docker-compose, webgoat, dvwap, bwapp and Juice Shop
MoisesTapia's Repositories
MoisesTapia/Docker-Security
Getting a handle on container security
MoisesTapia/sqlmap
Automatic SQL injection and database takeover tool
MoisesTapia/AltoroJ
WARNING: This app contains security vulnerabilities. AltoroJ is a sample banking J2EE web application. It shows what happens when web applications are written with consideration of app functionality but not app security. It's a simple and uncluttered platform for demonstrating and learning more about real-life application security issues.
MoisesTapia/anchore-engine
A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification
MoisesTapia/arachni
MoisesTapia/dagda
a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities
MoisesTapia/dockscan
dockscan is security vulnerability and audit scanner for Docker installations
MoisesTapia/Getting-Started-Terraform
MoisesTapia/ICSim
Instrument Cluster Simulator
MoisesTapia/IoTGoat
IoTGoat is a deliberately insecure firmware created to educate software developers and security professionals with testing commonly found vulnerabilities in IoT devices.
MoisesTapia/jackhammer
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
MoisesTapia/NodeGoat
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
MoisesTapia/notary
Notary is a project that allows anyone to have trust over arbitrary collections of data
MoisesTapia/oxml_xxe
A tool for embedding XXE/XML exploits into different filetypes
MoisesTapia/Pentesting-Web
Este proyecto va enfocado a la seguridad informática y al Hacking Etico, pudiendo desplegar herramientas como Metasplotable, Dradis DVWAP.
MoisesTapia/privilege-escalation-awesome-scripts-suite
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
MoisesTapia/ProFTPD-1.3.3a
ProFTPD IAC Remote Root Exploit
MoisesTapia/redteam-research
Collection of PoC and offensive techniques used by the BlackArrow Red Team
MoisesTapia/s3-inspector
Tool to check AWS S3 bucket permissions
MoisesTapia/S3Scanner
Scan for open AWS S3 buckets and dump the contents
MoisesTapia/sqliv
massive SQL injection vulnerability scanner
MoisesTapia/sslyze
Fast and powerful SSL/TLS scanning library.
MoisesTapia/sysdig-inspect
Sysdig Inspect - A powerful opensource interface for container troubleshooting and security investigation
MoisesTapia/terrafirma
A static analysis tool for Terraform plans.
MoisesTapia/terraform-lightning-course
Source code for Terraform Lightning Course: https://www.youtube.com/playlist?list=PLozcbFx8FoPHM7n2DGLa6G8ZwtWFsVZsP
MoisesTapia/terraform-up-run
MoisesTapia/terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
MoisesTapia/tflint
TFLint is a Terraform linter focused on possible errors, best practices, etc. (Terraform >= 0.12)
MoisesTapia/xxelab
A simple web app with a XXE vulnerability.
MoisesTapia/xxeserve
XXE Out of Band Server.