Pinned Repositories
0xRick.github.io
Infosec blog
alpine-3-7-apache-php5-6
LXD Image: Alpine 3.7 (Apache, PHP5.6)
awscanner
Finds internet-exposed resources in an AWS account
Benchmark
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
brew
🍺 The missing package manager for macOS (or Linux)
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
cli
GitHub’s official command line tool
colabcat
:smiley_cat: Running Hashcat on Google Colab with session backup and restore.
command-injection-payload-list
🎯 Command Injection Payload List
csv-injection-payloads
🎯 CSV Injection Payloads
Qp53CAToEI2wWrHhSOCO's Repositories
Qp53CAToEI2wWrHhSOCO/awscanner
Finds internet-exposed resources in an AWS account
Qp53CAToEI2wWrHhSOCO/Benchmark
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
Qp53CAToEI2wWrHhSOCO/brew
🍺 The missing package manager for macOS (or Linux)
Qp53CAToEI2wWrHhSOCO/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
Qp53CAToEI2wWrHhSOCO/Depix
Recovers passwords from pixelized screenshots
Qp53CAToEI2wWrHhSOCO/enum4linux
enum4Linux is a Linux alternative to enum.exe for enumerating data from Windows and Samba hosts.
Qp53CAToEI2wWrHhSOCO/GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can used to bypass local security restrictions in misconfigured systems
Qp53CAToEI2wWrHhSOCO/ILSpy
.NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!
Qp53CAToEI2wWrHhSOCO/Nettacker
Automated Penetration Testing Framework
Qp53CAToEI2wWrHhSOCO/O-Saft
O-Saft - OWASP SSL advanced forensic tool
Qp53CAToEI2wWrHhSOCO/owasp-mstg
The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.
Qp53CAToEI2wWrHhSOCO/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Qp53CAToEI2wWrHhSOCO/pwntools
CTF framework and exploit development library
Qp53CAToEI2wWrHhSOCO/Python-Honeypot
OWASP Honeypot, Automated Deception Framework.
Qp53CAToEI2wWrHhSOCO/RustScan
🤖 The Modern Port Scanner 🤖
Qp53CAToEI2wWrHhSOCO/SecurityShepherd
Web and mobile application security training platform
Qp53CAToEI2wWrHhSOCO/sherlock
🔎 Hunt down social media accounts by username across social networks
Qp53CAToEI2wWrHhSOCO/speech-to-text-nodejs
:microphone: Sample Node.js Application for the IBM Watson Speech to Text Service
Qp53CAToEI2wWrHhSOCO/sqlmap
Automatic SQL injection and database takeover tool
Qp53CAToEI2wWrHhSOCO/threat-dragon
An open source, online threat modelling tool from OWASP
Qp53CAToEI2wWrHhSOCO/threat-model-cookbook
This project is about creating and publishing threat model examples.
Qp53CAToEI2wWrHhSOCO/timeshift
System restore tool for Linux. Creates filesystem snapshots using rsync+hardlinks, or BTRFS snapshots. Supports scheduled snapshots, multiple backup levels, and exclude filters. Snapshots can be restored while system is running or from Live CD/USB.
Qp53CAToEI2wWrHhSOCO/tldr
📚 Collaborative cheatsheets for console commands
Qp53CAToEI2wWrHhSOCO/vopono
Run applications through VPN tunnels with temporary network namespaces
Qp53CAToEI2wWrHhSOCO/wfuzz
Web application fuzzer
Qp53CAToEI2wWrHhSOCO/WhatsMyName
This repository has the unified data required to perform user enumeration on various websites. Content is in a JSON file and can easily be used in other projects.
Qp53CAToEI2wWrHhSOCO/wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
Qp53CAToEI2wWrHhSOCO/www-project-web-security-testing-guide
The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.
Qp53CAToEI2wWrHhSOCO/xray
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
Qp53CAToEI2wWrHhSOCO/youtube-dl
Command-line program to download videos from YouTube.com and other video sites