R4LPz

R4LPz's Stars

• swisskyrepo/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python61.1k1.8k014.6k

• shieldfy/API-Security-Checklist

  Checklist of the most important security countermeasures when designing, testing, and releasing your API

  22.5k544432.6k

• projectdiscovery/katana

  A next-generation crawling and spidering framework.

  Language:Go11.2k89290594

• projectdiscovery/subfinder

  Fast passive subdomain enumeration tool.

  Language:Go10.2k1554541.3k

• A-poc/RedTeam-Tools

  Tools and Techniques for Red Team / Penetration Testing

  6k994816

• EdOverflow/can-i-take-over-xyz

  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

  Language:Python4.8k128239715

• projectdiscovery/naabu

  A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

  Language:Go4.7k69346549

• aws-samples/aws-serverless-workshops

  Code and walkthrough labs to set up serverless applications for Wild Rydes workshops

  Language:JavaScript4.2k2711312.6k

• cdk-team/CDK

  📦 Make security testing of K8s, Docker, and Containerd easier.

  Language:Go3.9k6944543

• dafthack/CloudPentestCheatsheets

  This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.

  2.6k1031511

• tomnomnom/hacks

  A collection of hacks and one-off scripts

  Language:Go2.1k8335636

• 4ndersonLin/awesome-cloud-security

  🛡️ Awesome Cloud Security Resources ⚔️

  2.1k452315

• osintbrazuca/osint-brazuca

  Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.

  1.6k9120209

• Ch0pin/medusa

  Binary instrumentation framework based on FRIDA

  Language:Python1.6k4444234

• hakluke/hakrevdns

  Small, fast tool for performing reverse DNS lookups en masse.

  Language:Go1.4k199156

• j3ssie/metabigor

  OSINT tools and more but without API key

  Language:Go1.2k2424168

• CyberSecurityUP/Awesome-Cloud-PenTest

  687270182

• OWASP/DVSA

  a Damn Vulnerable Serverless Application

  Language:JavaScript5342223190

• nahamsec/lazys3

  Language:Ruby531126121

• serverlesspub/imagemagick-aws-lambda-2

  ImageMagick for AWS Lambda 2 runtimes

  Language:JavaScript259832163

• wh0isdxk/MobileSecurity

  Conteúdo em português sobre segurança em Dispositivos Móveis.

  168607

• adhorn/aws-lambda-layer-chaos-injection

  AWS Lambda Layers to inject latency into AWS Lambda Functions

  Language:Python485111

• limkokholefork/karma

  Find leaked emails with your passwords. demo:

  Language:Python403038

• c3r34lk1ll3r/StagMan

  An helper for mobile applications analysis

  Language:Python10302

• gunnargrosch/serverless-chaos-demo

  This example demonstrates how to use Adrian Hornsby's Failure Injection Layer (https://github.com/adhorn/FailureInjectionLayer) to perform chaos engineering experiments on a serverless environment.

  Language:Python7305

• rodnt/CogSpy

  Strainghtforward utility to pentesting cognito sites

  Language:Python6100

• Voulnet/InjectMyServerlessEvent

  A sample AWS Lambda code that contains a Serverless Event Injection vulnerability (OS injection).

  Language:Python6403

• theburningmonk/lambda-failure-injection-demos

  Demos for injection failures to a serverless app

  Language:HTML530

• zeroc00I/reclame_aqui_scrapper

  .

  Language:Python410

• darlintonprauchner/cloud-code-injection-example

  Example of code injection using AWS Lambdas

  Language:JavaScript10