Tarchimb's Stars
ByteByteGoHq/system-design-101
Explain complex systems using visuals and simple terms. Help you prepare for system design interviews.
sharkdp/bat
A cat(1) clone with wings.
maybe-finance/maybe
The OS for your personal finances
OWASP/owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
ZoneMinder/zoneminder
ZoneMinder is a free, open source Closed-circuit television software application developed for Linux which supports IP, USB and Analog cameras.
infobyte/faraday
Open Source Vulnerability Management Platform
RhinoSecurityLabs/pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
teler-sh/teler
Real-time HTTP Intrusion Detection
TH3xACE/SUDO_KILLER
A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.
github/advisory-database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
trickest/inventory
Asset inventory of over 800 public bug bounty programs.
hmaverickadams/TCM-Security-Sample-Pentest-Report
Sample pentest report provided by TCM Security
assetnote/nowafpls
Burp Plugin to Bypass WAFs through the insertion of Junk Data
rmagatti/goto-preview
A small Neovim plugin for previewing definitions using floating windows.
secureCodeBox/secureCodeBox
secureCodeBox (SCB) - continuous secure delivery out of the box
ivan-sincek/penetration-testing-cheat-sheet
Work in progress...
notthehiddenwiki/NTHW
Not The Hidden Wiki - The largest repository of links related to cybersecurity
cisagov/vulnrichment
A repo to conduct vulnerability enrichment.
nagwww/s3-leaks
List of S3 Hacks
edoardottt/missing-cve-nuclei-templates
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
devanshbatham/headerpwn
A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers
joshskidmore/zsh-fzf-history-search
A simple zsh plugin that replaces Ctrl+R with an fzf-driven select which includes date/times.
nicholasaleks/graphql-threat-matrix
GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations
FofaInfo/Awesome-FOFA
The FOFA Library collects usage tips, common scenarios, F&Q, and more for FOFA.
20142995/nuclei-templates
nuclei-templates 5W+已校验
righettod/toolbox-pentest-web
Docker toolbox for pentest of web based application.
fkie-cad/nvd-json-data-feeds
Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endorsed nor certified by the NVD.
righettod/website-passive-reconnaissance
Script to automate, when possible, the passive reconnaissance performed on a website prior to an assessment.
synacktiv/laravel-crypto-killer
A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.
oscarpobletes/GitHubMines
GitHubMines is an extraction tool that allows you to perform a search on GitHub and bypass some limits established by GitHub GraphQL API. It retrieves information about repositories based on the provided search query, date range, and other parameters.