Pinned Repositories
VulnWhisperer
Create actionable data from your Vulnerability Scans
metasploit-framework
Metasploit Framework
AutoXploit
Fast exploitation based on metasploit.
Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
blackhat-arsenal-tools
Official Black Hat Arsenal Security Tools Repository
Bootmiester
Advanced deauthentication script.
Ogre
The Ultimate Protocol Bruteforcer
Recon-X
Advanced Reconnaissance tool to enumerate attacking surface of the target.
reverseShell
Attacker can use the scripts to gain reverse shell of a target's machine.
Yashvendra's Repositories
Yashvendra/hackerone-reports
Top disclosed reports from HackerOne
Yashvendra/Pentest-Cheat-Sheets
A collection of snippets of codes and commands to make your life easier!
Yashvendra/armory
Anvilogic Forge
Yashvendra/awesome-appsec
A curated list of resources for learning about application security
Yashvendra/awesome-list-of-secrets-in-environment-variables
🦄🔒 Awesome list of secrets in environment variables 🖥️
Yashvendra/aws-incident-response
Yashvendra/aws-summarize-account-activity
Yashvendra/aws_breaking_changes
List of changes announced for AWS that may break existing code
Yashvendra/cartography-queries
Utilities for programmatic analysis of Cartography data.
Yashvendra/cloud-forensics-utils
Python library to carry out DFIR analysis on the Cloud
Yashvendra/cloudgrep
cloudgrep is grep for cloud storage
Yashvendra/ec2instances.info
Amazon EC2 instance comparison site
Yashvendra/ElectricEye
Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.
Yashvendra/former2
Generate CloudFormation / Terraform / Troposphere templates from your existing AWS resources.
Yashvendra/gcpwn
Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @WebbinRoot
Yashvendra/komiser
The open-source cloud environment inspector 👮
Yashvendra/nimbostratus
Tools for fingerprinting and exploiting Amazon cloud infrastructures
Yashvendra/NotQuite0DayFriday
This is a repo which documents real bugs in real software to illustrate trends, learn how to prevent or find them more quickly.
Yashvendra/papers-we-love
Papers from the computer science community to read and discuss.
Yashvendra/parliament
AWS IAM linting library
Yashvendra/Penetration-Testing-Tools
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.
Yashvendra/pip-audit
Audits Python environments and dependency trees for known vulnerabilities
Yashvendra/policy_sentry
IAM Least Privilege Policy Generator
Yashvendra/resoto
Resoto creates an inventory of your cloud, provides deep visibility, and reacts to changes in your infrastructure. ⚡️
Yashvendra/rspec
Rule Specification
Yashvendra/ScoutSuite
Multi-Cloud Security Auditing Tool
Yashvendra/scripts-lacework
Handy scripts and code snippets for use with Lacework.
Yashvendra/starbase
Graph-based security analysis for everyone
Yashvendra/trailscraper
A command-line tool to get valuable information out of AWS CloudTrail
Yashvendra/UPnProxyChain
A tool to create a SOCKS proxy server out of UPnProxy vulnerable device(s).