benwalther's Stars
Prochainezo/xss2shell
Tool for abusing XSS vulnerabilities on Wordpress and Joomla! installations
jpetazzo/dockerfiles
Various Dockerfiles for different images
Ettack/POC-CVE-2014-0166
POC of CVE-2014-0166 (WordPress cookie forgery vulnerability)
ncrocfer/weevely3
Weaponized web shell
ncrocfer/csr2f
CSR2F is a Python tool used for generating CSRF (Cross-Site Request Forgery) exploits
jbfink/docker-wordpress
Dockerfile and etc for a Wordpress docker image
tresacton/exploits
Exploits that are mostly ready to use. They either require no modification or have been modified and verified as functional.
thomaspatzke/Burp-MissingScannerChecks
Collection of scanner checks missing in Burp
thomaspatzke/Burp-SessionAuthTool
Burp plugin which supports in finding privilege escalation vulnerabilities
hyperhq/hyperd
HyperContainer Daemon
canonical/lxd
Powerful system container and virtual machine manager
4ltern4te/attacksible
Ansible Provisioned Security Testing Platform
appc/spec
App Container Specification and Tooling (archived, see https://github.com/rkt/rkt/issues/4024)
banyanops/collector
A framework for Static Analysis of Docker container images
docker/docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
madzak/python-json-logger
Json Formatter for the standard python logger
toastdriven/restless
A lightweight REST miniframework for Python.
falconry/falcon
The no-magic web data plane API and microservices framework for Python developers, with a focus on reliability, correctness, and performance at scale.
kiorky/spynner
Programmatic web browsing module with AJAX support for Python
dhamaniasad/HeadlessBrowsers
A list of (almost) all headless web browsers in existence
cobrateam/splinter
splinter - python test framework for web applications
Arachni/build-scripts
Build scripts used to prepare self-contained packages of Arachni.
andresriancho/w3af-moth
A set of vulnerable PHP scripts used to test w3af's vulnerability detection features.
andresriancho/w3af-webui
Django Web UI contributed by Yandex for w3af.
andresriancho/w3af
w3af: web application attack and audit framework, the open source web vulnerability scanner.
andresriancho/nimbostratus
Tools for fingerprinting and exploiting Amazon cloud infrastructures
DanMcInerney/xsscrapy
XSS spider - 66/66 wavsep XSS detected
chokepoint/azazel
Azazel is a userland rootkit based off of the original LD_PRELOAD technique from Jynx rootkit. It is more robust and has additional features, and focuses heavily around anti-debugging and anti-detection.
theupdateframework/python-tuf
Python reference implementation of The Update Framework (TUF)
theupdateframework/go-tuf
Go implementation of The Update Framework (TUF)