Pinned Repositories
apidetector
APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and flexible input/output options. Ideal for API security testing.
awesome-pentest-tools-in-colab
A curated list of awesome Penetration Testing Tools ported to Google Colab to make faster and easier to execute and test.
brinhosa-nuclei-templates
CVE-2022-22963-Spring-cloud-function-SpEL-RCE
Spring-cloud-function-SpEL-RCE 批量检测脚本,反弹shell_EXP,欢迎师傅们试用
devsecops
github_cves_search
Find CVEs associated to Linux and public exploits on github
payloads
Payloads for Web Application Security Testing
spring4shell-CVE-2022-22965-massive-scan
tools
workshop-desenvolvimento-seguro
brinhosa's Repositories
brinhosa/awesome-hacker-search-engines
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
brinhosa/bbot
OSINT automation for hackers.
brinhosa/cloudfox
Automating situational awareness for cloud penetration tests.
brinhosa/fencer
Automated API security testing
brinhosa/hakuin
A blazing fast Blind SQL Injection optimization and automation framework.
brinhosa/opensquat
The openSquat project is an open-source solution for detecting domain look-alikes by searching for newly registered domains that might be impersonating other legit domains.
brinhosa/Awesome-Dorks
Dorks for Bug Bounty Hunting
brinhosa/Awesome-GPT-Agents
A curated list of GPT agents for cybersecurity
brinhosa/awesome-oscp
A curated list of awesome OSCP resources
brinhosa/AWS-Certified-Security-Specialty
AWS Certified Security - Specialty
brinhosa/Callisto
Callisto - An Intelligent Binary Vulnerability Analysis Tool
brinhosa/cheat.sh
the only cheat sheet you need
brinhosa/CloudRecon
brinhosa/DCToolbox
Tools for Microsoft cloud fans
brinhosa/DomainForPhishing
brinhosa/Dorks-collections-list
List of Github repositories and articles with list of dorks for different search engines
brinhosa/EasyEASM
Zero-dollar attack surface management tool
brinhosa/eval_villain
A Firefox Web Extension to improve the discovery of DOM XSS.
brinhosa/HowToHunt
Collection of methodology and test case for various web vulnerabilities.
brinhosa/LicenseFinder
Find licenses for your project's dependencies.
brinhosa/OSCP-Exam-Report-Template-Markdown
:orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report
brinhosa/OWASP-VWAD
The OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
brinhosa/PIPE
Prompt Injection Primer for Engineers
brinhosa/sast-scan
Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.
brinhosa/SecretBench
SecretBench is a dataset consisting of different secret types collected from public open-source repositories.
brinhosa/seespee
Create a Content-Security-Policy for a website based on the statically detectable relations
brinhosa/tiny-github-searcher
A tiny GitHub searcher using the GitHub API. No authentication required.
brinhosa/vulnerable_code
brinhosa/web-archive
brinhosa/www-project-top-10-for-large-language-model-applications
OWASP Foundation Web Respository