burdzwastaken

blog.burdz.net

https://blog.burdz.net

concourse-spinnaker-resource

A Concourse resource that allows jobs to trigger Spinnaker pipelines.

dotfiles

a collection of my dotfilez

hadolint-action

A GitHub action to run hadolint and reports violations given a Dockerfile within a repository

osquery-aws-tags

An osquery extension that allows for the retrieval of AWS tags

osquery-s3-config

An osquery config plugin to read from a configuration file stored in an AWS s3 bucket

osquery-zip-table

An osquery table to read the contents from a zip file

PineappleSSL

A way to force your wifi-pineapple to use SSL

resume

Matt Burdan

urxvt-gist

Automatic GitHub Gist uploads for selections in URxvt

burdzwastaken/searchgiant_cli

Newer version of searchgiant that supports additional cloud providers.

burdzwastaken/assetnote

Push notifications for passive DNS data

burdzwastaken/awesome-windows-exploitation

A curated list of awesome Windows Exploitation resources, and shiny things. Inspired by awesom

burdzwastaken/bless

Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function

burdzwastaken/bulk_extractor

This is the development tree. For downloads please see:

burdzwastaken/canarytokens-docker

Docker configuration to quickly setup your own Canarytokens.

burdzwastaken/CDQR

The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted drives and extracted artifacts from Windows, Linux and MacOS devices

burdzwastaken/CredNinja

The new CredSwissArmy! A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale via SMB, plus now with a user hunter

burdzwastaken/DET

(extensible) Data Exfiltration Toolkit (DET)

burdzwastaken/dnscat2

burdzwastaken/docker-bench-security

The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production. https://dockerbench.com

burdzwastaken/FIR

Fast Incident Response

burdzwastaken/grr

GRR Rapid Response: remote live forensics for incident response

burdzwastaken/moloch

Moloch is a open source large scale full PCAP capturing, indexing and database system.

burdzwastaken/netdata

Real-time performance monitoring, done right!

burdzwastaken/packetfence

PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) solution. Boasting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, powerful BYOD management options, 802.1X support, layer-2 isolation of problematic devices; PacketFence can be used to effectively secure networks small to very large heterogeneous networks.

burdzwastaken/payloads

Git All the Payloads! A collection of web attack payloads.

burdzwastaken/pdf-redact-tools

a set of tools to help with securely redacting and stripping metadata from documents before publishing

burdzwastaken/pipal

Pipal, THE password analyser

burdzwastaken/plaso

Super timeline all the things

burdzwastaken/RandomDNS

RandomDNS aims to improve the security, privacy and anonymity of DNSCrypt. It can randomize the server choice at runtime, rotate it frequently and much more.

burdzwastaken/routersploit

The Router Exploitation Framework

burdzwastaken/Scout2

Security auditing tool for AWS environments

burdzwastaken/SecLists

SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.

burdzwastaken/sptoolkit

Simple Phishing Toolkit is a super easy to install and use phishing framework built to help Information Security professionals find human vulnerabilities

burdzwastaken/teleport

SSH infrastructure for clusters and teams

burdzwastaken/Tumbless

A blogging platform based only on Amazon S3 (and your browser)

burdzwastaken/viper

Binary analysis and management framework

burdzwastaken/vuls

Vulnerability scanner for Linux, agentless, written in golang.

burdzwastaken/ZeroNet

ZeroNet - Decentralized websites using Bitcoin crypto and BitTorrent network