codingo
Vice President, Security Operations and Researcher Success @ Bugcrowd
@bugcrowd Brisbane, Australia
Pinned Repositories
bbr
An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
BibWord
Microsoft Word and Bibliography Styles extender.
crithit
Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
DNSCewl
A DNS Bruteforcing Wordlist Generator
dorky
A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
Interlace
Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
NoSQLMap
Automated NoSQL database enumeration and web application exploitation tool.
OSCP-2
Collection of things made during my OSCP journey
Reconnoitre
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
VHostScan
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
codingo's Repositories
codingo/OSCP-1
Scripts I developed to help complete the OSCP certification.
codingo/WindowsExploits
Precompiled Windows exploits
codingo/jwt_tool
A toolkit for testing, tweaking and cracking JSON Web Tokens
codingo/fimap
fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion bugs in webapps.
codingo/offsec_pdfs
:heavy_check_mark: your offsec knowledge
codingo/resdiffcheck
Script to track updates on web resources (mainly JS files or whole HTML pages).
codingo/Burp-LFI-tests
Fuzzing for LFI using Burpsuite
codingo/Checklists
Pentesting checklists for various engagements
codingo/datasploit
A tool to perform various OSINT techniques, aggregate all the raw data, visualise it on a dashboard, and facilitate alerting and monitoring on the data.
codingo/DSVW
Damn Small Vulnerable Web
codingo/nosqlinjection_wordlists
This repository contains payload to test NoSQL Injections
codingo/Privilege-Escalation
This contains common local exploits and enumeration scripts
codingo/public-pentesting-reports
Curated list of public penetration test reports released by several consulting firms and academic security groups
codingo/searchsploit2
Search the ExploitDB with a little more control
codingo/sqlilabs
Lab set-up for learning SQL Injection Techniques
codingo/theHarvester-verbose
A fork of theharvester to include verbose mode to print the source pages/results where entries where found.
codingo/wanadecrypt
A decryptor for Wanacry (you need the private key!)
codingo/agnoster-bash
Agnoster Theme for Bash
codingo/bumblebee-status
bumblebee-status is a modular, theme-able status line generator for the i3 window manager.
codingo/DotNetToJScript
A tool to create a JScript file which loads a .NET v2 assembly from memory.
codingo/Manual
codingo/Metasploit-Code
Metasploit modules that didn't make it into trunk for some reason or the other
codingo/Office365-REST-Python-Client
Office 365 REST client for Python
codingo/osx-config-check
Verify the configuration of your OS X machine.
codingo/scan-dirtycow
Scan vuls kernel CVE-2016-5195 - DirtyCow
codingo/Shellcode
codingo/the-backdoor-factory
Patch PE, ELF, Mach-O binaries with shellcode
codingo/webdigger
WebDigger is a python based tool, specially created to identify a company's unknown domains.
codingo/wsus-scripts
Scripts to automate patch management and maintenance within WSUS 3.2.
codingo/XSS-Payloads-1
List of advanced XSS payloads