Pinned Repositories
ApkDissector
ApkDissector is a Java Based Android APK Decompiler
exploits_p0c
Exploits written by me
HackerOneReportGrabber
This automated tool tries to fetch all the public reports from HackerOne and creates a html file of the report for reference/reading.
OWASP-JSEC_CVE_DETAILS
OWASP JSEC CVE DETAILS is an opensource application developed in Java that uses the api provided by cvedetails.com to receive latest CVE updates. Apart from fetching the latest CVEs, it can also be used to search for expoits and vulnerabilities from exploitsearch.net. This tool is used to find and gather information related to CVEs. More features coming soon in v3.0
OWASP_Droid10
OWASP Droid10 is an opensource handheld system based (android) web application pen testing tool. It can scan for web application vulnerability from any android device.Some features can be customized according to testers need.
pastehunter
PasteHunter is an automated tool to fetch pastes from pastebin to find leaked information, credentials, or any sensitive data in pastebin which are already crawled by Google.
Recipies-Of-A-Jenkins-Hacker
Jenkins Security Research
SLAEx86
SLAE x86 Assembly Language and Shellcoding on Linux
SPSE
This is an automated tool collection written in Python for vulnerability assessment and exploitation. It also includes solution of SPSE - Securitytube Python Scripting Expert Course Problems Solution. The SecurityTube Python Scripting Expert (SPSE) is an online certification which will help you gain mastery over Python scripting and its application to problems in computer and network security. I have taken this course from SecurityTube (http://www.securitytube-training.com/online-courses/securitytube-python-scripting-expert/index.html)
StaticAnalyzer
StaticAnalyzer is a burp plugin that can be used to perform static analysis of the response information from server during run time. It will search for specific words in the response that is mentioned in the vectors.txt
dibsy's Repositories
dibsy/OWASP_Droid10
OWASP Droid10 is an opensource handheld system based (android) web application pen testing tool. It can scan for web application vulnerability from any android device.Some features can be customized according to testers need.
dibsy/Recipies-Of-A-Jenkins-Hacker
Jenkins Security Research
dibsy/jenkills
Collection of scripts to hack or audit Jenkins
dibsy/OSED
Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)
dibsy/bigiamchallenge
Wiz BigIAMChallenge Walkthrough
dibsy/ADRedTeamEnumScript
Traditional AD RedTeam Full Enumeration Script used to query all aspects of your target Forest.
dibsy/Advanced-SQL-Injection-Cheatsheet
A cheat sheet that contains advanced queries for SQL Injection of all types.
dibsy/badPods
A collection of manifests that will create pods with elevated privileges.
dibsy/cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
dibsy/cpp-docs
C++ Documentation
dibsy/custom-bloodhound-queries
Custom BloodHound Queries
dibsy/dibsy
dibsy/dibsy.github.io
dibsy.github.io
dibsy/github-api-global-lib
dibsy/handyservers
Collection of scripts to spin up various servers which can be used during pentest,ctf,etc
dibsy/KCon
KCon is a famous Hacker Con powered by Knownsec Team.
dibsy/my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
dibsy/popxss
PoC to JSDeliver.NET
dibsy/redaction
A compilation of github actions scripts to build the useful binaries for Offensive and Defensive Purpose.
dibsy/resources
Collection of resources I have used throughout my studies (cybersecurity and systems)
dibsy/sample
sample
dibsy/sans-holiday-hack-2023
SANS Holiday Hack Challenge CTF 2023
dibsy/Seatbelt
Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
dibsy/semgrep-rules
dibsy/sso.targetcompany.com
dibsy/supply-chain-goat
🐐Hands-on tutorials to learn about software supply chain security
dibsy/test-drone-ci
Testing Drone CI
dibsy/Web-CTF-Cheatsheet
Web CTF CheatSheet 🐈
dibsy/Weblogic
WebLogic vulnerability exploration from beginner to expert.
dibsy/XXE-study
This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a playground to teach or test with Vulnerability scanners / WAF rules / Secure Configuration settings.