Pinned Repositories
awsScrape
A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
domain
Setup script for Regon-ng
HUNT
pentest-bookmarks
a collection of handy bookmarks
SecLists
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
tbhm
The Bug Hunters Methodology
jhaddix's Repositories
jhaddix/DVIA
Damn Vulnerable IOS App (DVIA) is an IOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their IOS penetration testing skills in a legal environment. This application covers all the common vulnerabilities found in IOS applications (following OWASP top 10 mobile risks) and contains several challenges that the user can try. This application also contains a section where a user can read various articles on IOS application security. This project is developed and maintained by @prateekg147. The vulnerabilities and solutions covered in this app are tested upto IOS 7.0.4 .
jhaddix/dumpdecrypted
Dumps decrypted mach-o files from encrypted iPhone applications from memory to disk. This tool is necessary for security researchers to be able to look under the hood of encryption.
jhaddix/ptcoresec-scoreboard-ctf
Ptcoresec jeopardy style scoreboard
jhaddix/ssl-conservatory
Sample SSL client code for correct endpoint validation.