m3ssap0's Stars
stripe/smokescreen
A simple HTTP proxy that fogs over naughty URLs
p-/nullcon-berlin-2023-workshop
Workspace + Codespace for Nullcon Berlin 2023 CodeQL workshop. Read README for setup instructions.
microsoft/codeql-container
Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
GoogleContainerTools/distroless
🥑 Language focused docker images, minus the operating system.
secdev/scapy
Scapy: the Python-based interactive packet manipulation program & library.
cider-security-research/cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
cipher387/osint_stuff_tool_collection
A collection of several hundred online tools for OSINT
primait/nuvola
semgrep/semgrep
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
wireghoul/graudit
grep rough audit - source code auditing tool
im-hanzou/Arbitrium-RAT
Arbitrium is a cross-platform, fully undetectable remote access trojan, to control Android, Windows and Linux and doesn't require any firewall exceptions or port forwarding rules
datreeio/datree
Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to cloud, Datree provides an E2E policy enforcement solution to run automatic checks for rule violations. See our docs: https://hub.datree.io
security-prince/Application-Security-Engineer-Interview-Questions
Some of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
tadwhitaker/Security_Engineer_Interview_Questions
Every Security Engineer Interview Question From Glassdoor.com
ossf/package-analysis
Open Source Package Analysis
vulhub/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
buddy-works/dockerfile-linter
kost/dockscan
dockscan is security vulnerability and audit scanner for Docker installations
stealthcopter/deepce
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
johnnyzn/DW-GAN
A GAN based framework for CAPTCHA breaking in the dark web.
myugan/awesome-cicd-security
:books: A curated list of awesome CI CD security resources
myugan/awesome-docker-security
📚 A curated list of awesome Docker security resources
BishopFox/unredacter
Never ever ever use pixelation as a redaction technique
CodeIntelligenceTesting/jazzer
Coverage-guided, in-process fuzzing for the JVM
chrislockard/api_wordlist
A wordlist of API names for web application assessments
ffuf/ffuf
Fast web fuzzer written in Go
s0md3v/XSStrike
Most advanced XSS scanner.
jaeles-project/gospider
Gospider - Fast web spider written in Go
okeuday/pest
:beetle: Primitive Erlang Security Tool
securego/gosec
Go security checker