manuel-sommer

manuel-sommer's Stars

• Hack-with-Github/Awesome-Hacking

  A collection of various awesome lists for hackers, pentesters and security researchers

  87.2k3.9k09k

• louislam/uptime-kuma

  A fancy self-hosted monitoring tool

  Language:JavaScript62k2813.8k5.5k

• GoogleContainerTools/distroless

  🥑 Language focused docker images, minus the operating system.

  Language:Starlark19.5k1985961.2k

• vulhub/vulhub

  Pre-Built Vulnerable Environments Based on Docker-Compose

  Language:Dockerfile18.1k5801864.5k

• peass-ng/PEASS-ng

  PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

  Language:C#16.5k2271873.1k

• projectdiscovery/nuclei-templates

  Community curated list of templates for the nuclei engine to find security vulnerabilities.

  Language:JavaScript9.5k1951.6k2.7k

• s0md3v/Smap

  a drop-in replacement for Nmap powered by shodan.io

  Language:Go2.9k3014269

• cujanovic/SSRF-Testing

  SSRF (Server Side Request Forgery) testing resources

  Language:Python2.4k731482

• ssl/ezXSS

  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

  Language:PHP1.9k54133343

• six2dez/pentest-book

  1.6k520574

• epsylon/xsser

  Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

  Language:Python1.2k4371243

• roottusk/vapi

  vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

  Language:HTML1.2k1927311

• tcosolutions/betterscan

  Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

  Language:Python833154897

• stamparm/DSVW

  Damn Small Vulnerable Web

  Language:Python794306321

• secureCodeBox/secureCodeBox

  secureCodeBox (SCB) - continuous secure delivery out of the box

  Language:JavaScript79225561153

• pwn0sec/PwnXSS

  PwnXSS: Vulnerability (XSS) scanner exploit

  Language:Python7522822142

• CycloneDX/cdxgen

  Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server. GPT: https://chatgpt.com/g/g-673bfeb4037481919be8a2cd1bf868d2-cdxgen

  Language:JavaScript59916719165

• dwisiswant0/ppfuzz

  A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀

  Language:Rust59472254

• santoru/shcheck

  A basic tool to check security headers of a website

  Language:Python5622016102

• c0dejump/HawkScan

  Security Tool for Reconnaissance and Information Gathering on a website. (python 3.x)

  Language:Python44218578

• immauss/openvas

  Containers for running the Greenbone Vulnerability Manager. Run as a single container with all services or separate single applications containers via docker-compose.

  Language:Shell36815243104

• rfc-st/humble

  A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.

  Language:Python29751420

• appsecco/attacking-cloudgoat2

  A step-by-step walkthrough of CloudGoat 2.0 scenarios.

  13311253

• fagray/vuejs2-laravel53-starter

  A starter template for VueJs 2.0 with Laravel 5.4

  Language:PHP11212743

• EncodeGroup/Gopher

  C# tool to discover low hanging fruits

  Language:C#896018

• pmckeown/dependency-track-maven-plugin

  Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable dependencies are found.

  Language:Java6527123

• xadhrit/xira

  xss vulnerability scanner and input fuzzing tool.

  Language:Python614522

• zapbot/zap-mgmt-scripts

  ZAP Management Scripts

  Language:Python218315

• madpah/vexy

  Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents

  Language:Python193102

• damiencarol/vulnerabilities

  Python framework to manipulate vulnerabilities.

  Language:Python7404