sandrogarcia

Pinned Repositories

4-ZERO-3
403/401 Bypass Methods + Bash Automation + Your Support ;)
Language:Shell0 0 00
android-backup-extractor
Android backup extractor
Language:Java0 0 00
android-keystore-audit
Language:JavaScript0 0 00
apkeep
Language:Rust0 0 00
AppSync
Unified AppSync dynamic library for iOS 5 and above.
Language:C0 0 00
avatarify-python
Avatars for Zoom, Skype and other video-conferencing apps.
Language:Python0 0 00
client-side-prototype-pollution
Prototype Pollution and useful Script Gadgets
1 0 00

sandrogarcia's Repositories

sandrogarcia/client-side-prototype-pollution
Prototype Pollution and useful Script Gadgets
1 0 00
sandrogarcia/4-ZERO-3
403/401 Bypass Methods + Bash Automation + Your Support ;)
Language:Shell0 0 00
sandrogarcia/android-backup-extractor
Android backup extractor
Language:Java0 0 00
sandrogarcia/android-keystore-audit
Language:JavaScript0 0 00
sandrogarcia/apkeep
Language:Rust0 0 00
sandrogarcia/AppSync
Unified AppSync dynamic library for iOS 5 and above.
Language:C0 0 00
sandrogarcia/clairvoyance
Obtain GraphQL API schema even if the introspection is disabled
Language:Python0 0
sandrogarcia/deepdarkCTI
Collection of Cyber Threat Intelligence sources from the deep and dark web
0 0
sandrogarcia/frida-scripts
Language:JavaScript
sandrogarcia/fsmon
monitor filesystem on iOS / OS X / Android / FirefoxOS / Linux
sandrogarcia/gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
sandrogarcia/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
sandrogarcia/idb
idb is a flexible command line interface for automating iOS simulators and devices
Language:Objective-C0 0
sandrogarcia/iOS-Internals-and-Security-Testing
iOS is Apple's proprietary operating system that runs on the iPhone, iPod Touch and iPad. A lot of components are specific to iOS. Here are key features of the iOS hardware and software security architecture and guide how to test your applications.
0 0
sandrogarcia/keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
0 0
sandrogarcia/kiterunner
Contextual Content Discovery Tool
sandrogarcia/matomo
Liberating Web Analytics. Star us on Github? +1. Matomo is the leading open alternative to Google Analytics that gives you full control over your data. Matomo lets you easily collect data from websites & apps and visualise this data and extract insights. Privacy is built-in. We love Pull Requests!
Language:PHP0 0
sandrogarcia/Modlishka
Modlishka. Reverse Proxy.
sandrogarcia/NtdsAudit
An Active Directory audit utility
Language:C#
sandrogarcia/OWASP-Calculator
🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
Language:HTML0 0
sandrogarcia/pp-finder
PP-finder Help you find gadget for prototype pollution exploitation
Language:TypeScript0 0
sandrogarcia/r2flutch
Tool to decrypt iOS apps using r2frida
Language:Python
sandrogarcia/r2frida
Radare2 and Frida better together.
sandrogarcia/Red_Team
Some scripts useful for red team activities
sandrogarcia/reFlutter
Flutter Reverse Engineering Framework
Language:Python
sandrogarcia/rogue-jndi
A malicious LDAP server for JNDI injection attacks
Language:Java0 0
sandrogarcia/Smali2Frida
sandrogarcia/SSRFmap
Automatic SSRF fuzzer and exploitation tool
Language:Python0 0
sandrogarcia/web-api-linux
Language:Python0 0
sandrogarcia/x89
1 0