sara-kathryn

sara-kathryn's Stars

• enaqx/awesome-pentest

  A collection of awesome penetration testing resources, tools and other shiny things

  21.9k1.2k394.5k

• qeeqbox/social-analyzer

  API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites

  Language:JavaScript11.7k35972923

• hslatman/awesome-threat-intelligence

  A curated list of Awesome Threat Intelligence resources

  8.1k563311.5k

• trickest/cve

  Gather and update all available and newest CVEs with their PoC.

  Language:HTML6.6k34850836

• mantvydasb/RedTeaming-Tactics-and-Techniques

  Red Teaming Tactics and Techniques

  Language:PowerShell4.1k159231.1k

• reddelexc/hackerone-reports

  Top disclosed reports from HackerOne

  Language:Python3.9k14710720

• GrrrDog/Java-Deserialization-Cheat-Sheet

  The cheat sheet about Java Deserialization vulnerabilities

  3k1389599

• Netflix-Skunkworks/Scumblr

  Web framework that allows performing periodic syncs of data sources and performing analysis on the identified results

  Language:Ruby2.6k479155319

• ossf/criticality_score

  Gives criticality score for an open source project

  Language:Go1.3k3388119

• mesquidar/ForensicsTools

  A list of free and open forensics analysis tools and other resources

  1.1k335144

• CodeIntelligenceTesting/jazzer

  Coverage-guided, in-process fuzzing for the JVM

  Language:Java1k27146137

• hackerscrolls/SecurityTips

  990562167

• googleprojectzero/0days-in-the-wild

  Repository for information about 0-days exploited in-the-wild.

  Language:HTML75986576

• gobysec/GobyVuls

  Vulnerabilities of Goby supported with exploitation.

  Language:Go708313113

• wietze/HijackLibs

  Project for tracking publicly disclosed DLL Hijacking opportunities.

  664191573

• gi11es/equal-pay-for-equal-work

  This is a list of organizations that pay remote workers equally regardless of their location

  56953012

• mxm0z/awesome-intelligence-writing

  Collection of awesome resources on intelligence writing, including manuals/guides, standards, books, tranings, articles, videos, etc

  52230259

• matamorphosis/Scrummage

  A Holistic OSINT and Threat Hunting Platform

  Language:Python512163783

• vulsio/go-cve-dictionary

  Build a local copy of CVE (NVD and Japanese JVN). Server mode for easy querying.

  Language:Go3672090109

• ossf/wg-securing-critical-projects

  Helping allocate resources to secure the critical open source projects we all depend on.

  331594140

• evilsocket/jscythe

  Abuse the node.js inspector mechanism in order to force any node.js/electron/v8 based process to execute arbitrary javascript code.

  Language:Rust3197126

• PalindromeLabs/awesome-websocket-security

  Awesome information for WebSockets security research

  25112025

• todogroup/ospology

  📖 OSPOlogy - The Study of OSPOs

  Language:HTML192656091

• CVEProject/automation-working-group

  CVE Automation Working Group

  160576888

• shadowsock5/Poc

  PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus

  Language:Python15110041

• edoardottt/secfiles

  My useful files for penetration tests, security assessments, bug bounty and other security related stuff

  Language:Shell1418117

• ossf-cve-benchmark/ossf-cve-benchmark

  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebases using a variety of static analysis security testing (SAST) tools and generate reports to evaluate those tools.

  Language:TypeScript14172440

• abathelt/EvidenceWiki

  All of my threat intel recommendations for aspiring Information Security Analyst. This section contains information about evidence at analyst's disposal IP, domain, email, hash, files.

  38407

• ianxtianxt/CVE-2015-7501

  （CVE-2015-7501）JBoss JMXInvokerServlet 反序列化漏洞

  Language:Java202010

• JLLeitschuh/security-research

  Public disclosure channel for security vulnerabilities

  Language:Python166126