securingdev
Writer; Thought Developer; Vulnerability Whisperer; Code curious.
@trailofbitsGreater Boston Area
Pinned Repositories
anew
A tool for adding new lines to files, skipping duplicates
awesome-stickers
A collection of scanned, high-resolution Hacker / Information Security Stickers from various conferences
codeql-docker
CodeQL Docker image
codeql-query-suites
A collection of query suites which utilize a subset of CodeQL queries for targeted code scanning activities.
custom-codeql-queries
Custom / Experimental CodeQL queries
Diceware
A simple, entropic generator for memorable passwords that tell a story.
environment
Package files and settings for Bash, Burp, JavaScript, Screen, and VIM
graphqlMaker
Finds graphql queries in javascript files
infosec_mentors_project
Building a community for those that both seek and wish to provide mentorship in Information Security.
scripts
Bash one-liners for great justice!
securingdev's Repositories
securingdev/awesome-stickers
A collection of scanned, high-resolution Hacker / Information Security Stickers from various conferences
securingdev/custom-codeql-queries
Custom / Experimental CodeQL queries
securingdev/infosec_mentors_project
Building a community for those that both seek and wish to provide mentorship in Information Security.
securingdev/codeql-query-suites
A collection of query suites which utilize a subset of CodeQL queries for targeted code scanning activities.
securingdev/anew
A tool for adding new lines to files, skipping duplicates
securingdev/codeql-docker
CodeQL Docker image
securingdev/environment
Package files and settings for Bash, Burp, JavaScript, Screen, and VIM
securingdev/graphqlMaker
Finds graphql queries in javascript files
securingdev/gungnir
CT Log Scanner
securingdev/httpx
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
securingdev/imgix-3-0
3.0 checkout of imgix.js
securingdev/OSS-Workflows-Enterprises
Open Source workflows for Enterprises
securingdev/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
securingdev/ResourcesSaverExt
Chrome Extension for one click downloading all resources files and keeping folder structures.
securingdev/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
securingdev/code-scanning-javascript-demo
GitHub Code Scanning Javascript Tutorial
securingdev/codeql-queries
GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations
securingdev/functional-blog-theme
securingdev/ghas-licence
A GitHub Action that helps remove GHAS Licences
securingdev/httpd
Mirror of Apache HTTP Server. Issues: http://issues.apache.org
securingdev/OSS-Workflows-Enterprises-Lab
Hands On Lab with follow along instructions for workshop participants
securingdev/Powershell-PostExploitation
Scripts created to help with post exploitation of a Windows host
securingdev/qmk_firmware
Open-source keyboard firmware for Atmel AVR and Arm USB families
securingdev/quick-security-check
The Skroutz developer platform
securingdev/security-codeql
CodeQL Security Queries
securingdev/sparkler
Spark-Crawler: Apache Nutch-like crawler that runs on Apache Spark.
securingdev/trufflehog
Find and verify secrets
securingdev/umami
Umami is a simple, fast, privacy-focused alternative to Google Analytics.
securingdev/vscode-codeql-starter
Starter workspace to use with the CodeQL extension for Visual Studio Code.
securingdev/WebGoat
WebGoat is a deliberately insecure application