Pinned Repositories
awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
damn-vulnerable-web-server
Vulnerable C Server
dvws
Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn real world web service vulnerabilities. NOTE: This project is out of date, please use https://github.com/snoopysecurity/dvws-node
dvws-node
Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API related vulnerabilities.
fuzzpayloads
Collection of fuzzing payloads and corpus from all around added as sub modules
OSCE-Prep
A list of freely available resources that can be used as a prerequisite before taking OSCE.
OSWE-Prep
Useful tips and resources for preparing for the AWAE exam.
Public
Archive - Repository contains old publicly released presentations, tools, Proof of Concepts and other junk.
Setup-AD-Security-Lab
Scripts to create a Active Directory Lab with security misconfigurations and vulnerabilities.
Vulnerable-Code-Snippets
A small collection of vulnerable code snippets
snoopysecurity's Repositories
snoopysecurity/dvws
Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn real world web service vulnerabilities. NOTE: This project is out of date, please use https://github.com/snoopysecurity/dvws-node
snoopysecurity/OSCE-Prep
A list of freely available resources that can be used as a prerequisite before taking OSCE.
snoopysecurity/OSWE-Prep
Useful tips and resources for preparing for the AWAE exam.
snoopysecurity/Setup-AD-Security-Lab
Scripts to create a Active Directory Lab with security misconfigurations and vulnerabilities.
snoopysecurity/Public
Archive - Repository contains old publicly released presentations, tools, Proof of Concepts and other junk.
snoopysecurity/fuzzpayloads
Collection of fuzzing payloads and corpus from all around added as sub modules
snoopysecurity/Noopener-Burp-Extension
Find Target="_blank" values within web pages that are set without 'noopener' and 'noreferrer' attributes
snoopysecurity/i3-starterpack
A simple guide (and example of configuration) to install i3 & its and essentials packages, then make them look eye candy.
snoopysecurity/uxss-db
🔪Browser logic vulnerabilities :skull_and_crossbones:
snoopysecurity/brokencrystals
A Broken Application - Very Vulnerable!
snoopysecurity/ByP-SOP
🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️
snoopysecurity/chrome-sbx-db
A Collection of Chrome Sandbox Escape POCs/Exploits for learning
snoopysecurity/chromium-ipc-sniffer
A tool to capture communication between Chromium processes on Windows
snoopysecurity/computer-science
:mortar_board: Path to a free self-taught education in Computer Science!
snoopysecurity/csp-playground
CSP Playground for CVE-2021-30682
snoopysecurity/CVE-2022-22978-PoC
PoC of CVE-2022-22978 vulnerability in Spring Security framework
snoopysecurity/edge-vulnerability-reports
Security issues I've reported in Edge
snoopysecurity/exploit_playground
snoopysecurity/FlowBlot.NET
FlowBlot is static code analysis benchmark project by Codethreat, including sink-source challenges grouped into various technical analysis concepts.
snoopysecurity/Jandroid
snoopysecurity/java-sec-code
Java web common vulnerabilities and security code which is base on springboot and spring security
snoopysecurity/js-vuln-db
A collection of JavaScript engine CVEs with PoCs
snoopysecurity/Lynx
A Node.js vulnerability finding tool.
snoopysecurity/OldApacheTika
Old Version of Apache Tika
snoopysecurity/ossf-cve-benchmark
The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebases using a variety of static analysis security testing (SAST) tools and generate reports to evaluate those tools.
snoopysecurity/php7-internals
Research about the Zend Engine
snoopysecurity/PL-Compiler-Resource
程序语言与编译技术相关资料(持续更新中)
snoopysecurity/Publications
My public presentations
snoopysecurity/vulncode-db
Vulncode-DB project
snoopysecurity/You-Dont-Know-JS
A book series on JavaScript. @YDKJS on twitter.