starkriedesel's Stars
gin-gonic/gin
Gin is a HTTP web framework written in Go (Golang). It features a Martini-like API with much better performance -- up to 40 times faster. If you need smashing performance, get yourself some Gin.
minimaxir/big-list-of-naughty-strings
The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.
wagoodman/dive
A tool for exploring each layer in a docker image
vulhub/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
SecWiki/windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合
drwetter/testssl.sh
Testing TLS/SSL encryption anywhere on any port
Genymobile/gnirehtet
Gnirehtet provides reverse tethering for Android
SwiftOnSecurity/sysmon-config
Sysmon configuration file template with default high-quality event tracing
huntergregal/mimipenguin
A tool to dump the login password from the current linux user
crytic/echidna
Ethereum smart contract fuzzer
crytic/not-so-smart-contracts
Examples of Solidity security issues
mdsecactivebreach/SharpShooter
Payload Generation Framework
creack/pty
PTY interface for Go
crytic/evm-opcodes
Ethereum opcodes and instruction reference
honeytrap/honeytrap
Advanced Honeypot framework.
vincentcox/StaCoAn
StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.
wearetheledger/awesome-hyperledger-fabric
A curated list of resources for creating applications with hyperledger fabric
Raikia/CredNinja
A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale via SMB, plus now with a user hunter
lair-framework/lair
Lair is a reactive attack collaboration framework and web application built with meteor.
royhills/ike-scan
The IKE Scanner
fullmetalcache/PowerLine
chainHero/heroes-service
Short tutorial to build a blockchain application in Go with Hyperledger Fabric
dxflatline/flatpipes
A TCP proxy over named pipes. Originally created for maintaining a meterpreter session over 445 for less network alarms.
CiscoCXSecurity/rdp-sec-check
rdp-sec-check is a Perl script to enumerate security settings of an RDP Service (AKA Terminal Services)
lair-framework/go-nmap
Nmap XML parsing library for Go
tineola/tineola
Blockchains. Destruction. Mayhem.
ryancdotorg/storybits
ConsciousHacker/EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
kn6869610/CVE-2018-10933
Leveraging it is a simple matter of presenting the server with the SSH2_MSG_USERAUTH_SUCCESS message, which shows that the login already occurred without a problem. The server expects the message SSH2_MSG_USERAUTH_REQUEST to start the authentication procedure, but by skipping it an attacker can log in without showing any credentials.
parsiya/borrowedtime
Borrowed Time is a project and note management tool.