Pinned Repositories
autotrader-miner
Single-user site for mining Autotrader.co.uk data and providing more useful searches for cars
cct-syllabus
CREST Certified Tester Syllabus in a non-crap format for revision purposes
greedy-git
Tool for analysing remote git repos accidentally shared by web devs
LinkedInBuddy
A Burp passive scanner extension which helpfully takes a note of any names and job titles you encounter whilst browsing LinkedIn
payloadgen
Generate a veil payload directly from the web
poisonpen
Python tool for creating malicious Office docs
posh-hunter
Find a PoshC2 instance from a payload file and interact with it
random-scripts
Quick and dirty scripts that don't really belong in a larger project
version-detective
Use git and static files to determine a web application's middleware version
web-shells
Web shells for use in penetration testing
strawp's Repositories
strawp/web-shells
Web shells for use in penetration testing
strawp/random-scripts
Quick and dirty scripts that don't really belong in a larger project
strawp/greedy-git
Tool for analysing remote git repos accidentally shared by web devs
strawp/autotrader-miner
Single-user site for mining Autotrader.co.uk data and providing more useful searches for cars
strawp/poisonpen
Python tool for creating malicious Office docs
strawp/version-detective
Use git and static files to determine a web application's middleware version
strawp/LinkedInBuddy
A Burp passive scanner extension which helpfully takes a note of any names and job titles you encounter whilst browsing LinkedIn
strawp/payloadgen
Generate a veil payload directly from the web
strawp/posh-hunter
Find a PoshC2 instance from a payload file and interact with it
strawp/cct-syllabus
CREST Certified Tester Syllabus in a non-crap format for revision purposes
strawp/swagger-hose
Squirt a bunch of swagger requests into an API just to get some base requests to start from
strawp/todo.txt-recurring-tasks
strawp/are-seas
strawp/bootra1n
Just enough Linux for checkra1n.
strawp/chunk-spider
Recursively locate and download chunked JS files from a site
strawp/cryptogramSolver
strawp/kindle-clock
strawp/LinkedInt
LinkedInt: A LinkedIn scraper for reconnaissance during adversary simulation
strawp/ocatodo
Download your last Ocado shopping list as a todo.txt list
strawp/prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
strawp/resourcespace
git clone of https://svn.resourcespace.com/svn/rs/releases/9.8/
strawp/RIFT
Rapid intranet framework template: Create flexible web-based relational databases inside your organisation with the minimum development time
strawp/strava-cli
Strava command-line interface
strawp/strawp
profile
strawp/strawp.github.io
strawp/toothbot
Toothbrushing timer for Pimoroni Scrollbot