Pinned Repositories
52-technologies-in-2016
Let's learn a new technology every week. A new technology blog every Sunday in 2016.
advanced_aws_security_infrastructure
Sample CloudFormation templates and code for advanced AWS security.
androguard
Reverse engineering, Malware and goodware analysis of Android applications ... and more (ninja !)
Android-Testing
Android Testing
AndroidKernelExploitationPlayground
AppSecEngineerCSPIntro
Introduction to Content-Security-Policy
attacking-and-auditing-docker-containers-and-kubernetes-clusters
Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters
bug-bounty-reference
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
ReverseVNC
code to drop a reverseVNC connection I made in 2005, the VNCHooks.dll & winvnc.exe are outdated but can easily be updated to newer ones. need MASM installed to compile it, the editor.exe should work to quickly change the IP setttings without the need to recompile.
talk2noob's Repositories
talk2noob/advanced_aws_security_infrastructure
Sample CloudFormation templates and code for advanced AWS security.
talk2noob/attacking-and-auditing-docker-containers-and-kubernetes-clusters
Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters
talk2noob/aws-serverless-security-workshop
In this workshop, you will learn techniques to secure a serverless application built with AWS Lambda, Amazon API Gateway and RDS Aurora. We will cover AWS services and features you can leverage to improve the security of a serverless applications in 5 domains: identity & access management, code, data, infrastructure, logging & monitoring.
talk2noob/breaking-and-pwning-apps-and-servers-aws-azure-training
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
talk2noob/Cheatsheet-God
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
talk2noob/CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
talk2noob/container_training-1
Container Security and Serverless Training
talk2noob/CVE-2019-12409
Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")
talk2noob/distributed-jwt-cracker
An experimental distributed JWT token cracker built using Node.js and ZeroMQ
talk2noob/DotNetInject
Code samples of .NET shellcode injections, weaponized for use via WebDav and mshta.exe.
talk2noob/iswa
talk2noob/jwt_demo
A Demo App for JWT Implementation
talk2noob/jwtcat
A CPU-based JSON Web Token (JWT) cracker and - to some extent - scanner.
talk2noob/MagiskOnWSA
MagiskOnWSA
talk2noob/MagiskOnWSALocal
Integrate Magisk root and Google Apps into WSA (Windows Subsystem for Android)
talk2noob/My-Shodan-Scripts
Collection of Scripts for shodan searching stuff.
talk2noob/orchestron-community
Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulnerabilities early in the lifecycle"
talk2noob/pentest-guide
Penetration tests guide based on OWASP including test cases, resources and examples.
talk2noob/pentest-tools
Custom pentesting tools
talk2noob/personal-security-checklist
🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2020
talk2noob/practical-python
Practical Python Programming (course by @dabeaz)
talk2noob/Python-Scripts
talk2noob/Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
talk2noob/solr-injection
Apache Solr Injection Research
talk2noob/sweetie-data
This repo contains logstash of various honeypots
talk2noob/SwiftnessX
A cross-platform note-taking & target-tracking app for penetration testers.
talk2noob/tech-talks
talk2noob/ThreatPlaybook
A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
talk2noob/Vulnerable-Flask-App
Intentionally Vulnerable Flask app for use in Demos
talk2noob/YetAnotherSMSBomber
Clean, small and powerful SMS bomber script.