Pinned Repositories
androguard
Reverse engineering, Malware and goodware analysis of Android applications ... and more (ninja !)
android-apps-crawler
An extensible crawler for downloading Android applications in third-party markets.
android-market-api-py
A Python port of the java Android Market API.
androwarn
Yet another static code analyzer for malicious Android applications
APTnotes
Various public documents, whitepapers and articles about APT campaigns
autopsy
Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investigate what happened on a computer. You can even use it to recover photos from your camera's memory card. Installers can be found at: http://www.sf.net/projects/autopsy/files/autopsy
BootstrapPresentation
Code Step-Through for Introduction to Bootstrap
burpURLReplacer
A Burp extension to modify request
platform_frameworks_base
tandhy's Repositories
tandhy/OpenAPI-Specification
The OpenAPI Specification Repository
tandhy/sherlock
🔎 Hunt down social media accounts by username across social networks
tandhy/awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
tandhy/CS-501-malware-course-public
tandhy/CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
tandhy/teslajson
Simple Python class to access the Tesla JSON API
tandhy/stereopi-tutorial
StereoPi OpenCV depth map examples
tandhy/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
tandhy/Phishing-Simulation
Phishing Simulation mainly aims to increase phishing awareness by providing an intuitive tutorial and customized assessment
tandhy/hackazon
A modern vulnerable web app
tandhy/awesome-static-analysis
Static analysis tools for all programming languages
tandhy/big-list-of-naughty-strings
The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.
tandhy/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
tandhy/zxcvbn
Low-Budget Password Strength Estimation
tandhy/Tiredful-API
An intentionally designed broken web application based on REST API.
tandhy/Top10
Official OWASP Top 10 Document Repository
tandhy/burpURLReplacer
A Burp extension to modify request
tandhy/dirbuster-ng
dirbuster-ng is C CLI implementation of the Java dirbuster tool
tandhy/Docker-CommunityServer
Collaborative system for managing documents, projects, customer relations and emails in one place
tandhy/BurpSmartBuster
A Burp Suite content discovery plugin that add the smart into the Buster!
tandhy/WhatsApp-Desktop
Use WhatsApp on your OS X, Windows or Linux desktop.
tandhy/write-ups-2015
Wiki-like CTF write-ups repository, maintained by the community. 2015
tandhy/write-ups-2016
Wiki-like CTF write-ups repository, maintained by the community. 2016
tandhy/python-oauth2
A fully tested, abstract interface to creating OAuth clients and servers.
tandhy/micro-ecc
ECDH and ECDSA for 8-bit, 32-bit, and 64-bit processors.
tandhy/androguard
Reverse engineering, Malware and goodware analysis of Android applications ... and more (ninja !)
tandhy/APTnotes
Various public documents, whitepapers and articles about APT campaigns
tandhy/nikto
Nikto web server scanner
tandhy/bro
Bro is a powerful network analysis framework that is much different from the typical IDS you may know. Official mirror of git.bro.org/bro.git .
tandhy/capstone
Capstone disassembly/disassembler framework: Core (Arm, Arm64, Mips, PPC, Sparc, SystemZ, X86, X86_64, XCore) + bindings (Python, Java, Ocaml)