Pinned Repositories
wordpress-modsecurity-ruleset
ModSecurity Rule Set for WordPress (WPRS)
challenge-bypass-input-validation
Bypass strict input validation to exploit RCE
CVE-2019-11043
(PoC) Python version of CVE-2019-11043 exploit by neex
DNSenum
Bash script for DNS Enumeration.
modsecurity-to-elasticsearch
Very simple and primitive Python script that sends ModSecurity JSON Audit Logs to Elasticsearch
myLittlePuny
Python script that checks for IDN homograph on a given domain name
nmap-elasticsearch-nse
Nmap NSE script for enumerate indices, plugins and cluster nodes on an elasticsearch target
OWASP-CRS-PoC
Tool that helps creating PoC for testing new CRS rule and rule-set
ReputationIP
set of bash scripts to get a list of bad reputation IP addresses
theMiddleBlue's Repositories
theMiddleBlue/CVE-2019-11043
(PoC) Python version of CVE-2019-11043 exploit by neex
theMiddleBlue/DNSenum
Bash script for DNS Enumeration.
theMiddleBlue/nmap-elasticsearch-nse
Nmap NSE script for enumerate indices, plugins and cluster nodes on an elasticsearch target
theMiddleBlue/modsecurity-to-elasticsearch
Very simple and primitive Python script that sends ModSecurity JSON Audit Logs to Elasticsearch
theMiddleBlue/ReputationIP
set of bash scripts to get a list of bad reputation IP addresses
theMiddleBlue/myLittlePuny
Python script that checks for IDN homograph on a given domain name
theMiddleBlue/challenge-bypass-input-validation
Bypass strict input validation to exploit RCE
theMiddleBlue/OWASP-CRS-PoC
Tool that helps creating PoC for testing new CRS rule and rule-set
theMiddleBlue/goscan
Interactive Network Scanner
theMiddleBlue/poc-magento227-sqli
PoC SQLi on Magento 2.2.7
theMiddleBlue/JShielder
Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark
theMiddleBlue/API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
theMiddleBlue/bettercap
The Swiss Army knife for 802.11, BLE and Ethernet networks reconnaissance and attacks.
theMiddleBlue/codeql-test
Test codeql
theMiddleBlue/coreruleset
OWASP ModSecurity Core Rule Set (Official Repository)
theMiddleBlue/jquery.terminal
jQuery Terminal Emulator - web based terminal
theMiddleBlue/ModSecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.
theMiddleBlue/msc_pyparser
A ModSecurity rules parser
theMiddleBlue/nikto
Nikto web server scanner
theMiddleBlue/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
theMiddleBlue/owasp-modsecurity-crs
OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
theMiddleBlue/SecLists
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
theMiddleBlue/secrules_parsing
A parser for the SecRules Langue
theMiddleBlue/vis
Dynamic, browser-based visualization library
theMiddleBlue/wfuzz
Web application fuzzer
theMiddleBlue/wordpress-rule-exclusions-plugin
Rule exclusion plugin for WordPress.
theMiddleBlue/www-project-modsecurity-core-rule-set
OWASP Foundation Web Respository
theMiddleBlue/xss-cheatsheet-data
This repository contains all the XSS cheatsheet data to allow contributions from the community.