Pinned Repositories
31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
arduino-projects
bcheck-collection
A collection of bcheck rules collected from Github and generated by me
BurpBounty
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
Code-Crawler
Automatic tool using for crawling code to find low-hang fruit vulnerabilities - Based on OWASP Secure Code Review Guide
CTFs
fastbrute
HTTP/API brute forcer written in Go
fastcrawler
Super fast http crawler written in Go
findweb
Go tool to find http or https service from list of IPs or domains
semgrep-rules
My custom semgrep rules
vmnguyen's Repositories
vmnguyen/Code-Crawler
Automatic tool using for crawling code to find low-hang fruit vulnerabilities - Based on OWASP Secure Code Review Guide
vmnguyen/semgrep-rules
My custom semgrep rules
vmnguyen/fastbrute
HTTP/API brute forcer written in Go
vmnguyen/findweb
Go tool to find http or https service from list of IPs or domains
vmnguyen/BurpBounty
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
vmnguyen/bcheck-collection
A collection of bcheck rules collected from Github and generated by me
vmnguyen/fastcrawler
Super fast http crawler written in Go
vmnguyen/31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
vmnguyen/arduino-projects
vmnguyen/Babel
vmnguyen/burpdeveltraining
Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
vmnguyen/CobaltStrike
CobaltStrike's source code
vmnguyen/community-starter-kit
vmnguyen/exphub
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
vmnguyen/Firebase
vmnguyen/h2csmuggler
HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
vmnguyen/handgesture
Controlling a computer by hand gesture
vmnguyen/HUNT
vmnguyen/imei-changer
Xposed Framework module for masking IMEI (masking).
vmnguyen/LeakLooker
Find open databases - Powered by Binaryedge.io
vmnguyen/Malicious-html-page-
POC of using html and scripts to make a malicious webpage to demonstrate website based attacks.
vmnguyen/OWASP-Nettacker
Automated Penetration Testing Framework
vmnguyen/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
vmnguyen/pmd
An extensible multilanguage static code analyzer.
vmnguyen/proxy2
HTTP/HTTPS proxy in a single python script
vmnguyen/PwnAdventure3
PwnAdventure3 Server
vmnguyen/RFID-Door
vmnguyen/Shell-Detector
Shell Detector – is a application that helps you find and identify php/cgi(perl)/asp/aspx shells. Shell Detector has a “web shells” signature database that helps to identify “web shell” up to 99%.
vmnguyen/vmnguyen
vmnguyen/your-first-lab-cb-gh-000