Lists (10)
Starred repositories
Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.
Small and highly portable detection tests based on MITRE's ATT&CK.
Red Teaming Tactics and Techniques
list of regex patterns for oauth / api tokens with provided source
A curated list of awesome resources about Electron.js (in)security
My timepass notes for topics I covered during lockdown
API Security Project aims to present unique attack & defense methods in API Security field
A cheat sheet that contains advanced queries for SQL Injection of all types.
TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
A collection of various awesome lists for hackers, pentesters and security researchers
A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
Modified Nuclei Templates Version to FUZZ Host Header
Scripted Local Linux Enumeration & Privilege Escalation Checks
Small, fast tool for performing reverse DNS lookups en masse.
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.