Lists (20)
Stars
A Python program to scrape secrets from GitHub through usage o 8000 f a large repository of dorks.
Cloud Security Posture Management (CSPM)
This is a sample solution that demonstrates how to use AWS IAM Identity Center with Neptune to visualize and map relationships between identities and resources
A simple tweak to activate a FLEX explorer window
Injecting FLEX with MobileSubstrate. Inject FLEX library into 3rd party apps.
A curated list of awesome iOS application security resources.
A tool for adding new lines to files, skipping duplicates
A library for detecting known secrets across many web frameworks
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
A pentest reporting tool written in Python. Free yourself from Microsoft Word.
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
A Magisk/KernelSU module that automatically adds user certificates to the system root CA store
Abuse trust-boundaries to bypass firewalls and network controls
caido workflow and local server to run auth testing
A resources for who want to learn and get deep into client-side bugs
Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data
A Python library for CBC padding oracle attacks, including both encryption and decryption exploits.
A tool to Terraform and automate password cracking on AWS.
A modular bug hunting and web application pentesting framework written in Go
Prompt-To-Agent : Create custom engineering agents for your codebase
Local LLM Applications with Langchain and Ollama
Anthropic's educational courses