marcositu Goto Github PK

appinsegura

cheat-sheets

Various Cheat Sheets related to development and security

ciberseguridad-blogs

Listado de blogs sobre seguridad informática

dolararg

Es un script en python el cual utilizo para que me informe el valor del dólar con un bot de telegram.

dvws-node

Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API related vulnerabilities.

jmxbf

A brute force program to test weak accounts configured to access a JMX Registry

libinjection

SQL / SQLI tokenizer parser analyzer

medium

Almaceno post de Medium de algunos usuarios

multitools

In the following link you will find the scripts that I use for my daily job.

new-zile

Zile searchs api-keys in different sites and endpoints.-

nmap-parse

Command line nmap XML parser

nmapautomator

A script that you can run in the background!

nodegoat

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

nuclei-custom-templates

Personal collection of nuclei templates

oneforall

OneForAll是一款功能强大的子域收集工具

pentest_scripts

prueba

prueba

pyhacks

Python Scripts for Hacking .

recon_profile

Es el profile que suelo utilizar cuando hago bug bounties. Es un fork de https://github.com/nahamsec/recon_profile

reconandvulns

The idea of this tool is to make the recon of a domain and through the use of identification tools find security flaws or information exposures.

redhatchecklist

This script is designed to perform a security evaluation against industry best practices, over RedHat and RedHat based systems, to detect configuration deviations. It was developed due to the need to ensure that the servers within my workplace would comply with specific policies. As this tool was designed specifically for this purpose, "lynis" was not used for the task. If anyone wants to provide assistance with optimizing/organizing or reprogramming the "code", please let me know! :) As you will see, I still lack skills on this subject. El script tiene como objetivo realizar una evaluación sobre un Sistema RedHat o sus derivados, en busca de desviaciones de configuración contra las mejores prácticas del mercado. El motivo de la creación del script se debió a la necesidad de cumplir ciertas normativas en los servidores donde trabajo, cabe aclarar que esta herramienta fue pensada con ese propósito y por este motivo no utilice "lynis" para la tarea. Si alguna persona quiere ayudarme a optimizar/organizar o reprogramar el "código" es bienvenido :) ya que como verán me faltan muchos skills sobre la materia.

scan-burp-suite-cmd

The propose of the script is an scan using the burp-api-api for Burp Suite that will use target files.

scripts

Scripts I use during pentest engagements.

seclists

SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.

security-cheatsheets

🔒 A collection of cheatsheets for various infosec tools and topics.

sharepoint-url-fuzzlist

sleepy-puppy

Sleepy Puppy XSS Payload Management Framework

ubuntu-pentest-tools

Script to install security tools, and other Ubuntu goodies.

valorbtc

Son scripts que utilizó para verificar el valor de BTC en dólares.

vane

A GPL fork of the popular wordpress vulnerability scanner WPScan