jwttransversal

This script is just a baseline to PoC JWT path transversal, please feel free to contribuite to dis script

kage

Kage is Graphical User Interface for Metasploit Meterpreter and Session Handler

knight-workshop

Workshop de nuestra primera herramienta de seguridad Informatica

knigth

kube-bench

Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

kubescape

Kubescape is the first open-source tool for testing if Kubernetes is deployed securely according to multiple frameworks: regulatory, customized company policies and DevSecOps best practices, such as the NSA-CISA and the MITRE ATT&CK®.

leaky-angular

A deilberately vulnerable angular app for educational purposes

learngitbranching

An interactive git visualization and tutorial. Aspiring students of git can use this app to educate and challenge themselves towards mastery of git!

linux-baseline

DevSec Linux Baseline - InSpec Profile

lunasec

LunaSec - Security & Compliance SDKs to stop data leaks in your software. With just a few lines, LunaSec adds a Zero Trust Architecture across your stack, Unique Per-Record Encryption, and protection from common security issues like XSS, SQL Injection, and RCE. Try it out live here: https://app.lunasec.dev

mastering-python-for-networking-and-security-second-edition

Mastering Python for Networking and Security, Second Edition, published by Packt

metasploit-framework

Metasploit Framework

metasploitable3

Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.

mobile-security-framework-mobsf

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

mobileaudit

Django application that performs SAST and Malware Analysis for Android APKs

moisestapia

moisestapia.github.io

nettacker

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

nodegoat

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

notary

Notary is a project that allows anyone to have trust over arbitrary collections of data

offensive-security-engineering-udemy

Various course materials, scripts, and configurations from my Offensive Security Engineering Course on Udemy

one-lin3r

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

ort

A suite of tools to assist with reviewing Open Source Software dependencies.

osint-spy

Performs OSINT scan on email/domain/ip_address/organization using OSINT-SPY. It can be used by Data Miners, Infosec Researchers, Penetration Testers and cyber crime investigator in order to find deep information about their target. If you want to ask something please feel free to reach out to me at [email protected]

osrframework

OSRFramework, the Open Sources Research Framework is a AGPLv3+ project by i3visio focused on providing API and tools to perform more accurate online researches.

ossec-hids

OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

ostorlab

Ostorlab is a security scanning platform that enables running complex security scanning tasks involving multiple tools in an easy, scalable and distributed way.

owncloud-mysql

oxml_xxe

A tool for embedding XXE/XML exploits into different filetypes

patrowlmanager

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform