muratozfidan Goto Github PK
Name: Aut0S3c
Type: User
Bio: Cyber Security, Automation
Twitter: murat_ozfidan
Name: Aut0S3c
Type: User
Bio: Cyber Security, Automation
Twitter: murat_ozfidan
In-depth Attack Surface Mapping and Asset Discovery
Find domains and subdomains related to a given domain
A methodology for mapping MITRE ATT&CK techniques to vulnerability records to describe the impact of a vulnerability.
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security (code scanning), LGTM.com, and LGTM Enterprise
Demisto is now Cortex XSOAR. Automate and orchestrate your Security Operations with Cortex XSOAR's ever-growing Content Repository. Pull Requests are always welcome and highly appreciated!
PoC for CVE-2020-6287 The PoC in python for add user only, no administrator permission set. Inspired by @zeroSteiner from metasploit. Original Metasploit PR module: https://github.com/rapid7/metasploit-framework/pull/13852/commits/d1e2c75b3eafa7f62a6aba9fbe6220c8da97baa8 This PoC only create user with unauthentication permission and no more administrator permission set. This project is created only for educational purposes and cannot be used for law violation or personal gain. The author of this project is not responsible for any possible harm caused by the materials of this project. Original finding: CVE-2020-6287: Pablo Artuso CVE-2020-6286: Yvan 'iggy' G. Usage: python sap-CVE-2020-6287-add-user.py <HTTP(s)://IP:Port
CVE-2021-34473 Microsoft Exchange Server Remote Code Execution Vulnerability
Building a consolidated RSS feed for articles about cyberattacks
Rules for Elastic Security's detection engine
Quickly Search Large DNS Datasets
Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
halodoc-test-sr
httpx is a fast and multi-purpose HTTP toolkit allows to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads.
Discover Your Attack Surface!
Application and Service Fingerprinting
Python Script to Check IP Against Blacklist
Jbin will gather all the URLs from the website and then it will try to expose the secret data from them such as API keys, API secrets, API tokens and many other juicy information.
Python API wrapper for the Joe Sandbox API.
Contextual Content Discovery Tool
Clusters and elements to attach to MISP events or attributes (like threat actors)
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Phantom Orchestration Playbooks
Scan publicly accessible assets on your AWS cloud environment
Elastic Security detection content for Endpoint
🏴☠️💰 Another Ransomware gang tracker
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.