treebuilder Goto Github PK
Type: User
Type: User
POC of SecureWorks' recent Azure Active Directory password brute-forcing vuln
anoNmap is a port scanner which utilizes Facebook's XSPA vulnerability to perform anonymous port scans.
Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters
AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.
Automated Mass Exploiter
Scans a list of websites for Cloudfront or S3 Buckets
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
Find interesting Amazon S3 Buckets by watching certificate transparency logs.
RepoToStoreBugBountyInfo
This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference
This was originally posted by jshaw87. I wanted to keep a copy/update it on the off chance he took it down.
AWS,AZURE,GOOGLE CLOUD IP CIDRS
Abusing Certificate Transparency logs for getting HTTPS websites subdomains.
This PowerShell script will determine if your connection to external servers over HTTPS is being decrypted by an intercepting proxy such as the internet proxies commonly found in corporate environments. It does this by comparing the SSL intermediate certificate being used for your connection to the true/known SSL certificate for the server.
Quickly Search Large DNS Datasets
Damn Vulnerable Java (EE) Application
Damn Vulnerable NodeJS Application
A script to create fake commits
The fastest and cross-platform subdomain enumerator, don't waste your time.
A utility to generate malicious network traffic and evaluate controls
Infinity can get phone numbers from facebook accounts with some maths and shit.
Infinity Coming Soon Template Hugo Version by themefisher
A LinkedIn enumeration tool
Script to quickly enrich an IP address
This program was made to check an IP/cidr againt known bad IP lists, spam lists, proxy lists, vpn lists, tor nodes, and known bot networks. As a cyber defender, all of the above could be potential threats. Please note: I do not maintain theses lists. If you have an inquiry/update for one of the lists, pelase go strait to the vendor who maintains the list
JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
Log4j jndi injects the Payload generator
Among the existing Log4shell practice materials JNDIExploit v1.2
Lootbox downloads open directories shared on Twitter.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.