Stars
Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
Have fun injecting SQL into a Ruby on Rails application!
This is a simple app to create flash cards with hints and use them as and when required.
Mini website for testing both general CS knowledge and enforce coding practice and common algorithm/data structure memorization.
A complete daily plan for studying to become a Google software engineer.
How to be low-level programmer
A complete computer science study plan to become a software engineer.
An automated approach to performing recon for bug bounty hunting and penetration testing.
Combined port scanning w/ Masscan's speed & Nmap's scanning features.
A swiss army knife for pentesting networks
Fetch many paths for many hosts - without killing the hosts
Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
Blind SQL injection exploitation tool written in ruby.
Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
Simple XXE test suite generated specifically for SAML interfaces
Collection of scripts to help manage Geo IP data and Masscan jobs
A tool for embedding XXE/XML exploits into different filetypes
Practice Web App written in python with some vulnerabilities.
A set of tools made to assist in penetration testing GWT applications. Additional details about these tools can be found on my OWASP Appsec DC slides available here: http://www.owasp.org/images/7/7…
Examine HTTP response headers for common security issues
A practical C/C++ pointer reference for anyone who has ever had to deal with this junk.
[NOT MAINTAINED] This script creates a NATed or Bridged WiFi Access Point.