Stars
Take a tour of the Stripe .NET library inside a .NET Interactive Notebook
🦄 A curated list of the awesome resources about the Vulnerability Research
Attify Badge GUI tool to interact over UART, SPI, JTAG, GPIO etc.
A tool to hunt for publicly accessible DigitalOcean Spaces
This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference
Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains participating in bug bounty programs.
Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
In-depth attack surface mapping and asset discovery
ReverShellGenerator - A tool to generate various ways to do a reverse shell
A collection of links related to Linux kernel security and exploitation
My proof-of-concept exploits for the Linux kernel
Exploitation Framework for Embedded Devices
Generation-based, context-free grammar fuzzer. Refer to https://github.com/posidron/dharma for a maintained version.
A web page based fuzzer that generates random JS statements then fuzz in the web-browser.
Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
Exercises to learn how to fuzz with American Fuzzy Lop
prototype of coffee maker app, design from #Dribbble by @galgalshir (https://dribbble.com/shots/1920183-Coffee-Maker-App)
Official PHP client for Elasticsearch.
🐘 Elasticsearch real-time search and analytics natively integrated with Hadoop