affilares Goto Github PK
Name: ar35
Type: User
Name: ar35
Type: User
Combine between Crt.sh and Censys.io to gather ipv4 / subdomain (s) / website (s)
Check an IP is Owned by Cloudflare
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Helped during my OSCP lab days.
Check List
Red Teaming & Pentesting checklists for various engagements
CVE-2017-3881 Cisco Catalyst Remote Code Execution PoC
Obtain GraphQL API schema despite disabled introspection!
class-dump binaries for Objc and Swift apps
Prototype Pollution and useful Script Gadgets
This repository is in progress, it will keep updating as I come across to new learning materials. Feel free to contribute.
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
CloudBunny is a tool to capture the real IP of the server that uses a WAF as a proxy or protection. In this tool we used three search engines to search domain information: Shodan, Censys and Zoomeye.
Checks using a test string if a Cloudflare DNS bypass is possible using CloudFail.
Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
🔎 Find origin servers of websites behind by CloudFlare using Internet-wide scan data from Censys.
A tool for identifying misconfigured CloudFront domains
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
This code review checklist helps you be a more effective and efficient code reviewer.
A list of of threat sinks used in the manual security source code review for application security
Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
🎯 Command Injection Payload List
Mobile penetration testing android command cheatsheet
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]
Kubernetes community content
Tool to check for dependency confusion vulnerabilities in multiple package management systems
Checklist for container security - devsecops practices
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.