fthomasella Goto Github PK
Name: Fernando
Type: User
Name: Fernando
Type: User
In-depth Attack Surface Mapping and Asset Discovery
Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
A curated list of various bug bounty tools
Static analysis tools for all programming languages
The Swiss Army knife for 802.11, BLE and Ethernet networks reconnaissance and MITM attacks.
Free Online Books
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.
cloc counts blank lines, comment lines, and physical lines of source code in many programming languages.
Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.
Detect it Easy
dirbuster-ng is C CLI implementation of the Java dirbuster tool
.NET debugger and assembly editor
ESLint rules for Node Security
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
A simple iptables firewall to setup mypentest lab and try to protect myself from other users
Discovering vulnerabilities in firmware through concolic analysis and function clustering.
Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
👨🎓 Java related : basic, concurrent, algorithm
Quick and Dirty Penetration Testing Notes
A PHP framework for web artisans
Laravel N+1 Query Detector
Scripted Local Linux Enumeration & Privilege Escalation Checks
This cheatsheet is aimed at the OSCP aspirants to help them understand the various methods of Escalating Privilege on Linux based Machines and CTFs with examples.
The LAZY script will make your life easier, and of course faster.
MARA is a Mobile Application Reverse engineering and Analysis Framework. It is a toolkit that puts together commonly used mobile application reverse engineering and analysis tools to assist in testing mobile applications against the OWASP mobile security threats.
Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
Mobile Security Framework is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing framework capable of performing static analysis, dynamic analysis, malware analysis and web API testing.
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.