sreuben04 Goto Github PK

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

ohmyzsh

🙃 A delightful community-driven (with 2,000+ contributors) framework for managing your zsh configuration. Includes 300+ optional plugins (rails, git, macOS, hub, docker, homebrew, node, php, python, etc), 140+ themes to spice up your morning, and an auto-update tool so that makes it easy to keep up with the latest updates from the community.

oscp

oss-fuzz-gen-google

LLM powered fuzzing via OSS-Fuzz.

owasp-calculator

🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment

packj

Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

penelope

Penelope Shell Handler

pentest-cheat-sheets

A collection of snippets of codes and commands to make your life easier!

pentest-howtohunt

Collection of methodology and test case for various web vulnerabilities.

php-jpeg-injector

Injects php payloads into jpeg images

podman

Podman: A tool for managing OCI containers and pods.

portswigger_labs

This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's name, description, and my step-by-step solution, as well as any additional notes or observations.

prowler-aws-cspm

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

puppeteer

Headless Chrome Node.js API

pyphisher

Easy to use phishing tool with 77 website templates. Author is not responsible for any misuse.

python

Official Python client library for kubernetes

pythonapi-vampi

Vulnerable REST API with OWASP top 10 vulnerabilities for security testing

pythonhacks

This repo contains some solved python hacker codes

rapidfortcontainerscan-community-images

:gem: RapidFort hardened secure images

red-python-scripts

s3crets_scanner

Scan S3 buckets for secrets

safelog4j

A Java instrumentation agent for log4shell that both verifies exploitability AND prevents exploits.

sarif-tutorials

User-friendly documentation for the SARIF file format.

sast-semgrep

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

scc-code-id

Sloc, Cloc and Code: scc is a very fast accurate code counter with complexity calculations and COCOMO estimates written in pure Go

scm-scorecard

OpenSSF Scorecard - Security health metrics for Open Source

seclists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

secret-auction-bidding

security-champion-framework

The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.

sensitive-data-protection-for-vertex-ai-palm2

Sample notebook for Sensitive Data Protection of Generative AI on Google Cloud