Kirill Zhdanov's Projects
Example of e2e web tests ptoject using Python, Playwright and Pytest with Allure reporting and attaching video files to allure report
Pytest plugin to write end-to-end browser tests with Playwright.
Python version of the Playwright testing and automation library.
Powerful polling utility in Python
TCP Port Redirection Utility
Source code for 'Pro Apache JMeter' by Sai Matam and Jagdeep Jain
Source code for 'Pro Python Best Practices' by Kristian Rother
Swiss Army knife Proxy tool for HTTP/HTTPS traffic capture, manipulation, and replay on the go.
psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & web file upload implementations allowing to write files into the webroot (aka document root). The "blind" aspect is the key here and is inherent to dynamic testing usually conducted with no access to the source code or the filesystem.
An example for my Puppeteer tutorial
Puppeteer example scripts for running Headless Chrome from Node. Run them at https://puppeteersandbox.com
Proof of concept of end2end functional testing with Puppeteer library, Mocha and Chai
example of using puppeteer-to-istanbul to output istanbul reports from puppeteer coverage
Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.
Illustrate two issues with pytest_generate_test conflicting with values provided by fixturures in conftest.py
Source code for 'Python Unit Test Automation' by Ashwin Pajankar
Example application code for the python architecture book
Accept URLs on stdin, replace all query string values with a user-supplied value
Random Shell Scripts and other ideas I have along the way
An automated target reconnaissance pipeline.
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
A list of resources for those interested in getting started in bug bounties
Remove empty directories
A curated list of the most common and most interesting robots.txt disallowed directories.
Find all cool documents on GOV and Info sites
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
information related to working on the SecurityTube Linux Assembly Expert (SLAE64)
Selenium + Pytest tests run in a Docker container