yog3shsharma Goto Github PK

android_app_security_checklist

Android App Security Checklist

appmon

Documentation:

asvs

Application Security Verification Standard

awesome-iot-hacks

A Collection of Hacks in IoT Space so that we can address them (hopefully).

binwalk

Firmware Analysis Tool

brutespray

Brute-Forcing from Nmap output - Automatically attempts default creds on found services.

bug-bounty

My personal bug bounty toolkit.

cybertruckchallenge19

Android security workshop material taught during the CyberTruck Challenge 2019 (Detroit USA).

devops

devsecops-studio

Virtual environment for learning DevSecOps

django-defectdojo

DefectDojo is an open-source application vulnerability correlation and security orchestration application

domain_hunter

A Burp Suite Extender that search sub domain and similar domain from sitemap

firmwalker

Script for searching the extracted firmware file system for goodies!

gdpr-patterns

httpie

Command line HTTP client, a user-friendly curl alternative with an intuitive UI, JSON support, syntax highlighting, wget-like downloads, extensions, etc. Follow https://twitter.com/CLIHTTP for tips and updates.

igoat

OWASP iGoat - A Deliberately Insecure iOS Application by Swaroop Yermalkar

insecurecryptographydecryptor

A demo application to decrypt a weak encryption technique followed in https://github.com/prateek147/InsecureCryptography

juice-shop

OWASP Juice Shop is an intentionally insecure webapp for security trainings written entirely in Javascript which encompasses the entire OWASP Top Ten and other severe security flaws.

keychain-dumper

A tool to check which keychain items are available to an attacker once an iOS device has been jailbroken

kube-bench

The Kubernetes Bench for Security is a Go application that checks whether Kubernetes is deployed according to security best practices

kube-hunter

Hunt for security weaknesses in Kubernetes clusters

linkfinder

A python script that finds endpoints in JavaScript files

masscan

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

mobile-security-framework-mobsf

Mobile Security Framework is an intelligent, all-in-one open source mobile application (Android/iOS/Windows) automated pen-testing framework capable of performing static, dynamic analysis and web API testing.

mod_wsgi

Source code for Apache/mod_wsgi.

needle

The iOS Security Testing Framework.

oss2018

Open Security Summit 2018

owasp-masvs

The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.

owasp-modsecurity-crs

OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)

owasp-mstg

The Mobile Security Testing Guide (MSTG) is a manual for testing the security of mobile apps. It describes technical processes for verifying the controls listed in the OWASP Mobile Application Verification Standard (MASVS). The MSTG is meant to provide a baseline set of test cases for black-box and white-box security tests, and to help ensure completeness and consistency of the tests.