gitr007 Goto Github PK
Name: Moughite EL JOAYDI
Type: User
Bio: Security engineer, vulnerability researcher and Web3 enthusiast.
Location: Amsterdam, Netherlands
Blog: https://r00thunt.com
Name: Moughite EL JOAYDI
Type: User
Bio: Security engineer, vulnerability researcher and Web3 enthusiast.
Location: Amsterdam, Netherlands
Blog: https://r00thunt.com
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Attack and defend active directory using modern post exploitation adversary tradecraft activity
In-depth Attack Surface Mapping and Asset Discovery
HTTP parameter discovery suite.
Automate arbitrary smart contracts with Gelato Automate
Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an output.
A curated list of awesome Ethereum security references
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.
π A curated list of resources dedicated to Modular Smart Accounts
A collection of awesome penetration testing resources, tools and other shiny things
List of Awesome Red Teaming Resources
πΆ A curated list of Web Security materials and resources.
A curated list of awesome Web3 resources, libraries, tools and more.
Awesome XSS stuff
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
Vulnerability research and exploits in Public Bug Bounty programs
"Can I take over XYZ?" β a list of services and how to claim (sub)domains with dangling DNS records.
Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
Cloud Security and CI/CD Pipelines
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security (code scanning), LGTM.com, and LGTM Enterprise
SHELLING - a comprehensive OS command injection payload generator
A swiss army knife for pentesting networks
CTF Writeups
CTF challenges
All about CVE-2018-14667; From what it is to how to successfully exploit it.
Apache Log4j θΏη¨δ»£η ζ§θ‘
π± Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe π
A declarative, efficient, and flexible JavaScript library for building user interfaces.
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. πππ
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google β€οΈ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.