mazen160 Goto Github PK

bfac

BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source code.

ct-monitor

A monitoring tool for certificate transparency of ProtonMail's SSL/TLS certificates

detect_passive_secrets

diffparser

A Golang package for parsing git diffs

dirsearch

Web path scanner

dnsrecon

DNS Enumeration Script

firefox-security-toolkit

A tool that transforms Firefox browsers into a penetration testing suite

githubcloner

A script that clones Github repositories of users and organizations.

go-random

🌐 go-random: A fast, clear, and cryptographically-secure random data generator for Golang

gorun

gorun is a tool enabling one to put a "bang line" in the source code of a Go program to run it, or to run such a source code file explicitly. It was created in an attempt to make experimenting with Go more appealing to people used to Python and similar languages which operate most visibly with source code.

gronpy

Print JSON objects in a "Greppable" output.

infosec-black-friday

All the deals for InfoSec related software/tools this Black Friday

juice-shop

jwt-pwn

Security Testing Scripts for JWT

mazinahmed.net

mazinahmed.net

ohmyzsh

🙃 A delightful community-driven (with nearly 1,500 contributors) framework for managing your zsh configuration. Includes 200+ optional plugins (rails, git, OSX, hub, capistrano, brew, ant, php, python, etc), over 140 themes to spice up your morning, and an auto-update tool so that makes it easy to keep up with the latest updates from the community.

opcde

OPCDE Cybersecurity Conference Materials

openrefine

OpenRefine is a free, open source power tool for working with messy data and improving it

ptf

The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

public

seclists

SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.

secrets-patterns-db

Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.

server-status_pwn

A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-status instances.

shennina

Automating Host Exploitation with AI

smarter_csv

Ruby Gem for smarter importing of CSV Files as Array(s) of Hashes, with optional features for processing large files in parallel, embedded comments, unusual field- and record-separators, flexible mapping of CSV-headers to Hash-keys

struts-pwn

An exploit for Apache Struts CVE-2017-5638

struts-pwn_cve-2017-9805

An exploit for Apache Struts CVE-2017-9805

struts-pwn_cve-2018-11776

An exploit for Apache Struts CVE-2018-11776

tfquery

tfquery: Run SQL queries on your Terraform infrastructure. Query resources and analyze its configuration using a SQL-powered framework.

tfsec

🔒🌍 Security scanner for your Terraform code