Type: User
log4j-scan
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
malicious-pdf
Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator
manspider
Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!
mapcidr
Small utility program to perform multiple operations for a given subnet/CIDR ranges.
massdns
A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
meg
Fetch many paths for many hosts - without killing the hosts
microsoftwontfixlist
A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))
mihari
A framework for continuous OSINT based threat hunting
mind-maps
Mind-Maps of Several Things
mpc-lib
msolspray
A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.
my-nuclei-templates
Nuclei Templates - Here you will find the templates I use while hunting
nodejsscan
nodejsscan is a static security code scanner for Node.js applications.
notquite0dayfriday
This is a repo which documents real bugs in real software to illustrate trends, learn how to prevent or find them more quickly.
npm-scan
An extensible, heuristic-based vulnerability scanning tool for installed npm packages
offenosint
Beta release
okaayfine
Config files for my GitHub profile.
oneforallfacebook
Modified patch of https://github.com/Naituw/HackingFacebook/ and https://github.com/Naituw/IPAPatch/
oneliner-bugbounty
oneliner commands for bug bounties
onelistforall
Rockyou for web fuzzing
oralyzer
Open Redirection Analyzer
osep-code-snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
oswe-prep
Useful tips and resources for preparing for the AWAE exam.
oswe-preparation
Lots of POC Codes & Preparation materials, scripts, discovery processes in there.
paramspider
Mining parameters from dark corners of Web Archives
payloads
Payload Arsenal for Pentration Tester and Bug Bounty Hunters
pentest-arsenal
Android security pentesting cheatsheet
pentest-tools
Custom pentesting tools
poc
Advisories, proof of concept files and exploits that have been made public by @pedrib.
poc-list
PoC List
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
š Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ššš
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google ā¤ļø Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.
