• OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)

    Prolog 1,306 441 Apache-2.0 Updated Jul 20, 2018
  • ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analys…

    C 2,197 706 Apache-2.0 Updated Jul 20, 2018
  • A Social Media Enumeration & Correlation Tool

    1 Updated Jul 12, 2018
  • A Password Spraying tool for Active Directory Credentials by Jacob Wilkin(Greenwolf)

    Shell 136 23 Updated Jul 6, 2018
  • Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.

    Python 2,246 741 GPL-3.0 Updated Jun 28, 2018
  • ModSecurity v3 Nginx Connector

    C 312 80 Apache-2.0 1 issue needs help Updated Jun 26, 2018
  • Simple REST-style web service for the CVE searching

    Ruby 44 16 Apache-2.0 Updated Jun 13, 2018
  • Regression tests for OWASP CRS v3

    Python 8 8 Apache-2.0 Updated Jun 14, 2018
  • Python 4 Updated Jun 11, 2018
  • This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)

    17 5 Updated May 22, 2018
  • Various Scripts

    Updated May 17, 2018
  • Set of CLI tools to transform ModSecurity logs into a meaningful information, given a context.

    Python 15 6 Apache-2.0 Updated May 3, 2018
  • C 7 7 Updated Apr 25, 2018
  • ModSecurity v3 Apache Connector

    Perl 23 21 Apache-2.0 Updated Mar 22, 2018
  • Python 138 37 Updated Mar 13, 2018
  • cribdrag - an interactive crib dragging tool for cryptanalysis on ciphertext generated with reused or predictable stream cipher keys

    Python 116 51 GPL-3.0 Updated Mar 4, 2018
  • Next generation remote logging tool for ModSecurity, supporting native and JSON format.

    C 13 5 Updated Jan 29, 2018
  • Python script for dumping firmware from read-back protected nRF51 chips

    Python 1 Updated Jan 17, 2018
  • A Burp Extension to test applications for vulnerability to the Web Cache Deception attack

    Java 82 23 GPL-3.0 Updated Nov 23, 2017
  • Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised.

    PowerShell 393 104 Apache-2.0 Updated Oct 27, 2017
  • Set of Python scripts to perform SecRules language evaluation on a given http request.

    Python 11 9 Updated Oct 16, 2017
  • Utility to manipulate SDBM files used by ModSecurity. With that utility it is possible to _shrink_ SDBM databases. It is also possible to list the SDBM contents with filters such as: expired or invalid items only.

    C 15 11 Apache-2.0 Updated Oct 16, 2017
  • Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid in searching for Privilege Escalation issues.

    Java 55 13 Updated Sep 19, 2017
  • Set of test cases that can be used to test custom implementations of the SecRules language (ModSecurity rules format).

    Perl 6 8 Updated Aug 21, 2017
  • Documentation for the OWASP CRS project

    Python 15 6 Apache-2.0 Updated Aug 11, 2017
  • Net::TNS, a Ruby library for connecting to Oracle databases.

    Ruby 24 13 Apache-2.0 Updated Jul 25, 2017
  • A repository of tools and scripts related to malware analysis

    Ruby 173 66 GPL-3.0 Updated Jul 29, 2016
  • Performs method enumeration and interrogation against flash remoting end points.

    Python 25 11 GPL-3.0 Updated Jun 1, 2016
  • The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of configurable vulnerability testbeds.

    PHP 309 119 GPL-3.0 Updated May 24, 2016
  • Python bindings for libModSecurity (aka ModSecurity v3)

    Python 16 11 Updated May 16, 2016