The best WordPress to static site migrator

Matkap - hunt down malicious Telegram bots

Multi-Cloud Security Auditing Tool

A powerful scanner to scan your Filesystem, S3, MySQL, Redis, Google Cloud Storage and Firebase storage for PII and sensitive data.

Scan for misconfigured S3 buckets across S3-compatible APIs!

Abstraction library for AWS Bedrock

notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)

Proof-of-concept code for research into GitHub Actions Cache poisoning.

boostsecurityio/lotp

Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations

An open project to list all publicly known cloud vulnerabilities and CSP security issues

The Network Execution Tool

Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available

Graph-based security analysis for everyone

GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment

CVE-2023-3269: Linux kernel privilege escalation vulnerability

How GitHub Actions workflows can be hacked

secretz, minimizing the large attack surface of Travis CI

HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.

Application Kernel for Containers

Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.

evilginx3 + gophish

Wrapper to inject an Objection/Frida gadget into an APK, with support for app bundles/split APKs.

cmd2 - quickly build feature-rich and user-friendly interactive command line applications in Python

Let the computer to your stalking

A Social Media Enumeration & Correlation Tool by Jacob Wilkin(Greenwolf)

Xori is an automation-ready disassembly and static analysis library for PE32, 32+ and shellcode

A repository for items learned in my Getting Started with Jenkins and Docker tutorial series