kingofthebeat Goto Github PK

git-dumper

A tool to dump a git repository from a website

gitgraber

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

gitoops

all paths lead to clouds

go-scp

Go programming language secure coding practices guide

gopherus

This tool generates gopher link for exploiting SSRF and gaining RCE in various servers

grapefruit

(WIP) Runtime Application Instruments for iOS. Previously Passionfruit

graphw00f

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

h4cker

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

hacking-security-ebooks

Top 100 Hacking & Security E-Books (Free Download) - Powered by Yeahhub.com

hackthebox

HackTheBox WriteUp

hackthebox-writeups

Writeups for HacktheBox 'boot2root' machines

hipaa-compliance-developers-guide

A developers guide to HIPAA compliance and application development.

iam-deescalate

IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)

iamfinder

IAMFinder enumerates and finds users and IAM roles in a target AWS account.

imhex

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

infosec_reference

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

insider

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

intruderpayloads

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

iosappreverseengineering

The world’s 1st book of very detailed iOS App reverse engineering skills :)

iotsecurity101

A Curated list of IoT Security Resources

ipwndfu

open-source jailbreaking tool for many iOS devices

javasec

自己学习java安全的一些总结，主要是安全审计相关

javasec-1

Java安全☞流下了不会Java的眼泪 : )

k8s-security

Kubernetes security notes and best practices

karma_v2

⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

kernel-exploits

keyhacks

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

kube-scan

kube-scan: Octarine k8s cluster risk assessment tool

kubernetes-network-policy-recipes

Example recipes for Kubernetes Network Policies that you can just copy paste

kubernetes-rbac-audit

Tool for auditing RBACs in Kubernetes