Mark Sowell's Projects
Instant API security through API discovery, automated business logic testing and runtime detection.
Find an AWS Account ID from any S3 Bucket
Deploy a Private Burp Collaborator server with a wildcard Let's Encrypt SSL certificate including automatic renewal for advanced penetration testing. Includes scripts and guides for a seamless cloud deployment process.
A Python package for creating a clickjacking proof of concept (POC).
Express with XSS in environment variable
Docker Compose file for Osmedeus behind Traefik Reverse Proxy
Express with XSS in environment variable
Burp Suite extension designed to help security professionals manage and track web application security findings
Google Workspace Automation is a collection of Google Apps Scripts for enhancing and automating functionalities within Google Workspace. The scripts streamline tasks in Sheets, Docs, Slides, and more, aiming to boost productivity and simplify workflows.
Postman Collection for Check Point Harmony Connect Corporate Access API
A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
Burp Suite extension designed to help security professionals search for custom sensitive information in HTTP responses
Mark Sowell - Penetration Tester at Check Point Software Technologies Ltd. - CEH Master, CCSM Elite, & Cybersecurity Expert
A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Basics on commands/tools/info on how to assess the security of mobile applications
A curated list of my GitHub stars by stargazed
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
Retire HTML API Parser is an automation tool that parses Retire.js HTML results, enhancing vulnerability reporting for JavaScript libraries. This solution leverages Google Custom Search API.
A Python script to parse Retire.js HTML scan results and extract vulnerability information from the table for AppSec reports.
Retire HTML Serverless Parser is an automation tool that parses Retire.js HTML results, enhancing vulnerability reporting for JavaScript libraries. This solution leverages a serverless architecture on GCP, while maintaining the privacy and security of user data through transient processing.
Royal Toolbox fork with Hammerspoon integration for enhanced connection management at launch.
A Python package to capture a trimmed screenshot of the SSL Labs report for a given domain.
Capture a trimmed screenshot of the SSL Labs report for a given domain.