OligoCyberSecurity / ShellTorchChecker
A tool that checks if a TorchServe instance is vulnerable to CVE-2023-43654
☆34Updated 4 months ago
Related projects: ⓘ
- Blogpost series showcasing interesting cloud - web app security bugs☆44Updated last year
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆19Updated last month
- POC for CVE-2022-23648☆35Updated 2 years ago
- An interactive CLI application for interacting with authenticated Jupyter instances.☆49Updated 6 months ago
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆19Updated last year
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆20Updated 2 months ago
- FastCVE - fast, rich and API-based search for CVE and more (CPE, CWE, CAPEC)☆37Updated last month
- boostsecurityio/lotp☆97Updated 5 months ago
- This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me☆16Updated last month
- A curated list of argument injection vectors☆37Updated 3 weeks ago
- WAF bypass PoC☆43Updated 11 months ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆30Updated last year
- ☆31Updated last year
- ☆115Updated last year
- Manager of third-party sources of Semgrep rules 🗂☆74Updated last month
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆110Updated last year
- An extension to use Semgrep inside Burp Suite.☆86Updated last year
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆38Updated 9 months ago
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆68Updated 7 months ago
- ☆15Updated last year
- using ML models for red teaming☆39Updated last year
- Static Token And Credential Scanner☆94Updated last year
- Some of my rough notes for Docker threat detection☆46Updated last year
- ☆108Updated last year
- Nuclei plugins to audit Chrome extensions☆64Updated 2 months ago
- ☆163Updated 2 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆95Updated 7 months ago
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆39Updated 2 years ago
- ☆39Updated 3 months ago
- Fast, simple library in Go to fetch CVEs from the National Vulnerability Database feeds☆21Updated last year