blues-lab / totp-app-analysis-public
Security and Privacy Failures in Popular 2FA Apps
☆19Updated last year
Related projects ⓘ
Alternatives and complementary repositories for totp-app-analysis-public
- Open YARA scan- and search engine☆17Updated last week
- A tool to reverse engineer and inspect the RPM and APT databases to list all the packages along with executables, service and versions.☆17Updated 6 months ago
- Summary and archive of Vatican .va (Holy See) ccTLD zone data for researchers.☆11Updated last year
- A Simple Log4j Indicator of Compromise Linux Detector☆14Updated 2 years ago
- #️⃣ 🕸️ 👤 HTTP Headers Hashing☆14Updated last year
- Signatures for wraith used to detect secrets across various sources☆15Updated 2 years ago
- Developper-proof prevention of SQL injection (java library)☆11Updated 3 years ago
- siml is a CLI tool for discovering similar, related to, competitive, or alternative options to a given site.☆13Updated last year
- OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research tea…☆18Updated 3 years ago
- Generate representative samples from Pwned Passwords (HIBP)☆12Updated 2 years ago
- Active Directory Password Spray Testing Utility in Go☆14Updated 7 months ago
- Real-time updated lists of U.S. GovCloud IP ranges on Amazon AWS, Microsoft Azure, Google GCP☆17Updated this week
- A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.☆16Updated 4 years ago
- Validate proxies for specific domain☆34Updated 3 years ago
- A Python script that gathers all valid IP addresses from all text files from a directory, and checks them against Whois database, TOR rel…☆30Updated 2 years ago
- python3 scripts to help with aws triage needs☆15Updated 2 years ago
- A command based package for simple display of statistics☆20Updated this week
- This is a lazy enumeration script made to make bug bounty enum & pentest flyovers easy as cake!☆14Updated 4 years ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆11Updated 2 years ago
- OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.☆26Updated last year
- Publishing advisories for CVEs found by POST Cyberforce☆12Updated 4 months ago
- Abusing Cloudflare Workers to establish persistence and exfiltrate sensitive data at the edge.☆12Updated 2 years ago
- A collection of personal ZAP scripts☆13Updated last year
- A tool for the lazy OSINTer that focuses on discovery of subdomains related to a specific domain. The tool will run for free in Google Ap…☆11Updated 3 years ago
- parse ffuf & map endpoints to wordlists☆19Updated 3 years ago
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆23Updated last year
- ⚡ Golang library for quick make pentest tools☆15Updated last year
- A fast port scanner written in go with a focus on reliability and simplicity.☆16Updated last month
- AXFR all the things!☆23Updated 5 months ago
- ☆15Updated 2 years ago