iosifache / ossfortress
Workshop for finding software vulnerabilities using open source tools, which includes a Goat-like Python and C application
☆24Updated 3 weeks ago
Related projects: ⓘ
- ☆31Updated last year
- Analyse binaries for missing security features, information disclosure and more...☆84Updated last year
- Get root via TTY / TIOCSTI stuffing☆60Updated 2 months ago
- Command line fuzzer and bruteforcer 🌪 wfuzz for command☆85Updated 2 years ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆27Updated 6 months ago
- Discover services embedded in a site's DNS records☆18Updated last week
- Network Policy Helper☆17Updated this week
- Checks SSL/TLS certificates for potential malicious connections by detecting and blocking certificates used by botnet command and control…☆35Updated 6 months ago
- WallEscape vulnerability in util-linux☆50Updated 5 months ago
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.☆71Updated last year
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆49Updated 2 years ago
- AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.☆26Updated 4 months ago
- HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets☆34Updated last year
- A fast port scanner written in go with a focus on reliability and simplicity.☆16Updated 2 years ago
- A curated list of argument injection vectors☆37Updated 3 weeks ago
- ☆59Updated 3 years ago
- An eBPF detection program for CVE-2022-0847☆27Updated 2 years ago
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆19Updated last year
- Java archive implant toolkit.☆31Updated last week
- Jumpstart multiple WebSocket servers quickly☆25Updated 2 years ago
- gozero: the wannabe zero dependency runtime for Go developers (experimental)☆18Updated 5 months ago
- masscan with exclusive excludes☆55Updated 10 months ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆19Updated last month
- Provides an overview of the inner file structure of a PDF☆24Updated last year
- Displays a list of open listening sockets. It is a minimal alternative to ss or netstat.☆27Updated 4 months ago
- JA4TScan is an active TCP server fingerprinting tool.☆44Updated 3 weeks ago
- 🛡️ Introducing eBPFShield - a powerful 📍IP-intelligence and 📈DNS monitoring tool built using eBPF!☆60Updated last year
- lightweight CVE search☆21Updated last year
- ☆57Updated 6 months ago
- Security and Privacy Failures in Popular 2FA Apps☆17Updated 11 months ago