null-open-security-community / Documentation

Related projects: ⓘ

• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆71Updated 4 years ago
• v1ll41n / H1-Report-Finder
  A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host
  ☆42Updated 4 years ago
• detectify / cs-challenge
  Detectify Crowdsource Challenge
  ☆63Updated 2 years ago
• vengatesh-nagarajan / Cloud-pentest
  Resources to learn cloud environment and pentesting the same, contains AWS, Azure, Google Cloud
  ☆50Updated 2 years ago
• purabparihar / Web-Application-Pentest-Checklist
  ☆21Updated 3 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆81Updated 3 years ago
• TROUBLE-1 / White-box-pentesting
  This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities
  ☆86Updated last year
• MistSpark / Thoughts
  Sharing Various Things
  ☆22Updated 2 years ago
• righettod / log4shell-analysis
  Contains all my research and content produced regarding the log4shell vulnerability
  ☆32Updated 2 years ago
• ahmad0x1 / ARWAD
  Advanced Reconnaissance and Web Application Discovery
  ☆75Updated 2 years ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• h4ckboy19 / XXE_A_TO_Z
  ☆44Updated 2 years ago
• iamthefrogy / bucketbunny
  AWS S3 open bucket poc automated script.
  ☆55Updated 3 years ago
• ShiftLeftSecurity / tarpit-java
  Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks
  ☆75Updated 2 years ago
• areyou1or0 / Infosec-Interview-Questions
  ☆39Updated this week
• m0chan / pwk-cheatsheet
  ☆45Updated 7 years ago
• DK9510 / web-app-exploitation
  ☆18Updated last year
• infinite-omicron / pentesting-checklist
  Penetration Testing Checklist
  ☆35Updated 4 years ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆46Updated last year
• Rhynorater / reports
  ☆56Updated 2 months ago
• zPrototype / bugbounty_stuff
  ☆98Updated 11 months ago
• VitthalS / ivna
  Intentionally Vulnerable Nodejs Application & APIs
  ☆22Updated 2 years ago
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆62Updated 3 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆41Updated 7 months ago
• kleiton0x00 / CORS-one-liner
  A one liner Bash command which finds CORS in every possible endpoint.
  ☆114Updated 3 years ago
• BugBountyResources / targets
  A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…
  ☆93Updated 3 years ago
• fuzz-security / Active-Directory-Exploitation-Cheat-Sheet
  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
  ☆50Updated 4 years ago
• harsh-bothra / Security-Talks-Slides
  This repository contains all the Talk slides that I have given at various security conferences, events & meetups.
  ☆34Updated 3 years ago
• indigos33k3r / portainer-pentest-lab
  OWASP practice lab, just a few copy/pastes away. Fully stacked and ready to go with Docker
  ☆16Updated 5 years ago
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆88Updated 5 months ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆67Updated 4 years ago