sergiogarciasec Goto Github PK

android-malware

Collection of android malware samples

apkid

Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

backdoors101

Backdoors Framework for Deep Learning and Federated Learning. A light-weight tool to conduct your research on backdoors.

big-ass-data-broker-opt-out-list

bruteforce-lists

Some files for bruteforcing certain things.

captcha-breaker

High Accuracy Captcha Breaker with Tensorflow and Node.js

cloud-ip-ranges

An up-to-date export of cloud provider IP address ranges

commit-watcher

Find interesting and potentially hazardous commits in git projects

commonspeak2

Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists

datasploit

An #OSINT Framework to perform various recon techniques on Companies, People, Phone Number, Bitcoin Addresses, etc., aggregate all the raw data, and give data in multiple formats.

detect-secrets

An enterprise friendly way of detecting and preventing secrets in code.

dex-oracle

A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis

domainhunter

Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names

frida-scripts

A collection of my Frida.re instrumentation scripts to facilitate reverse engineering of mobile apps.

gobuster

Directory/File, DNS and VHost busting tool written in Go

h4cker

This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.

infosec_reference

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

ip-prefix-list

This repository contains updated IP Prefix list of major Internet Companies.

ipranges

🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft (Azure), Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.

jadx

Dex to Java decompiler

jwt-cracker

Simple HS256 JWT token brute force cracker

jwt_tool

:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens

keywords

kiterunner

Contextual Content Discovery Tool

kubescape

kubescape is the first tool for testing if Kubernetes is deployed securely as defined in Kubernetes Hardening Guidance by to NSA and CISA (https://www.nsa.gov/News-Features/Feature-Stories/Article-View/Article/2716980/nsa-cisa-release-kubernetes-hardening-guidance/)

memcrashed-ddos-exploit

DDoS attack tool for sending forged UDP packets to vulnerable Memcached servers obtained using Shodan API

noscript

The popular NoScript Security Suite browser extension.

payloadsallthethings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

probable-wordlists

Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

public-pentesting-reports

A list of public penetration test reports published by several consulting firms and academic security groups.