BuckleGripper
Given a suspected phishing url or file of line separated urls, visit, screenshot, and scrape for interesting files. Visit a suspected phishing page, screenshot it and pillage it for phishing archives. Example of reading in a single url: `$ python bucklegripper.py -s openphish -u http://www.govwebsearch.com/apc/opc/pdp/safe/optusnet.com.au/Login.html`.
FEATURES
ALTERNATIVES
Skyhook facilitates obfuscated HTTP file transfers to bypass IDS detections, enhancing secure data exchange.
A set of YARA rules for identifying files containing sensitive information
A list of useful payloads and bypasses for Web Application Security.
Python utility for testing the existence of domain names under different TLDs to find malicious subdomains.
A project for demonstrating AWS attack techniques with a focus on ethical hacking practices.
A scripting engine for interacting with GraphQL endpoints for pentesting purposes.
Repository of tools for testing iPhone messaging by Project Zero
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.