Ground Control
A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities. This repository contains a set of scripts that can be used to test for common web vulnerabilities. * SSRF (Server-Side Request Forgery) - This script will make requests to a specified URL and check if it can be used to access internal systems. * Blind XSS - This script will inject JavaScript code into a specified URL and check if it can be used to steal user data. * XXE (XML External Entity) - This script will inject XML code into a specified URL and check if it can be used to access internal systems. These scripts are meant to be used for testing and educational purposes only. Please note that these scripts are not meant to be used for malicious purposes. If you have any questions or concerns, please feel free to reach out to me. Thank you for your understanding.
FEATURES
ALTERNATIVES
Script for turning a Raspberry Pi into a Honey Pot Pi with various monitoring and logging capabilities.
A tutorial on setting up Dionaea on an EC2 instance in 20 minutes
GHH is a honeypot tool to defend against search engine hackers using Google as a hacking tool.
A crawler-based low-interaction client honeypot for exposing website threats.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.