Ground Control
A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities. This repository contains a set of scripts that can be used to test for common web vulnerabilities. * SSRF (Server-Side Request Forgery) - This script will make requests to a specified URL and check if it can be used to access internal systems. * Blind XSS - This script will inject JavaScript code into a specified URL and check if it can be used to steal user data. * XXE (XML External Entity) - This script will inject XML code into a specified URL and check if it can be used to access internal systems. These scripts are meant to be used for testing and educational purposes only. Please note that these scripts are not meant to be used for malicious purposes. If you have any questions or concerns, please feel free to reach out to me. Thank you for your understanding.
FEATURES
ALTERNATIVES
An extensible and open-source system for running, monitoring, and managing honeypots with advanced features.
A honeypot tool to detect and log CVE-2019-19781 scan and exploitation attempts.
Honeypot for analyzing data with customizable services and logging capabilities.
OpenCanary is a multi-protocol network honeypot with low resource requirements and alerting capabilities.
Building Honeypots for Industrial Networks using Honeyd and simulating SCADA, DCS, and PLC architectures.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.