A list of useful payloads and bypass for Web Application Security and Pentest/CTF
-
Updated
Dec 4, 2024 - Python
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Opiniated RAG for integrating GenAI in your apps 🧠 Focus on your product rather than the RAG. Easy integration in existing products with customisation! Any LLM: GPT4, Groq, Llama. Any Vectorstore: PGVector, Faiss. Any Files. Anyway you want.
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.
The authentication glue you need.
The Rogue Access Point Framework
Daemon to ban hosts that cause multiple authentication errors
Web path scanner
Exploitation Framework for Embedded Devices
OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.
Scapy: the Python-based interactive packet manipulation program & library.
A free & open modern, fast email client with user-friendly encryption and privacy features
Main Sigma Rule Repository
People tracker on the Internet: OSINT analysis and research tool by Jose Pino
Code scanning at ludicrous speed. Find bugs and reachable dependency vulnerabilities. Enforce standards on every commit
Runtime Code Review
Automatic, daily repo and metadata backup - no maintenance needed: fast restore, DR, AWS, and S3 cloud storage support
Backup repositories, metadata and LFS into AWS, Azure, OneDrive, GCP. SOC2 Type II compliant. Pay per repositories, not seats
Protect your app from malicious open source dependencies
Find, fix (and prevent!) known vulnerabilities in your code
We help developers write clean code
Dependency Automation service by Mend.io
Detect open source vulnerabilities in real time with suggested fixes for quick remediation
GuardRails provides continuous security feedback for modern development teams
Automatic daily backups of your GitHub repos and metadata with on-demand restores to protect your business