Firewall bypass script based on DNS history records
Bypass firewalls by abusing DNS history This script will try to find: the direct IP address of a server behind a firewall like Cloudflare, Incapsula,…
View More Firewall bypass script based on DNS history records
Metabigor: Command line Search Engines without any API key
What is Metabigor? Metabigor allows you to do a query from the command line to awesome Search Engines (like Shodan, Censys, Fofa, etc) without any…
View More Metabigor: Command line Search Engines without any API key
frisbee: Collect email addresses by crawling search engine results
Frisbee is a small utility to collect email addresses from search engines and other free-form text sources. Frisbee makes it simple to find email addresses…
View More frisbee: Collect email addresses by crawling search engine results
sysdig-inspect v0.4 releases: powerful opensource interface for container troubleshooting and security investigation
Sysdig Inspect is a powerful opensource interface for container troubleshooting and security investigation Inspect’s user interface is designed to intuitively navigate the data-dense sysdig captures that…
View More sysdig-inspect v0.4 releases: powerful opensource interface for container troubleshooting and security investigation
Attack Surface Analyzer v2.1.22 Alpha releases: analyze your operating system’s security configuration
Attack Surface Analyzer Attack Surface Analyzer (ASA) is a Microsoft-developed open source security tool that analyzes the attack surface of a target system and reports…
View More Attack Surface Analyzer v2.1.22 Alpha releases: analyze your operating system’s security configuration
terraform-aws-secure-baseline: set up your AWS account with the reasonably secure configuration baseline
terraform-aws-secure-baseline A terraform module to set up your AWS account with the reasonably secure configuration baseline. Most configurations are based on CIS Amazon Web Services Foundations v1.2.0.…
View More terraform-aws-secure-baseline: set up your AWS account with the reasonably secure configuration baseline
identYwaf v1.0.113 releases: Blind WAF identification tool
identYwaf is an identification tool that can recognize web protection type (i.e. WAF) based on blind inference. The blind inference is being done by inspecting responses…
View More identYwaf v1.0.113 releases: Blind WAF identification tool
pectre, Meltdown, Foreshadow, Fallout, RIDL, ZombieLoad vulnerability/mitigation checker for Linux & BSD
Spectre & Meltdown Checker A shell script to tell if your system is vulnerable against the several “speculative execution” CVEs that were made public since…
View More pectre, Meltdown, Foreshadow, Fallout, RIDL, ZombieLoad vulnerability/mitigation checker for Linux & BSD
snyk v1.167.2 releases: find & fix known vulnerabilities in open-source dependencies
snyk Snyk helps you find, fix and monitor known vulnerabilities in Node.js npm, Ruby and Java dependencies, both on an ad hoc basis and as…
View More snyk v1.167.2 releases: find & fix known vulnerabilities in open-source dependencies
hardening: make a Ubuntu server a bit more secure
Hardening Ubuntu A quick way to make a Ubuntu server a bit more secure. Tested on 18.04 Bionic Beaver, 18.10 Cosmic Cuttlefish and Ubuntu 19.04…
View More hardening: make a Ubuntu server a bit more secure