This is your work, valued
w3af. w3af: web application attack and audit framework, the open source web vulnerability scanner.
4.9kenumerate-iam. Enumerate the permissions associated with AWS credential set
1.2knimbostratus. Tools for fingerprinting and exploiting Amazon cloud infrastructures
513race-condition-exploit. Tool to help with the exploitation of web application race conditions
184mongo-objectid-predict. Predict Mongo ObjectIds
151websocket-fuzzer. HTML5 WebSocket message fuzzer
146jwt-fuzzer. JWT fuzzer
107cc-lambda. Search the common crawl using lambda functions
97secure-ubuntu-desktop. Maintain a list of tips and tricks to be used by Ubuntu users to secure their laptops.
65w3af-webui. Django Web UI contributed by Yandex for w3af.
51vpc-vpn-pivot. Pivot into private VPC networks using a VPN connection
43django-moth. A Django vulnerable Web application for testing the w3af framework
32w3af-moth. A set of vulnerable PHP scripts used to test w3af's vulnerability detection features.
28w3af-kali. w3af packaging for Kali distribution
26nimbostratus-target. This repository holds a target infrastructure you can use for running the nimbostratus tools.
24aws-audit-automation. Tools to automate AWS Cloud security assessments
24splunk-logger. A logging handler for Splunk. Lets you send information to Splunk directly from your Python code.
23w3af-api-client. REST API client to consume w3af
17pico-wavsep. A minimalistic way to run WAVSEP
16aws-backup. AWS Backup implementation in terraform
13owaspantisamy. Automatically exported from code.google.com/p/owaspantisamy
12docker-anomalies. Docker container anomaly detection
12pico. Tool to identify and exploit timing attacks
11dirty-dependency-check. Vulnerability dependency check for Maven projects
10w3af-module. Tools to install w3af as a Python module
10burp-proxy-search. Burp suite HTTP history advanced search
10docker-tag-naming. A small tool that helps name docker tags
9collector. Collect performance metrics for any software using AWS
7sentinela. Sentinela is a highly configurable operating system watchdog which can take actions based on pre-configured rules.
7w3af-packages. Files and utilities that define w3af packages and installers for Windows, Debian, FreeBSD, etc.
6w3af-api-docker. Docker image for w3af REST API with nginx, uwsgi and supervisord
5wivet. Web Input Vector Extractor Teaser
5w3af-qa. Quality related stuff for w3af.
4cryptopals. My solutions to the cryptopals challenge
4django-uwsgi-nginx-ssh. Django 1.5.1 with uwsgi, nginx and SSH.
4NoSQLMap. Automated NoSQL database enumeration and web application exploitation tool.
3py-xchat-twitter. Twitter client written as an XChat plugin (Python)
3hash-blender. Takes various inputs and separators, mixes them, applies a hash function and verifies if match was found
3w3af-performance-analysis. Analysis tool for performance output generated by w3af
3wavsep. The Web Application Vulnerability Scanner Evaluation Project
3qotd. A simple quote of the day library
2cloudmapper. CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
2pico-string-compare-local. String comparison scripts for pico
2burp-extensions. Collection of Burp extensions
2flower. Real-time monitor and web admin for Celery distributed task queue
2HTTPretty. HTTP client mocking tool for Python, it's like ruby's FakeWeb for python
2scripts. scripts from pixelbeat.org
2cloudjack. Route53/CloudFront Vulnerability Assessment Utility
2w3af-kali-ci. A helper repository to build w3af-kali in CircleCI
1high-entropy-json. Call Lyft's high-entropy-string for each string in a JSON document
1django-celery-email. A Django 1.2+ email backend that uses a celery task for sending the email.
1pebble. Multi threading and processing eye-candy.
1panelseguridad. Introducción al mundo de la seguridad
1docker-jinja. The extension to Docker you want. ed
1django-rest-framework-timing. Minimalistic Django REST framework to test timing attacks
1PMapper. A tool for quickly evaluating IAM permissions in AWS.
1