iOS Developer and Mobile Hacker Certified GIAC Mobile Device Security Analyst (GMOB) + GIAC Penetration Tester (GPEN)
LiveTargetsFinder. Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts and gather service information
366dnsobserver. A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for out-of-band DNS interactions and sends lookup notifications via Slack.
193BurpParamFlagger. A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or LFI.
133s3Takeover. Automate the process of an S3 bucket subdomain takeover via dangling CNAME record
26p12Cracker. A simple tool to brute force a password-protected PFX/P12 file
25pentest_scripts. Various pentesting scripts, focusing on iOS and network security
15p12CrackerGo. A simple Go script to concurrently brute force a password-protected PKCS#12 (PFX/P12) file
9MailBot. Tool to automatically email results from your Python scripts to your inbox as text or as a file attachment, storing the sender email account's password securely in the keychain.
6collectCertInfo. Collects basic SSL certificate information from a list of targets and stores results in a SQLite database.
5needle. The iOS Security Testing Framework
2VoteTracker. VoteTracker iOS App
1go-bitbucket. Unofficial Go client library for bitbucket.org, auto-generated from official OAI spec. NOT a fork of or otherwise related to other go-bitbucket clients.
1