thesp0nge/java_audit_sh

Stars
2
Language
Shell
License
GNU General Publi...
Created about 2 years ago
Updated about 1 year ago

thesp0nge/java_audit_sh

thesp0nge

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

A set of companion tools needed by everyday job during Java source code audits

dawnscanner

Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks.

owasp-orizon

Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.

owasp-esapi-ruby

The Owasp Esapi Ruby is a port for outstanding release quality Owasp Esapi project to the Ruby programming language. The idea is to build a Ruby gem (the standard ruby library archive format) containing the Esapi concepts implemented in Ruby classes so people using Ruby in their Rails application can have security into them.

wordstress

A security scanner for Wordpress blogging engine

shellerate

A shellcode generator with encryption, encoding and polymorphism facilities built-in

gengiscan

Fingerprint server side technology

enchant

Enchant is is tool aimed to discover web application directory and pages by fuzzing the requests using a dictionary approach.

recon.sh

This is the reconnaissance script I wrote for my OSCP journey

links

A swiss army knife to leverage your webapp attack surface

cross

A tool for finding Cross Site Scripting vulnerabilities in web applications

ciphersurfer

octopress_gravatar_plugin

wc

Your Word Counter Gem

casper

A transparent HTTP proxy

nightcrawler

A python program that crawls a website and tries to stress it, polluting forms with bogus data

HackInBoSafeEdition

Materiale per il talk ad HackInBo - 2020

octopress_highlight_plugin

An octopress plugin to highlight text in your posts

nexty

A command line interface to your Nexpose VA tool

aurora

aurora is an hybrid source code analyzer for security issues

sinatra_ad_auth

Authenticate users against Active Directory in a Sinatra application

nanoc_kickstart

A Nanoc site with batteries included.

palco

Creates Sinatra based application and extension skeletons

coat

COntract And Test - my 2012 summer project, just for fun. I'd like to merge BDD, design by contract, creating a preprocessor language to add security checks and both pre/post conditions in a ruby class

uyuni-hardening-guide

spot_the_vuln

flender

flender is a security oriented bot. It uses github APIs to scan opensource projects for vulnerabilities such as XSS, SQLInjections, and old school ones such as buffer overflow or format bugs

templates

Some useful (for me) templates

dawnscanner_knowledge_base

railsberry2013

My Railsberry 2013 talk stuff

sniper

Network discovery and reconnaissance

hound-dog

An automated web resources discovery hunter

thesp0nge.com

The code behind my nanoc generated blog

paoloperego.it

La mia landing page

datify

Datify is a rubygem to convert a string storing a date or a time in a proper Time ruby object

polite

polite is your text cleaner gem. It removes bad words or offenses and make your text more polite.

trimmy

corto

Corto is a URL Shortening gem

thesp0nge.github.com

My home page at GitHub

ama

Ask me anything

angel

AngeL is a linux kernel module with an ambitious goal: to turn a generic network party in a manner that such an host is unable to start any attack over the network

libweb

A tiny, portable and fast library for handling HTTP requests

codiceinsicuro.github.io

A responsive Jekyll theme with clean typography and support for large full page images.

sessionable

rhsa

Check RedHat Security Advisories for a specific package version closing a CVE

deadly-simple-login-api

An API designed to fulfill login functionality providing a reasonable set of password complexity rules and support to passphrases

armoredcode.github.io

This is the source code for my English blog "The Armored Code"

enc0re

enc0re is a custom binary encoder created just for fun and for OSCE preparation