Repository History
10 repositories tagged with Cybersecurity
Meta-GraphQL-Beautifier: Enhance Burp Suite for GraphQL Requests
Meta-GraphQL-Beautifier is a Burp Suite extension designed to improve the readability and analysis of Meta GraphQL requests. It provides beautification and highlighting features, making it easier for security professionals to work with complex GraphQL traffic. This tool streamlines the process of identifying and understanding potential vulnerabilities within GraphQL endpoints.
CloakQuest3r: Uncovering Real IPs Behind Cloudflare and Reverse Proxies
CloakQuest3r is an open-source Python tool designed for security professionals to uncover the real origin IP addresses of websites protected by Cloudflare and other reverse proxy services. It achieves this through comprehensive subdomain enumeration, DNS history analysis, and SSL certificate examination. This tool is invaluable for authorized security testing and strengthening web infrastructure defenses.
Sirius: Open-Source Vulnerability Scanner with Real-time Monitoring
Sirius is an open-source, comprehensive vulnerability scanner that integrates community-driven security intelligence and automated penetration testing. Its latest v0.4.0 release introduces robust system monitoring and observability features, enhancing its capabilities. The platform offers a user-friendly interface and a quick Docker-based setup, making it accessible for security professionals.
Harden-Windows-Security: Enhance Your Windows System Security with Official Methods
The Harden-Windows-Security repository by HotCakeX provides robust tools and guides to secure Windows using official Microsoft methods. It offers two key applications, Harden System Security and AppControl Manager, available on the Microsoft Store, catering to personal, enterprise, and military security needs. The project emphasizes defense-in-depth and adheres to SLSA Level 3 compliance for secure development.
Subwiz: A Lightweight GPT Model for Subdomain Discovery
Subwiz is an innovative, lightweight GPT model designed specifically for discovering subdomains. It leverages a transformer architecture, trained on extensive subdomain lists, to predict new subdomains efficiently. This tool is ideal for security researchers and developers looking to expand their subdomain enumeration capabilities.
RustScan: The Modern, Fast, and Extensible Port Scanner
RustScan is a cutting-edge port scanner designed for speed and efficiency, capable of scanning all 65k ports in just 3 seconds. It features a powerful scripting engine supporting Python, Lua, and Shell, allowing for automated task execution and seamless integration with tools like Nmap. With adaptive learning capabilities and a focus on accessibility, RustScan offers a modern and highly customizable solution for network security professionals.
evilginx2: Advanced Phishing with 2FA Bypass Framework
evilginx2 is a powerful man-in-the-middle attack framework designed for advanced phishing campaigns. It effectively captures login credentials and session cookies, enabling the bypass of two-factor authentication. Written in Go, this standalone application integrates its own HTTP and DNS server for easy setup and use.
FuncVul: Function-Level Vulnerability Detection with LLMs and Code Chunks
FuncVul is an innovative model designed to detect vulnerabilities at the function level in C/C++ and Python code, addressing a critical gap in software supply chain security. By leveraging large language models (LLMs) and a code chunk-based approach, FuncVul significantly improves the precision of vulnerability identification. The model demonstrates superior performance compared to existing state-of-the-art methods, achieving high accuracy and F1 scores across various datasets.
Argus: The Ultimate Python Toolkit for Information Gathering and Reconnaissance
Argus is a powerful, Python-based toolkit designed for comprehensive information gathering and reconnaissance. It features an intuitive command-line interface and over 130 modules for in-depth analysis of networks, web applications, and security configurations. This tool empowers users to efficiently explore target systems, providing valuable insights for educational and ethical security assessments.
Maigret: OSINT Tool for Username-Based Information Gathering Across Thousands of Sites
Maigret is a powerful Open-Source Intelligence (OSINT) tool that gathers information about a person by their username across thousands of websites. It's an easy-to-use fork of Sherlock, offering extensive site support and advanced features like recursive search and detailed reporting without requiring API keys. This tool is invaluable for cybersecurity professionals, investigators, and anyone performing reconnaissance.