Moises Tapia's Projects
This script is just a baseline to PoC JWT path transversal, please feel free to contribuite to dis script
Kage is Graphical User Interface for Metasploit Meterpreter and Session Handler
Workshop de nuestra primera herramienta de seguridad Informatica
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
Kubescape is the first open-source tool for testing if Kubernetes is deployed securely according to multiple frameworks: regulatory, customized company policies and DevSecOps best practices, such as the NSA-CISA and the MITRE ATT&CK®.
A deilberately vulnerable angular app for educational purposes
An interactive git visualization and tutorial. Aspiring students of git can use this app to educate and challenge themselves towards mastery of git!
DevSec Linux Baseline - InSpec Profile
LunaSec - Security & Compliance SDKs to stop data leaks in your software. With just a few lines, LunaSec adds a Zero Trust Architecture across your stack, Unique Per-Record Encryption, and protection from common security issues like XSS, SQL Injection, and RCE. Try it out live here: https://app.lunasec.dev
Mastering Python for Networking and Security, Second Edition, published by Packt
Metasploit Framework
Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Django application that performs SAST and Malware Analysis for Android APKs
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
Notary is a project that allows anyone to have trust over arbitrary collections of data
Various course materials, scripts, and configurations from my Offensive Security Engineering Course on Udemy
Gives you one-liners that aids in penetration testing operations, privilege escalation and more
A suite of tools to assist with reviewing Open Source Software dependencies.
Performs OSINT scan on email/domain/ip_address/organization using OSINT-SPY. It can be used by Data Miners, Infosec Researchers, Penetration Testers and cyber crime investigator in order to find deep information about their target. If you want to ask something please feel free to reach out to me at [email protected]
OSRFramework, the Open Sources Research Framework is a AGPLv3+ project by i3visio focused on providing API and tools to perform more accurate online researches.
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
Ostorlab is a security scanning platform that enables running complex security scanning tasks involving multiple tools in an easy, scalable and distributed way.
A tool for embedding XXE/XML exploits into different filetypes
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform