Projects in Awesome Lists by GoSecure
A curated list of projects in awesome lists by GoSecure .
https://github.com/gosecure/pyrdp
RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact
hacktoberfest honeypot mitm pentest pyrdp rdp security
Last synced: 13 May 2025
https://github.com/GoSecure/pyrdp
RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact
hacktoberfest honeypot mitm pentest pyrdp rdp security
Last synced: 13 Mar 2025
https://github.com/gosecure/malboxes
Builds malware analysis Windows VMs so that you don't have to.
hacktoberfest malware-analysis malware-research packer python3 vagrant virtual-machine
Last synced: 16 May 2025
https://github.com/GoSecure/malboxes
Builds malware analysis Windows VMs so that you don't have to.
hacktoberfest malware-analysis malware-research packer python3 vagrant virtual-machine
Last synced: 19 Jul 2025
https://github.com/GoSecure/dtd-finder
List DTDs and generate XXE payloads using those local DTDs.
dtd hacktoberfest security xxe
Last synced: 02 Apr 2025
https://github.com/gosecure/dtd-finder
List DTDs and generate XXE payloads using those local DTDs.
dtd hacktoberfest security xxe
Last synced: 04 Apr 2025
https://github.com/gosecure/wsuspicious
WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
Last synced: 09 Apr 2025
https://github.com/GoSecure/WSuspicious
WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
Last synced: 11 Jul 2025
https://github.com/gosecure/php7-opcache-override
Security-related PHP7 OPcache abuse tools and demo
opcache php7 poc vulnerability
Last synced: 06 Apr 2025
https://github.com/GoSecure/php7-opcache-override
Security-related PHP7 OPcache abuse tools and demo
opcache php7 poc vulnerability
Last synced: 24 Apr 2025
https://github.com/gosecure/pywsus
Standalone implementation of a part of the WSUS spec. Built for offensive security purposes.
attack hacktoberfest python wsus
Last synced: 06 Apr 2025
https://github.com/gosecure/csp-auditor
Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
burp burp-plugin csp hacktoberfest http security zap zap-plugin
Last synced: 05 Apr 2025
https://github.com/GoSecure/csp-auditor
Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
burp burp-plugin csp hacktoberfest http security zap zap-plugin
Last synced: 31 Mar 2025
https://github.com/gosecure/dllpasswordfilterimplant
DLL Password Filter Implant with Exfiltration Capabilities
active-directory credentials password pentest
Last synced: 05 Apr 2025
https://github.com/gosecure/template-injection-workshop
Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
appsec codelabs freemarker injection jinja2 template tornado twig velocity vulnerable-web-app
Last synced: 05 Apr 2025
https://github.com/gosecure/xxe-workshop
Workshop given at Hack in Paris 2019
Last synced: 05 Apr 2025
https://github.com/gosecure/ldap-scanner
Checks for signature requirements over LDAP
Last synced: 05 Apr 2025
https://github.com/gosecure/freshonions-torscraper
Fresh Onions is an open source TOR spider / hidden service onion crawler
Last synced: 11 May 2025
https://github.com/gosecure/frida-xamarin-unpin
A Frida script to bypass Xamarin certificate pinning implementations
Last synced: 05 Apr 2025
https://github.com/gosecure/advanced-binary-analysis
Materials for the Binary Analysis Workshop presented at NorthSec 2020
Last synced: 15 Oct 2025
https://github.com/gosecure/xfsc
eXtensions for Financial Services (XFS) proof of concept client to explore and issue commands directly to the devices that support the protocol. Force ATMs to dispense cash if you have code execution on them.
atm cash-dispenser pentest xfs
Last synced: 17 Oct 2025
https://github.com/gosecure/security-cheat-sheet
Minimalist cheat sheet for developpers to write secure code
cheatsheet dotnet security xss
Last synced: 28 Feb 2025
https://github.com/gosecure/break-fast-serial
A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs
exploit java security serialization tool vulnerability
Last synced: 05 Apr 2025
https://github.com/gosecure/linkedin-osint
A simple proof of concept that demonstrate how emails can easily be tie to LinkedIn profile
Last synced: 05 Apr 2025
https://github.com/gosecure/gophish-cli
Gophish Python cli to perform huge phishing campaigns
Last synced: 05 Apr 2025
https://github.com/gosecure/presentations
Material from presentations done by GoSecure researchers
presentations research reveal-js security slides
Last synced: 20 Jan 2026
https://github.com/gosecure/unicode-pentester-cheatsheet
An easy to navigate list of unicode characters that have risky transformations 💥
Last synced: 21 Jan 2026
https://github.com/gosecure/cisco2checkpoint
Tool that assists in migrating firewall rules from Cisco to Checkpoint. Will optimize rules for you (rationalization, reuse merging, etc.).
checkpoint cisco ciscoconfparse firewall-rules
Last synced: 10 Jul 2025
https://github.com/gosecure/zap-autodecode-view
ZAP plugin demonstrating custom view for WebSocket messages.
Last synced: 31 Jul 2025
https://github.com/gosecure/malware-ioc
Indicators of Compromise (IOCs) for malware we have researched
Last synced: 20 Jan 2026
https://github.com/GoSecure/malware-ioc
Indicators of Compromise (IOCs) for malware we have researched
Last synced: 21 Nov 2025
https://github.com/gosecure/goinsecure-deserialization
Accompanying material needed for the workshop
Last synced: 05 Apr 2025
https://github.com/gosecure/lansweeperpasswordrecovery
Lansweeper Password Recovery Tool
Last synced: 05 Apr 2025
https://github.com/gosecure/44con-code-review-workshop
References, tools and sample payloads
Last synced: 09 Apr 2025
https://github.com/gosecure/orange-code-widget
:orange: Widget for Orange to visualize code sample
add-on code data-science data-visualization machine-learning orange widget
Last synced: 05 Apr 2025
https://github.com/gosecure/jenkins-fsb
Jenkins instance with preconfigured jobs to analyze Java binaries using Find Security Bugs.
Last synced: 05 Apr 2025
https://github.com/gosecure/wsuspect-proxy
WSUSpect Proxy - a tool for MITM'ing insecure WSUS connections
blackhat exploitation man-in-the-middle windows wsus
Last synced: 09 Jul 2025
https://github.com/gosecure/bettercap
The Swiss Army knife for 802.11, BLE and Ethernet networks reconnaissance and MITM attacks.
Last synced: 14 Jan 2026
https://github.com/gosecure/owasp-workshop-zap
Atelier pratique sur le développement d'extension ZAP / Workshop on ZAP extension development
Last synced: 09 Apr 2025
https://github.com/gosecure/malware_investigation_template
Because .idb files should be version controlled.
Last synced: 12 Apr 2025
https://github.com/gosecure/confoo-xss-bypass-demos
Demonstration for the presentation Modern XSS
Last synced: 20 Jan 2026
https://github.com/gosecure/scoutmerge
ScoutMerge is an extension for ScoutSuite allowing you to easily display results of hundreds of projects audits into a single text file.
Last synced: 08 Jul 2025
https://github.com/gosecure/notebooks
Cybersecurity Research Jupyter Notebooks for the Community
Last synced: 09 Apr 2025
https://github.com/gosecure/jupyterhub-workshop-environment
Opinionated JupyterHub deployment for workshops relying on GitHub for Authentication
jupyter-notebook jupyterhub jupyterlab workshop
Last synced: 09 Apr 2025