Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update README.md #5

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Update README.md #5

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
111 changes: 111 additions & 0 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1 +1,112 @@
# Security Testing Repository

Welcome to the Security Testing repository! This repository is a collection of various resources and files related to security testing. Below is an overview of the different categories and their contents:

## Checklists

- **100-web-exploits.md**: A checklist containing 100 web exploitation techniques. (Last updated 7 months ago)
- **FAQ.md**: Frequently Asked Questions related to security testing. (Last updated 2 years ago)
- **HuntingCheckList.md**: A checklist for hunting security vulnerabilities. (Last updated 2 years ago)
- **Main app methodology.md**: Methodology for testing the main application. (Last updated 2 years ago)
- **Multi target recon.md**: A checklist for multi-target reconnaissance. (Last updated 2 years ago)
- **NetworkHacking.drawio (1).png**: Network hacking diagram. (Last updated 7 months ago)
- **OSINT.md**: Open Source Intelligence checklist. (Last updated 2 years ago)
- **PEN-82804737-250323-0957.pdf**: A PDF document related to penetration testing. (Last updated 7 months ago)
- **WAF-bypass-checklist.md**: Checklist for bypassing Web Application Firewalls. (Last updated 2 years ago)
- **web app pentesting checklist.txt**: Checklist for web application penetration testing. (Last updated last year)
- **webAppSec.md**: Web application security checklist. (Last updated last year)

## Miscellaneous

- **Misc/TipsFromOurOverlordEdOverFlow.md**: Miscellaneous tips and insights from EdOverflow. (Last updated 2 years ago)

## OSCP

- **ftpEnum.md**: Enumeration techniques for FTP services. (Last updated 3 years ago)
- **OSCP/httpEnum.md**: Enumeration techniques for HTTP services. (Last updated 3 years ago)
- **smbEnum.md**: Enumeration techniques for SMB services. (Last updated 3 years ago)
- **sshEnum.md**: Enumeration techniques for SSH services. (Last updated 3 years ago)

## RatFireWall

- **HorridAPIResponseFirewall/firewall.py**: Firewall script for handling API responses. (Last updated 6 months ago)
- **HorridAPIResponseFirewall/readme.md**: Documentation for the firewall. (Last updated 6 months ago)
- **requirements.txt**: Requirements for the RatFireWall project. (Last updated 6 months ago)
- **moreSecureButNotFullySecure/proxy.py**: Proxy script for enhancing security. (Last updated 6 months ago)
- **moreSecureButNotFullySecure/rules.py**: Rules for enhancing security. (Last updated 6 months ago)

## Scripts

- **techStream**: Directory containing various security scripts and tools. (Last updated 7 months ago)
- **zapstrikemap**: Directory containing scripts for vulnerability scanning. (Last updated 8 months ago)
- **BugBountyAutomator.py**: A Python script for automating bug bounty tasks. (Last updated 6 months ago)
- **EthsmartContractScanner.py**: A script for scanning Ethereum smart contracts. (Last updated 8 months ago)
- **JS-CSRF-token-stealer.js**: JavaScript script for CSRF token stealing. (Last updated 8 months ago)
- **addUser.sh**: Script for adding users. (Last updated 2 years ago)
- **autoScan.sh**: Automated scanning script. (Last updated 8 months ago)
- **goScan.go**: Go language scanning script. (Last updated 8 months ago)
- **Scripts/gobuster.sh**: Directory containing a script for directory brute-force. (Last updated 2 years ago)
- **Scripts/initialScan.sh**: Directory containing an initial scanning script. (Last updated 2 years ago)
- **portscan-result-basic-comparer.py**: Python script for comparing port scan results. (Last updated 8 months ago)
- **portscan-runtime-comparer.sh**: Script for comparing port scan runtimes. (Last updated 8 months ago)
- **resources.txt**: Additional resources for scripting. (Last updated 7 months ago)
- **Scripts/scanMultipleDomains.sh**: Directory containing a script for scanning multiple domains. (Last updated 2 years ago)
- **Scripts/sqliList.sh**: Directory containing a script for SQL injection. (Last updated 2 years ago)
- **techStream.py**: Python script for security tasks. (Last updated 7 months ago)
- **webapp_pentest.py**: Python script for web application penetration testing. (Last updated 7 months ago)
- **zap-scan-order.sh**: Script for ordering vulnerability scans. (Last updated 8 months ago)

## TheBasicsOf

- **JavaScript.js**: Basics of JavaScript in security testing. (Last updated 4 months ago)
- **JavaScriptExploits.js**: JavaScript exploit scripts. (Last updated 4 months ago)

## Security Testing Labs

### XSS

- **XSS1.php**: PHP script related to XSS. (Last updated last year)
- **XSS2.php**: Another PHP script related to XSS. (Last updated last year)
- **XSSDOM.php**: XSS script related to the Document Object Model (DOM). (Last updated last year)
- **XSSJS.php**: XSS script related to JavaScript. (Last updated last year)
- **XSSTAG1.php**: XSS script related to HTML tags. (Last updated last year)
- **XSSTAG2.php**: Another XSS script related to HTML tags. (Last updated last year)
- **XSSWL.php**: XSS script related to whitelist-based security. (Last updated last year)

### XXE

- **a**: File related to XXE. (Last updated last year)
- **xxe.php**: PHP script related to XXE. (Last updated last year)

## Notes

- **Broad scope methodology - Manual bc1qre8jdw2azrg6tf49wmp652w00xltddxmpk98xp**: Manual for a broad scope methodology. (Last updated 2 years ago)
- **Medium articles 772065d32a0a4425a2f6343adc86acb5**: Medium articles related to security testing. (Last updated 2 years ago)
- **Practical Demonstration - Main Web Application hac 731d6dead50b4df9bb12ce143d21bc9a**: Practical demonstrations for the main web application. (Last updated 2 years ago)
- **Rat's methodology e728e0cffd8d429e8f9a1317b05feadf**: Methodology for Rat's security testing. (Last updated 2 years ago)
- **Vulnerability types d6487b7204244f159482be2dfb025fea**: Information on various vulnerability types. (Last updated 2 years ago)

## Pentesting

- Various documents related to penetration testing. (Last updated last year)

## Wordlists

- **Collection of wordlists.md**: A collection of wordlists for various purposes. (Last updated 2 years ago)
- **dir23.txt**: A wordlist for directory enumeration. (Last updated 3 years ago)
- **dirlist.txt**: Another wordlist for directory enumeration. (Last updated 3 years ago)

---


- **.DS_Store**: System file (Last updated 2 years ago)
- **Practical Demonstration - Main Web Application hac da63d3dc76064964aa96d48d311abab3.md**: Practical demonstration details. (Last updated 2 years ago)
- **README.md**: Repository's main README file. (Last updated 2 years ago)
- **SubDomainEnum.md**: Subdomain enumeration details. (Last updated 2 years ago)
- **THM_riddleme**: THM_riddleme content. (Last updated 2 years ago)
- **XSS challenge room solutions**: Solutions for XSS challenge rooms. (Last updated 2 years ago)
- **README.md**: Duplicate README file (Last updated 2 years ago)

---

Feel free to explore and use these resources for your security testing and research needs. If you have any questions or suggestions, please don't hesitate to reach out to the contributors.