Skip to content
@doyensec

Doyensec

Doyensec works at the intersection of software development and offensive engineering. We discover vulnerabilities others cannot, and help mitigate the risk.

Popular repositories Loading

  1. inql inql Public

    InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

    Python 1.6k 159

  2. electronegativity electronegativity Public

    Electronegativity is a tool to identify misconfigurations and security anti-patterns in Electron applications.

    JavaScript 982 68

  3. regexploit regexploit Public

    Find regular expressions which are vulnerable to ReDoS (Regular Expression Denial of Service)

    Python 796 54

  4. awesome-electronjs-hacking awesome-electronjs-hacking Public

    A curated list of awesome resources about Electron.js (in)security

    592 62

  5. burpdeveltraining burpdeveltraining Public

    Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"

    Java 347 69

  6. wsrepl wsrepl Public

    WebSocket REPL for pentesters

    Python 212 15

Repositories

Showing 10 of 52 repositories
  • doyensec/security-testbeds’s past year of commit activity
    Python 0 Apache-2.0 35 0 1 Updated Dec 20, 2024
  • Unsafe-Unpacking Public

    Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide

    doyensec/Unsafe-Unpacking’s past year of commit activity
    HTML 22 3 0 0 Updated Dec 16, 2024
  • tsunami-security-scanner-plugins Public Forked from google/tsunami-security-scanner-plugins

    This project aims to provide a central repository for many useful Tsunami Security Scanner plugins.

    doyensec/tsunami-security-scanner-plugins’s past year of commit activity
    Java 0 Apache-2.0 198 0 0 Updated Dec 13, 2024
  • ruby-unsafe-deserialization Public Forked from GitHubSecurityLab/ruby-unsafe-deserialization

    Proof of Concepts for unsafe deserialization in Ruby

    doyensec/ruby-unsafe-deserialization’s past year of commit activity
    Ruby 0 MIT 3 0 0 Updated Oct 17, 2024
  • CSPTPlayground Public

    CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).

    doyensec/CSPTPlayground’s past year of commit activity
    JavaScript 88 Apache-2.0 6 1 0 Updated Oct 7, 2024
  • tsunami-security-scanner Public Forked from google/tsunami-security-scanner

    Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.

    doyensec/tsunami-security-scanner’s past year of commit activity
    Java 0 Apache-2.0 922 0 0 Updated Sep 19, 2024
  • electronegativity Public

    Electronegativity is a tool to identify misconfigurations and security anti-patterns in Electron applications.

    doyensec/electronegativity’s past year of commit activity
    JavaScript 982 Apache-2.0 68 12 (2 issues need help) 1 Updated Sep 16, 2024
  • libajp13 Public

    AJPv1.3 Java Library

    doyensec/libajp13’s past year of commit activity
    Java 4 Apache-2.0 2 0 0 Updated Aug 22, 2024
  • wsrepl Public

    WebSocket REPL for pentesters

    doyensec/wsrepl’s past year of commit activity
    Python 212 15 1 1 Updated Jul 24, 2024
  • awesome-electronjs-hacking Public

    A curated list of awesome resources about Electron.js (in)security

    doyensec/awesome-electronjs-hacking’s past year of commit activity
    592 62 0 0 Updated Jul 22, 2024

Most used topics

Loading…