Skip to content

Instantly share code, notes, and snippets.

View ruevaughn's full-sized avatar

Chase Jensen ruevaughn

76 followers · 263 following
View GitHub Profile
@coolaj86
coolaj86 / Bootable Mac ISO with Linux.md
Last active April 20, 2025 01:25
Create Bootable MacOS ISO from Apple's Free PKG
@hakib
hakib / models.py
Created February 12, 2020 14:52
building-interactive-voice-response-ivr-system-python-django-twilio
from django.db import models
class Theater(models.Model):
class Meta:
verbose_name = 'Theater'
verbose_name_plural = 'Theaters'
name = models.CharField(max_length=50)
@0xd33pstack
0xd33pstack / ezines.txt
Last active September 16, 2025 23:07
AppSec Ezines Url (https://github.com/Simpsonpt/AppSecEzine) from 1 to 309
https://gist.github.com/cure53/df34ea68c26441f3ae98f821ba1feb9c
http://goo.gl/ZIOZqG (+)
http://rol.im/asux/
https://bitbucket.org/decalage/oletools
https://goo.gl/fBEuSF (+)
https://intothesymmetry.blogspot.co.uk/2016/05/holy-redirecturi-batman.html
https://unlogic.co.uk/2016/04/12/binary-bomb-with-radare2-prelude/
http://www.oreilly.com/webops-perf/free/files/docker-security.pdf
http://goo.gl/QM0mZx (+)
@gravitymonkey
gravitymonkey / gist:b1b5a604663a5c8acda0c47ab7c26604
Last active October 10, 2022 11:52
How to clean sensitive stuff out of a repo with BFG
# Check for secrets/passwords in a given repo https://github.com/dxa4481/truffleHog
truffleHog --regex --entropy=False https://github.com/gravitymonkey/your-service.git
# trufflehog is good, but there are a lot of tools for this kind of thing, maybe you want to use more than one!
# If it's got some bad stuff going on :( then you can fix it with BFG!
# before you do all of this, especially if you're going to edit old commits with BFG
# BE SURE TO LET THE USERS KNOW, so that they can keep the branch clean and know that they
# will need to update after this process is over
@jhaddix
jhaddix / Github bash generated search links (from hunter.sh)
Created January 12, 2020 19:55
Github bash generated search links (from hunter.sh)
@tamimibrahim17
tamimibrahim17 / shortlist.txt
Created December 2, 2019 05:54
Short list of commonly sensitive or vulnerable web paths
2g
2.php
2.tar
2.tar.bz2
2.tar.gz
2.txt
2.zip
3
30
300
@priyanshus
priyanshus / port-scan.sh
Last active September 7, 2024 08:39
NMAP scan for a list of subdomains
#!/bin/bash
#Performs port scan using nmap
print_usage() {
cat << _EOF_
Utility to scan open ports. Can be used to scan ports for a domain or a list of domains specified in a file.
Example Usage:
-h, --help Show brief help
-d, --domain Domain name or ip to scan
-f, --file Spefify a file containing domains/IPs to scan
@yassineaboukir
yassineaboukir / List of API endpoints & objects
Last active September 24, 2025 15:54
A list of 3203 common API endpoints and objects designed for fuzzing.
0
00
01
02
03
1
1.0
10
100
1000
@haxcited
haxcited / bbprograms.txt
Created October 8, 2019 21:31
google dork -> site:.co.uk inurl:"responsible disclosure"
https://registry.internetnz.nz/about/vulnerability-disclosure-policy/
http://www.123contactform.com/security-acknowledgements.htm
https://18f.gsa.gov/vulnerability-disclosure-policy/
https://support.1password.com/security-assessments/
https://www.23andme.com/security-report/
https://www.abnamro.com/en/footer/responsible-disclosure.html
https://www.accenture.com/us-en/company-accenture-responsible-disclosure
https://www.accredible.com/white_hat/
https://www.acquia.com/how-report-security-issue
@tomnomnom
tomnomnom / short-wordlist.txt
Created September 29, 2019 19:44
short-wordlist
/.s3cfg
/phpunit.xml
/nginx.conf
/.vimrc
/LICENSE.md
/yarn.lock
/Gulpfile
/Gulpfile.js
/composer.json
/.npmignore