Repositories list

• ASVS

  Public
  Application Security Verification Standard

  HTML

  •

  Creative Commons Attribution Share Alike 4.0 International

  •684•1•0•0•Updated Jan 27, 2025Jan 27, 2025

• wafw00f

  Public
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

  fingerprintwaffitweb-application-firewall+ 1waf

  Python

  •

  BSD 3-Clause "New" or "Revised" License

  •950•5.5k•1•1•Updated Dec 31, 2024Dec 31, 2024

• awesome-rtc-hacking

  Public
  a list of awesome resources related to security and hacking of VoIP, WebRTC and VoLTE

  securityawesomewebrtc+ 10hackingbug-bountyfuzzingawesome-listawesome-listsvoltevoip-security+ 3

  Creative Commons Zero v1.0 Universal

  •40•438•3•0•Updated Dec 13, 2024Dec 13, 2024

• sipvicious

  Public
  SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA and developers test SIP-based VoIP systems and applications. This toolset is useful in simulating VoIP hacking attacks against PBX systems especially through identification, scanning, extension enumeration and password cracking.

  securitysipvoip+ 9password-crackersvwarsvcracksvmapwar-dialsvcrashsecurity-tools+ 2

  Python

  •

  Other

  •157•930•0•0•Updated Dec 3, 2024Dec 3, 2024

• advisories

  Public
  Security advisories published by Enable Security

  advisoriessecurity-research

  Python

  •16•39•0•0•Updated Jul 3, 2024Jul 3, 2024

• reports

  Public
  Reports issued by Enable Security

  security-auditpenetration-testingvulnerability-research

  0•9•0•0•Updated Mar 17, 2023Mar 17, 2023

• kamailio-exec-module-examples

  Public
  Examples referenced from https://www.rtcsec.com/article/kamailio-exec-module-considered-harmful

  Smarty

  •1•4•0•0•Updated Jan 25, 2023Jan 25, 2023

• kamailio

  Public
  Kamailio - The Open Source SIP Server for large VoIP and real-time communication platforms -

  C

  •

  Other

  •975•1•0•0•Updated Jan 23, 2023Jan 23, 2023

• svpro-docker

  Public
  SIPVicious PRO docker image to make it easier to run the toolset anywhere

  Dockerfile

  •1•4•0•0•Updated Jan 11, 2023Jan 11, 2023

• fuzzing-images

  Public
  A set of Docker images for fuzzing source code

  libfuzzerfuzzing-frameworkafl-fuzzer

  Shell

  •1•2•0•0•Updated Mar 4, 2022Mar 4, 2022

• Vulnerability-Disclosure-Policy

  Public
  How Enable Security handles security vulnerabilities

  vulnerability-researchsecurity-audit

  2•11•0•0•Updated Apr 3, 2020Apr 3, 2020

• tftptheft

  Public
  TFTP Theft is a tool which allows one to quickly scan/bruteforce a tftp server for files and download them instantly

  Python

  •21•68•0•0•Updated Apr 20, 2016Apr 20, 2016

• burp-luhn-payload-processor

  Public archive
  A plugin for Burp Suite Pro to work with attacker payloads and automatically generate check digits for credit card numbers and similar numbers that end with a check digit generated using the Luhn algorithm or formula (also known as the "modulus 10" or "mod 10" algorithm).

  Python

  •7•10•0•0•Updated Jun 3, 2015Jun 3, 2015

• surfjack

  Public archive
  Automatically exported from code.google.com/p/surfjack - not actively maintained

  Python

  •3•9•3•0•Updated Mar 13, 2015Mar 13, 2015

• Identity-Crisis

  Public archive
  A Burp Suite extension that checks if a particular URL responds differently to various User-Agent headers

  Python

  •

  MIT License

  •8•15•0•0•Updated Sep 4, 2014Sep 4, 2014

• Webapp-Exploit-Payloads

  Public archive
  a collection of payloads for common webapps

  JavaScript

  •23•73•1•0•Updated Apr 24, 2013Apr 24, 2013