Sergey Pronin

🦄 A curated list of the awesome resources about the Vulnerability Research

Excalidraw library for threat modeling diagrams

Your own personal AI assistant. Any OS. Any Platform. The lobster way. 🦞

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

Fast passive subdomain enumeration tool.

A high performance go implementation of Wappalyzer Technology Detection Library

This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.

No description provided.

A model-driven approach to building AI agents in just a few lines of code.

The Open-sourced Multimodal AI Agent Stack connecting Cutting-edge AI Models and Agent Infra.

The iOS Security Testing Framework

No description provided.

a "Proof of Concept or GTFO" mirror with an extensive index with also whole issues or individual articles as clean PDFs.

No description provided.

Helping allocate resources to secure the critical open source projects we all depend on.

No description provided.

OpenSSF Scorecard - Security health metrics for Open Source

Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and private keys.

Collection of Threat Models

🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!

An Open Letter to the OWASP Board

EternalRocks worm

Official PHP low-level client for Elasticsearch.

High level Python client for Elasticsearch

Official Python low-level client for Elasticsearch.

Empire is a PowerShell and Python post-exploitation agent.

Service to track changes in your cloud

Android File Fuzzing Framework

dhcpig : initiates an advanced DHCP exhaustion attack

The ELK stack powered by Docker and Compose.