Agent skill for writing, validating, testing, and tuning ModSecurity v3, Coraza, and OWASP CRS WAF rules using AI coding assistants.

Block bots in Apache using mod_rewrite only

Home Assistant Google Home custom component

Welcome to the Pressidium® Yara Rules repository. This section contains a carefully curated collection of Yara rules specifically designed to detect and prevent WordPress or PHP malware and viruses…

A simple program for scraping Cloudflare clearance (cf_clearance) cookies from websites issuing Cloudflare challenges to visitors

A wrapper for integrating the OWASP Coraza WAF with HAProxy's SPOE filters.

💀 Generate malicious PDF test files for testing phone-home callbacks, SSRF, XSS, NTLM credential theft, and data exfiltration in PDF viewers, converters, and web applications. Can be used with Burp…

A Python module to bypass Cloudflare's anti-bot page.

A native macOS app for chatting with local LLMs

Anti-scraper challenge for haproxy to stop naughty AI bots.

GDPR, WCAG 2.2 AA, and EAA compliant, self-hosted CAPTCHA alternative with PoW mechanism.

Weighs the soul of incoming HTTP requests to stop AI crawlers

Manage mailboxes using IMAP without the PHP extension

A simple PHP script that helps you compare raw performance across servers and php versions

Generates XARF reports from multiple sources.

notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)

open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.

Implementation for - Mitigating DNS random subdomain DDoS attacks by distinct heavy hitters sketches

Build terminal forms and prompts 🤷🏻‍♀️

Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution

An OOB interaction gathering server and client library

Wordfence malware and vulnerability scanner command line utility.

A lightweight and high-performance reverse proxy for NAT traversal, written in Rust. An alternative to frp and ngrok.

docker-based plex & usenet media server using custom subdomains with tls

Exploit for CVE-2023-3460. Unauthorized admin access for Ultimate Member plugin < v2.6.7

A developer-friendly API for converting many document formats into PDF files, and more!

Python toolbox to evaluate graph vulnerability and robustness (CIKM 2021)

Fast, light, simple Docker containers & Linux machines

Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure