Skip to content
View 0x52sec's full-sized avatar

Block or report 0x52sec

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 250 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
0x52sec/README.md

0x52 — Offensive Security • Red Team & Pentest

Penetration Testing | Adversary Emulation | Secure SDLC | AppSec Automation

🧭 What I Do

  • Web & API security assessments aligned with OWASP (WSTG/ASVS/MASVS)
  • Adversary emulation, attack path mapping, and purple-team style validation
  • Tooling & automation for recon, session testing, JWT analysis, and reporting

🧪 Highlight Projects

  • WSTG Session Tester — Python framework to evaluate session controls (timeout, fixation, JWT claims, CSRF, etc.).
  • Recon Automator — Opinionated passive recon pipeline for authorized attack surfaces.
  • Red Team Labs (Local) — Docker Compose to spin up legal practice targets (Juice Shop, DVWA).
  • Report Templates — Clean, ATS-friendly pentest report and executive summary templates.

🧰 Stack

Python Bash Linux Docker

Burp Suite Nmap Metasploit Wireshark

OWASP CVE

GitHub Actions pytest Markdown

📫 Contact

Legal/Ethics: All research and code here are for learning and lawful testing with explicit authorization.

Pinned Loading

  1. jwt-toolbox jwt-toolbox Public

    Offline JWT inspector & linter for safe token analysis.

    Python

  2. recon-automator recon-automator Public

    Passive recon helpers for authorized domains (DNS, TLS, and web metadata).

    Python

  3. red-team-labs red-team-labs Public

    Local Docker labs for legal practice targets (Juice Shop, DVWA).

  4. wstg-session-tester wstg-session-tester Public

    OWASP WSTG-aligned session testing helpers (educational, Python-based).

    Python