Other Stuff

Misc @ GitHub

Some stuff I share on GitHub:

Burp Extension: SAML Raider

SAML Raider is a Burp Suite extension for testing SAML infrastructures. It contains two core functionalities: Manipulating SAML Messages and manage X.509 certificates.

This software was created by Roland Bischofberger and me during a bachelor thesis at the Hochschule für Technik Rapperswil (HSR). Our project partner and advisor was Compass Security Schweiz AG.

Demo:

More Infos:

Burp Extension: Copy Request & Response

The Copy Request & Response Burp Suite extension adds new context menu entries that can be used to simply copy the request and response from the selected message to the clipboard.

More Infos:

Security Resources Link Collection

A link collection to online resources & tools used for web application / network security trainings. Available at https://git.io/secres.

Hacking Tools Cheat Sheet

I created a cheat sheet that contains lots of commands and tools that we often use during our penetration tests, security assessments or red teaming engagements.

Security Advisories

Published security advisories:

Company Blog

Blogposts I wrote for my current employer: https://blog.compass-security.com/author/eduss/

Bluetooth Low Energy Beertalk

A talk I made about the basics and security of Bluetooth Low Energy.

Seminar Paper XSLT & SSRF

A seminar paper by Roland Bischofberger and me at the Hochschule für Technik Rapperswil (HSR). Our project partner and advisor was Compass Security Schweiz AG.