Ethical Hackers Vol. 2

Public

View Channel

3.5K

22.4K

11.4K

Can't Join? @ethicalhackerscommunity2

6.7k Members

Updated: May 25, 2026 at 11:12 AM

Ethical Hackers Vol. 2

Acquire Content-Rich Courses and Tutorials here For Free. Strictly for Educational purposes only💯

@ethicalhackerscommunity2 is a growing community focused on here and educational and related topics

Ranking

Global Ranking

#36547

-2752

Language Ranking

#4650

-130

Category Ranking

#457

-21

Participant Growth (Last 30 Days)

Total: 6.7K

24h growth: -18 0%

Latest Posts

Ethical Hackers Vol. 2

Apr 23, 2026, 08:30 PM

Required Environment Variable Set the following environment variable first export GITHUB_TOKEN=YOUR_GITHUB_TOKEN
export GITHUB_USER=YOUR_GITHUB_USERNAME
export ORG=YOUR_GITHUB_ORGANIZATION

# Optional to configure slack
export SLACK_BOT_TOKEN
export SLACK_SIGNING_SECRET
export SLACK_CHANNEL

# Optional to send data to SIEM
export SERVERLESS_APP_URL

# Optional for Jira ticket creation
export JIRA_API_TOKEN
export JIRA_EMAIL
export JIRA_URL
export JIRA_PROJECT
export JIRA_ISSUE_TYPE
Exclusion Update the github/data/exclusion.json file with list of repositories ( https://www.kitploit.com/search/label/Repositories) excluded from Core Repositories / GHAS. Command cheatsheet # List repositories where GHAS is disabled
$ node witcher.js -m ghas -a status --repo All

# Enable GHAS on certain repo
$ node witcher.js -m ghas -a enable --repo

# Disable GHAS on certain repo
$ node witcher.js -m ghas -a disable --repo

# Check GHAS status on certain repo
$ node witcher.js -m ghas -a status --repo

# Get latest code scanning vulnerability
$ node witcher.js -m codeql -a alert --slack // --slack to post on slack

# Mass Action
$ node witcher.js --mass-action -a enable -m ghas --repo-file mass_action.txt --jira-ticket PROJECT-123

3,310

Ethical Hackers Vol. 2

Apr 23, 2026, 08:30 PM

More Commands More Command / ( https://github.com/mf-labs/misc/commands.sh)Cheatsheet ( https://www.kitploit.com/search/label/Cheatsheet) Daily Routine # Run Daily Summary
$ node witcher.js --daily-summary -m ALL -a status --slack --jira

# Daily Summary includes the checking of
# 1. GHAS status on all repositories
# 2. Secret Scanning status on all repositories
# 3. Check for Depenabot status
# 4. Check for paused Dependabot
# 5. Code Scanning status on applicable repositories
# 6. IaC Scanning status on applicable repositories
# 7. Check alerts for any new vulnerability
# 8. Logged daily summary on SIEM and posted on Slack
Disclaimer - All public repositories are excluded from witcher
- All archived repositories are excluded from witcher
- All deprecated repositories are excluded from witcher
Roadmap Custom Security Controls Monitoring: Add support for monitoring custom controls beyond CodeQL, IaC, and Dependabot. Customizable Daily Summary: Allow users to add additional control statuses to daily reports. CLI & JSON Output Support: Enable full output options via CLI arguments for both CLI and JSON formats.

Download Witcher ( https://github.com/mf-labs/witcher)

3,890

Ethical Hackers Vol. 2

Apr 23, 2026, 08:30 PM

📷 Photo

4,050

Ethical Hackers Vol. 2

Apr 23, 2026, 08:30 PM

Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
http://www.kitploit.com/2025/05/witcher-managing-github-advanced.html

3,580

Ethical Hackers Vol. 2

Apr 23, 2026, 08:30 PM

📷 Photo

3,560

Ethical Hackers Vol. 2

Apr 23, 2026, 08:30 PM

Implement and monitor Appsec ( https://www.kitploit.com/search/label/Appsec) control at scale. Requirements NodeJS 20.13 Tested on Mac Ubuntu
How to install $ git clone [email protected]:mf-labs/witcher.git
$ cd witcher
$ npm i
Build a Docker image $ git clone [email protected]:mf-labs/witcher.git
$ cd witcher
$ docker build -t witcher .

# Running docker image
$ docker run -e GITHUB_TOKEN=$GITHUB_TOKEN -e ORG=$ORG witcher -a status -m ghas -r offsec-sast-testing
witcher's features ➜ witcher git:(master) node witcher.js -h
usage: witcher.js [-h] -m MODULE -a ACTION [--daily-summary] [--mass-action] [--slack] [--siem] [--jira]
[--jira-ticket JIRATICKET] [--org ORG] [-r REPO] [-b BRANCH]
[--workflow-file WORKFLOW] [--repo-file REPOFILE]

witcher ....... you can't escape

optional arguments:
-h, --help show this help message and exit
-m MODULE, --module MODULE
ghas, dependabot, secret-scanning, codeql, iac, workflows, ALL
-a ACTION, --action ACTION
enable, disbale, status, alert, deploy, delete
--daily-summary Get the Daily Summary
--mass-action Perform action (enable, deploy, delete) at scale
--slack Post new alert(s) on Slack
--siem Log activities on SIEM
--jira Post new vulnerability ticket on Jira
--jira-ticket JIRATICKET
Jira ticket ID (e.g. PROJECT-123)

Input:
--org ORG Organization Name
-r REPO, --repo REPO Repository Name, ALL
-b BRANCH, --branch BRANCH
Branch Name
--workflow-file WORKFLOW
Workflow File Name
--repo-file REPOFILE Repo File Name

3,760

Ethical Hackers Vol. 2

Apr 23, 2026, 08:30 PM

📷 Photo

2,930

Ethical Hackers Vol. 2

Apr 23, 2026, 08:30 PM

📷 Photo

2,210

Ethical Hackers Vol. 2

Apr 23, 2026, 08:30 PM

Or use Obtainium Install Obtainium ( https://github.com/ImranR98/Obtainium/blob/main/README.md#installation) Add the app by URL:
https://github.com/dovecoteescapee/ByeDPIAndroid Settings To bypass some blocks, you may need to change the settings. More about the various settings can be found in the ByeDPI documentation ( https://github.com/hufrea/byedpi/blob/v0.13/README.md). FAQ I can't configure it. What to do? You can ask for help in discussion ( https://github.com/dovecoteescapee/ByeDPIAndroid/discussions). Does the application require root access? No. All application features work without root. Is this a VPN? No. The application uses the VPN mode on Android to redirect traffic, but does not send anything to a remote server. It does not encrypt ( https://www.kitploit.com/search/label/Encrypt) traffic and does not hide your IP address. How to use ByeDPI with AdGuard? Run ByeDPI in proxy mode. Add ByeDPI to AdGuard exceptions on the "App management" tab. In AdGuard settings, specify the proxy: plaintext Proxy type: SOCKS5 Proxy host: http://127.0.0.1/ Proxy port: 1080 (default) What data does the application collect? None. The application does not send any data to a remote server. All traffic is processed on the device. Are there any for other platforms? Similar projects ( https://github.com/ValdikSS/GoodbyeDPI/blob/master/README.md#similar-projects)) What is DPI? DPI (Deep Packet Inspection) is a technology for analyzing and filtering traffic. It is used by providers and government agencies to block sites and services. Dependencies ByeDPI ( https://github.com/hufrea/byedpi) hev-socks5-tunnel ( https://github.com/heiher/hev-socks5-tunnel) Building For building the application, you need: JDK 8 or later Android SDK Android NDK CMake 3.22.1 or later To build the application: Clone the repository with submodules: bash git clone --recurse-submodules Run the build script from the root of the repository: bash ./gradlew assembleRelease The APK will be in app/build/outputs/apk/release/

Download ByeDPIAndroid ( https://github.com/dovecoteescapee/ByeDPIAndroid)

Ethical Hackers Vol. 2

Apr 23, 2026, 08:30 PM

📷 Photo

3,740

Showing 10 of 10 posts

No more posts

Loading posts...

Rating

User Reviews (0)

No reviews yet. Be the first to share your experience!

Loading reviews...

Related Telegram Channels

Loading recommended channels...

Ethical Hackers Vol. 2

Ethical Hackers Vol. 2

Ranking

Participant Growth (Last 30 Days)

Latest Posts

Rating

User Reviews (0)

Related Telegram Channels

Dream Traders

Ex4 To Mq4

Gold Boss™ [& Live News]

Aetherian College

Pedagogik mahorat va xalqaro baholash ilmiy-amaliy markazi

Free Courses ❤

Poker Freerolls & Passwords

Bloom Coupons

Related Telegram Channels

Dream Traders

Ex4 To Mq4

Gold Boss™ [& Live News]

Aetherian College

Pedagogik mahorat va xalqaro baholash ilmiy-amaliy markazi

Free Courses ❤

Poker Freerolls & Passwords

Bloom Coupons

User Reviews (0)

Latest Posts