4xyy / AI-Vuln-Scanner
An AI-powered web application vulnerability scanner that automates the detection of common security flaws and provides AI-driven insights for impact assessment and remediation suggestions.
☆16Updated 7 months ago
Alternatives and similar repositories for AI-Vuln-Scanner:
Users that are interested in AI-Vuln-Scanner are comparing it to the libraries listed below
- Configurable, Community driven, HTTP C2 Profile☆17Updated last month
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated 9 months ago
- Drakus allows you to monitor the artifacts and domains used in a Red Team exercise to see if they have been uploaded to certain online ma…☆13Updated 4 years ago
- Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual☆14Updated 2 years ago
- Test Azure environment for MFA misconfigurations☆11Updated 2 years ago
- PoC for detecting and evading ETW detection of .Net Assembly.Load☆20Updated 4 years ago
- parsers to make life easier☆13Updated 4 years ago
- Automated activity logging utility for Mythic C2 v3.0+ with Ghostwriter v3.0+☆17Updated 2 months ago
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated last year
- A 'trainer' agent which is great for showing customers a nice fake 'ransom' screen. Requires target machine to have head - since support …☆11Updated last year
- Strategy for building a Red Team☆17Updated last year
- ☆12Updated 2 years ago
- ☆14Updated 3 years ago
- Remote code execution in Power Platform connectors via JSON deserialization☆21Updated 2 years ago
- A tool to sync mythic events with ghostwriter oplog.☆13Updated 5 months ago
- ☆18Updated last year
- This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…☆24Updated 2 years ago
- OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research tea…☆18Updated 3 years ago
- Method of finding interesting domains using keywords + JARMs☆13Updated 2 years ago
- NanoDumpInject from https://s3cur3th1ssh1t.github.io/Reflective-Dump-Tools/ , minor edits with a few syscalls☆11Updated 2 years ago
- Exactly what it sounds like, which is something rad☆22Updated 2 years ago
- Some Pentesting Scripts☆11Updated 3 years ago
- Proof of Concept in Go from Secureworks' research on Azure Active Directory Brute-Force Attacks. Inspired by @treebuilder's POC on PowerS…☆14Updated 3 years ago
- Loading and executing shellcode in C# without PInvoke.☆20Updated 3 years ago
- CLI Search for Security Operators of MITRE ATT&CK URLs☆16Updated 2 years ago
- A proof-of-concept tool that attempts to retrieve the configuration from the memory dump of an F-Secure C3 Relay executable.☆18Updated 3 years ago
- Serving files with conditions, serverside keying and more.☆18Updated 2 years ago
- Beacon Object Files used for Cobalt Strike☆18Updated last year
- An easy way to convert BloodHound output files into data that can be imported into reporting software like Dradis and Plextrac. Built by …☆18Updated 4 years ago