FA-PengFei / NGWAF

Related projects ⓘ

Alternatives and complementary repositories for NGWAF

• Rnalter / ThunderCloud
  Cloud Exploit Framework
  ☆112Updated 2 years ago
• bassammaged / awsEnum
  Enumerate AWS cloud resources based on provided credential
  ☆50Updated 2 years ago
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆36Updated 2 years ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆50Updated 2 years ago
• h4wkst3r / Blackhat-USA-2022-Materials
  Presentation materials for my Black Hat USA 2022 Briefing and Arsenal talks
  ☆64Updated 2 years ago
• expl0itabl3 / Redsheet
  Red Teaming & Active Directory Cheat Sheet.
  ☆39Updated last year
• RedTeamOperations / GoogleWorkspaceDirectoryDump
  ☆16Updated 2 years ago
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆39Updated 2 years ago
• Invicti-Security / web-inf-path-trav
  Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications
  ☆19Updated 2 years ago
• password123456 / cve-collector
  Simple Latest CVE Collector Written in Python
  ☆58Updated 8 months ago
• chaitin / mimicry
  Mimicry is a dynamic deception tool that actively deceives an attacker during exploitation and post-exploitation.
  ☆54Updated last year
• saw-your-packet / EC2StepShell
  EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.
  ☆60Updated last month
• ClickCyber / cve-2022-42889
  cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…
  ☆37Updated 2 years ago
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆46Updated 2 years ago
• boh / RedBlueNotes
  Personal notes from Red teamer for Blue/Red/Purple.
  ☆51Updated 9 months ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆67Updated 2 years ago
• Macmod / goblob
  A fast enumeration tool for publicly exposed Azure Storage blobs.
  ☆77Updated last year
• FourCoreLabs / spring4shell-exploit-poc
  Exploit a vulnerable Spring application with the Spring4Shell (CVE-2022-22965) Vulnerability.
  ☆43Updated 2 years ago
• kljunowsky / CVE-2022-42889-text4shell
  Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.
  ☆53Updated 10 months ago
• RedSection / jspanda
  client-side prototype pullution vulnerability scanner
  ☆46Updated 3 years ago
• dwisiswant0 / cve-2023-50164-poc
  Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")
  ☆58Updated 10 months ago
• 0xMrNiko / Cobalt-Strike-Cheat-Sheet
  ☆16Updated 2 years ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆38Updated 2 years ago
• spyx / ParamAngler
  ☆27Updated last year
• BishopFox / bigip-scanner
  Determine the running software version of a remote F5 BIG-IP management interface.
  ☆63Updated 10 months ago
• xRET2pwn / PickleC2
  PickleC2 is a post-exploitation and lateral movements framework
  ☆83Updated 3 years ago
• ethiack / CVE-2023-29007
  PoC repository for CVE-2023-29007
  ☆32Updated last year