FA-PengFei / NGWAF
First iteration of ML based Feedback WAF
☆55Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for NGWAF
- Cloud Exploit Framework☆112Updated 2 years ago
- Enumerate AWS cloud resources based on provided credential☆50Updated 2 years ago
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆36Updated 2 years ago
- A "Spring4Shell" vulnerability scanner.☆50Updated 2 years ago
- Presentation materials for my Black Hat USA 2022 Briefing and Arsenal talks☆64Updated 2 years ago
- Red Teaming & Active Directory Cheat Sheet.☆39Updated last year
- ☆16Updated 2 years ago
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆39Updated 2 years ago
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆19Updated 2 years ago
- Simple Latest CVE Collector Written in Python☆58Updated 8 months ago
- Mimicry is a dynamic deception tool that actively deceives an attacker during exploitation and post-exploitation.☆54Updated last year
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆60Updated last month
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆37Updated 2 years ago
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"☆46Updated 2 years ago
- Personal notes from Red teamer for Blue/Red/Purple.☆51Updated 9 months ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆67Updated 2 years ago
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆77Updated last year
- Exploit a vulnerable Spring application with the Spring4Shell (CVE-2022-22965) Vulnerability.☆43Updated 2 years ago
- Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.☆53Updated 10 months ago
- client-side prototype pullution vulnerability scanner☆46Updated 3 years ago
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆58Updated 10 months ago
- ☆16Updated 2 years ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆38Updated 2 years ago
- ☆27Updated last year
- Determine the running software version of a remote F5 BIG-IP management interface.☆63Updated 10 months ago
- PickleC2 is a post-exploitation and lateral movements framework☆83Updated 3 years ago
- PoC repository for CVE-2023-29007☆32Updated last year