IOActive / RepoSsessed
A project designed to parse public source code repositories and find various types of vulnerabilities.
☆191Updated 7 years ago
Alternatives and similar repositories for RepoSsessed:
Users that are interested in RepoSsessed are comparing it to the libraries listed below
- A simple tool for offline searching of default credentials for network devices, web applications and more.☆167Updated 7 years ago
- Fast subdomains enumeration tool for penetration testers☆117Updated 6 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 6 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆138Updated 4 years ago
- penetration testing scripts☆136Updated 5 years ago
- Common Findings Database☆100Updated 5 years ago
- ☆92Updated 6 years ago
- Extract Sense out of Gibberish stuff☆82Updated 7 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆383Updated 4 years ago
- A DB of known Web Application Admin URLS, Username/Password Combos and Exploits☆153Updated 9 years ago
- Burp Extender plugin that generates a sitemap of a website using Wayback Machine☆226Updated 6 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆102Updated 6 years ago
- Test a network's egress controls with various levels of success and failure.☆104Updated 2 years ago
- Shodan HQ nmap plugin - passively scan targets☆153Updated 9 years ago
- You're a #pentester and you totally pwn that linux box, congrats! Now what? You can launch gimmecredz.sh which will try to extract all p…☆169Updated 5 years ago
- An example of obtaining RCE via Redis and CSRF☆76Updated 8 years ago
- A Burp Plugin for Detecting Weaknesses in Content Security Policies☆165Updated last year
- A collection of all the lists, scripts and techniques I use while doing web application penetration tests.☆168Updated 9 years ago
- Open Red Team Bag of Tricks - Red Teaming and Pentesting cheat sheet and trick book☆96Updated 8 years ago
- A Github organization reconnaissance tool.☆216Updated last year
- User, contributor and developer friendly vulnerability database☆129Updated 6 years ago
- Mass scanner for the Java serialize bug☆151Updated 6 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆111Updated 6 years ago
- The Unofficial Burp Extension for DNSDumpster.com☆70Updated 7 years ago
- Testing/collecting some container breakouts☆93Updated 5 years ago
- psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…☆141Updated 7 years ago
- PwnableWeb is a suite of web applications for use in information security training.☆87Updated 10 years ago
- ☆122Updated 7 years ago
- PoC for an adaptive parallelised DNS prober☆44Updated 7 years ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆248Updated 3 years ago