NotSoSecure / cloud-service-enum
☆248Updated 10 months ago
Alternatives and similar repositories for cloud-service-enum:
Users that are interested in cloud-service-enum are comparing it to the libraries listed below
- Stuff done in preparation for AWAE course and OSWE certification☆151Updated 4 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆174Updated 2 years ago
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆130Updated 4 years ago
- Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…☆215Updated 5 years ago
- Various Payload wordlists☆235Updated last week
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆209Updated 10 months ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆258Updated 2 years ago
- The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testin…☆203Updated 3 years ago
- Everything you need about Burp Extension Generation☆153Updated 2 years ago
- This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.☆240Updated 5 years ago
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…☆211Updated 5 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 5 years ago
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…☆205Updated last year
- An automated target reconnaissance pipeline.☆432Updated 2 years ago
- Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.☆267Updated 3 months ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆517Updated last year
- ☆148Updated 3 years ago
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆266Updated 2 years ago
- ☆80Updated 3 years ago
- Continuous monitoring for JavaScript files☆220Updated 5 years ago
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆287Updated 3 months ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆247Updated 2 weeks ago
- Bucky (An automatic S3 bucket discovery tool)☆196Updated 3 years ago
- A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…☆191Updated 4 years ago
- A simple SSRF-testing sheriff written in Go☆326Updated 6 months ago
- A script that can resolve an input file of domains and scan them with masscan☆157Updated 4 years ago
- SSRF testing tool☆244Updated 2 years ago
- Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …☆201Updated last year
- ☆275Updated 3 years ago
- Scrapts Scrapts Scrapts☆237Updated last year