RodricBr / OffSec-MISC
Offensive Security MISC Annotations and Payloads for Ethical Hackers / Security Researchers
☆26Updated 3 months ago
Alternatives and similar repositories for OffSec-MISC:
Users that are interested in OffSec-MISC are comparing it to the libraries listed below
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 3 years ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆23Updated last year
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated 2 years ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆34Updated last year
- ☆17Updated last year
- I collected it to help the bug hunter get a reward☆58Updated 2 years ago
- Python tool to test known techniques to bypass 403 and 401 HTTP responses.☆35Updated last year
- This tool allows you to find ssti vulnerability with ease!☆19Updated 2 years ago
- "🔍 Subtron: Bash-driven subdomain seeker. Utilizes Subfinder, Amass, Assetfinder, and HTTPX to swiftly uncover live domains. Results sto…☆22Updated last year
- A tool for Subdomain takeovers detection☆26Updated 2 years ago
- BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection☆38Updated last year
- 「🐞」Bug Bounty Tricks☆38Updated last year
- This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja☆24Updated 7 months ago
- XML-RPC Vulnerability Checker and Directory Fuzzer☆23Updated last year
- DNS resolution tracing tool☆34Updated 3 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 2 years ago
- bash script for automating subdomain enumeration process either passive or active☆27Updated 3 months ago
- A curated list wordlists for bruteforcing and fuzzing☆82Updated last year
- ☆14Updated 11 months ago
- Filter URLs to save your time.☆59Updated 2 years ago
- ☆53Updated 2 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆44Updated last year
- 「💥」CVE-2022-33891 - Apache Spark Command Injection☆26Updated 2 years ago
- Enumerate old versions of robots.txt paths using Wayback Machine for content discovery☆45Updated last year
- Enhanced 403 bypass header☆21Updated 2 years ago
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]☆31Updated 9 months ago
- Web Hacking and Red Teaming MindMap☆70Updated 2 years ago
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆30Updated last year
- Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)☆18Updated last year
- Cyber Security Club, Offensive Operations Section (Red Team) learning pathway.☆29Updated last year