ThePacketBender / notes
notes 2016-present
☆37Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for notes
- A list of "secrets" from JWT sample code and readme files.☆51Updated 4 years ago
- Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)☆137Updated 4 years ago
- "Powershell script assisting with domain enumerating and in finding quick wins" - Basically written while doing the 'Advanced Red Team' l…☆79Updated 3 years ago
- Takes a URL and checks the system for the tilde enum vuln and then find the files.☆21Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆41Updated 4 years ago
- This extension allows a user to specify a lockout policy in order to automate a password spray attack via Intruder.☆23Updated 4 years ago
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆154Updated 2 years ago
- JavaScript functions intended to be used as an XSS payload against a WordPress admin account.☆52Updated 4 years ago
- Local File Inclusion Burp-Suite Intruder Payload Generator Plugin☆39Updated 4 years ago
- Hacked together script for feeding urls into Burp's Sitemap☆92Updated 2 years ago
- Python3 tool to perform password spraying against Microsoft Online service using various methods☆84Updated last year
- Username guessing tool primarily for use against the default Solaris finger service. Also supports relaying of queries through another fi…☆44Updated 9 years ago
- SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing☆92Updated 4 years ago
- Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution☆73Updated 3 years ago
- A web shell for pivoting and lateral movement☆31Updated 6 years ago
- This is the Go Server that relays all HTTP requests and responses between clients.☆27Updated last year
- ☆28Updated 4 years ago
- Cheat sheet☆38Updated 4 years ago
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Updated 5 years ago
- A bridge between masscan and nmap - run fast masscan, parse output, execute nmap using masscan as input☆26Updated 4 months ago
- A tool to password spray Jenkins instances☆52Updated 5 years ago
- REST API backend for Reconmap☆47Updated this week
- webshells written with malice☆22Updated 7 years ago
- A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…☆59Updated 5 years ago
- Just some exploits :P☆46Updated 3 years ago
- Automatically exported from code.google.com/p/fuzzdb☆58Updated 2 years ago
- Username lists that I created.☆17Updated 3 years ago
- ☆127Updated 6 years ago
- OSCP guide and Red Team assessment Guide☆33Updated 4 years ago