UnkL4b / GitBackdorizer
GitBackdorizer (bad name, I know!) Is a proof of concept from Ulisses Castro's talk - 50 ton of backdoors (https://www.slideshare.net/ulissescastro/50-ton-of-backdoors) that uses the lack of user attention to steal git access credentials.
☆49Updated 6 years ago
Alternatives and similar repositories for GitBackdorizer:
Users that are interested in GitBackdorizer are comparing it to the libraries listed below
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 4 years ago
- WhiteBox CMS analysis☆69Updated last year
- Various tools for managing bug bounty recon and exploration.☆47Updated 2 years ago
- Dumain Bruteforcer - a fast and flexible domain bruteforcer☆53Updated 6 years ago
- A tool to help you manage your leaks☆34Updated 7 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 6 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 6 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆25Updated 8 years ago
- Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.☆45Updated 4 years ago
- ❄️ Research project for SubFinder core API V2☆36Updated 6 years ago
- Highlight Burp proxy requests made by different browsers☆30Updated 7 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆44Updated 8 years ago
- Subdomain brute force focused on speed and data serialization☆74Updated 2 years ago
- Pillage a git repo found in an accessible web root☆61Updated 13 years ago
- Post-exploitation scripts for OS X persistence and privesc☆72Updated 8 years ago
- ☆21Updated 8 years ago
- XIP generates a list of IP addresses by applying a set of transformations used to bypass security measures e.g. blacklist filtering, WAF,…☆76Updated 6 years ago
- [L]ocal [A]uto [R]oot [E]xploiter is a simple bash script that helps you deploy local root exploits from your attacking machine when your…☆67Updated 7 years ago
- Fingerprint a web app using local files as the fingerprint sources☆38Updated 7 years ago
- Extreme Vulnerable Node Application☆96Updated 6 years ago
- HTTPoxy Exploit Scanner by 1N3 @CrowdShield☆103Updated 7 years ago
- a collection of payloads for common webapps☆73Updated 12 years ago
- Issues to consider when planning a red team exercise.☆15Updated 7 years ago
- PAVELOW Exploit Toolbox is a BASH script that corresponds with your KALI distro to better help your vulnerability hunting and exploiting …☆87Updated 7 years ago
- Slides from my ShellCon Talk, OSINT for Pen Tests, given 10/19.☆61Updated 7 years ago
- A collection of Nmap NSE scripts that I made.☆27Updated 12 years ago
- WORK IN PROGRESS. Waits for MSF session then automatically gets domain admin☆63Updated 2 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆82Updated 7 years ago
- Actarus is a custom tool for bug bounty☆76Updated 5 years ago
- Spray SMB with hashes, Then psexec☆32Updated 5 years ago