UnkL4b / GitBackdorizer
GitBackdorizer (bad name, I know!) Is a proof of concept from Ulisses Castro's talk - 50 ton of backdoors (https://www.slideshare.net/ulissescastro/50-ton-of-backdoors) that uses the lack of user attention to steal git access credentials.
☆49Updated 6 years ago
Related projects ⓘ
Alternatives and complementary repositories for GitBackdorizer
- Dumain Bruteforcer - a fast and flexible domain bruteforcer☆53Updated 6 years ago
- Various tools for managing bug bounty recon and exploration.☆46Updated last year
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 5 years ago
- PAVELOW Exploit Toolbox is a BASH script that corresponds with your KALI distro to better help your vulnerability hunting and exploiting …☆86Updated 6 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆51Updated 3 years ago
- Post-exploitation scripts for OS X persistence and privesc☆72Updated 7 years ago
- WhiteBox CMS analysis☆68Updated last year
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 5 years ago
- XIP generates a list of IP addresses by applying a set of transformations used to bypass security measures e.g. blacklist filtering, WAF,…☆76Updated 5 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆44Updated 7 years ago
- WORK IN PROGRESS. Waits for MSF session then automatically gets domain admin☆64Updated last year
- try privilege escalation changing sudo command☆118Updated 6 years ago
- A tool to help you manage your leaks☆34Updated 6 years ago
- HTTPoxy Exploit Scanner by 1N3 @CrowdShield☆104Updated 7 years ago
- Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.☆44Updated 4 years ago
- Subdomain brute force focused on speed and data serialization☆74Updated last year
- a collection of payloads for common webapps☆73Updated 11 years ago
- Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…☆25Updated 6 years ago
- TheDoc is a simple but very useful SQLMAP automator with built in admin finder, hash cracker(using hashca) and more!☆98Updated 6 years ago
- Pillage a git repo found in an accessible web root☆59Updated 13 years ago
- Test CVE-2018-0296 and extract usernames☆107Updated 5 years ago
- Dockerized version of Sn1per (https://github.com/1N3/Sn1per)☆60Updated 6 years ago
- Some scripts and exploits☆142Updated 6 years ago
- Provide a shell-like interface for exploiting Remote File Inclusion vulnerabilities.☆46Updated 8 years ago