UnkL4b / GitBackdorizerLinks
GitBackdorizer (bad name, I know!) Is a proof of concept from Ulisses Castro's talk - 50 ton of backdoors (https://www.slideshare.net/ulissescastro/50-ton-of-backdoors) that uses the lack of user attention to steal git access credentials.
☆50Updated 7 years ago
Alternatives and similar repositories for GitBackdorizer
Users that are interested in GitBackdorizer are comparing it to the libraries listed below
Sorting:
- WhiteBox CMS analysis☆69Updated 2 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 4 years ago
- XIP generates a list of IP addresses by applying a set of transformations used to bypass security measures e.g. blacklist filtering, WAF,…☆76Updated 6 years ago
- A tool to help you manage your leaks☆34Updated 7 years ago
- [L]ocal [A]uto [R]oot [E]xploiter is a simple bash script that helps you deploy local root exploits from your attacking machine when your…☆67Updated 8 years ago
- HTTPoxy Exploit Scanner by 1N3 @CrowdShield☆103Updated 8 years ago
- WORK IN PROGRESS. Waits for MSF session then automatically gets domain admin☆64Updated 2 years ago
- Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.☆44Updated 5 years ago
- Post-exploitation scripts for OS X persistence and privesc☆72Updated 8 years ago
- Dumain Bruteforcer - a fast and flexible domain bruteforcer☆53Updated 6 years ago
- PAVELOW Exploit Toolbox is a BASH script that corresponds with your KALI distro to better help your vulnerability hunting and exploiting …☆87Updated 7 years ago
- Automating Jenkins Hacking using Shodan API☆94Updated 7 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆42Updated 8 years ago
- BlackHat Europe 2017 Slides☆26Updated 7 years ago
- Very crude and poorly written HTTP(s) and SMTP bin☆93Updated 4 years ago
- Async'ly gather unique usernames thru null SMB sessions and bruteforce them with 2 passwords☆51Updated 7 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 6 years ago
- Various tools for managing bug bounty recon and exploration.☆48Updated 2 years ago
- Fingerprint a web app using local files as the fingerprint sources☆38Updated 8 years ago
- Plaintext Password harvesting from Azure Windows VMs☆68Updated 7 years ago
- A collection of scripts used to interact with the Burp Rest API☆52Updated 6 years ago
- a collection of payloads for common webapps☆72Updated 12 years ago
- Tool for checking Whether a domain or its multiple sub-domains are up and running.☆72Updated 6 years ago
- Burp extension to help developers replicate findings from pen tests☆70Updated last year
- Working Python test and PoC for CVE-2018-11776, includes Docker lab☆125Updated 7 years ago
- Collection of tools for privesc on Linux☆34Updated 12 years ago
- Generate pentest reports based on github issues.☆16Updated 2 years ago
- Deploy payloads to *Nix systems en masse☆107Updated 5 years ago
- Test CVE-2018-0296 and extract usernames☆106Updated 6 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆83Updated 7 years ago