VirtueSecurity / aws-extender-cli
AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common misconfiguration issues using the boto/boto3 SDK library.
☆81Updated 4 years ago
Related projects: ⓘ
- Ruby command-line interface to Burp Suite's REST API☆59Updated 4 years ago
- A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.☆37Updated 6 years ago
- A tool to enumerate S3 buckets manually or via certstream☆80Updated last year
- Notes as I learn basic AWS penetration testing☆67Updated 5 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆80Updated 5 years ago
- Scan for and exploit Consul agents☆40Updated 5 years ago
- Hashmash is a tool to aid in generating hashes from user supplied values and Epochs☆62Updated 8 years ago
- Burp Suite Importer - Connect to multiple web servers while populating the sitemap.☆48Updated 4 years ago
- WhiteBox CMS analysis☆68Updated last year
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆110Updated 5 years ago
- Endpoint for Out-of-Band Exfiltration (DNS & HTTP)☆90Updated 5 years ago
- Provide a shell-like interface for exploiting Remote File Inclusion vulnerabilities.☆46Updated 7 years ago
- Miscellaneous pentesting scripts for OSCP☆57Updated 5 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 7 years ago
- Open Red Team Bag of Tricks - Red Teaming and Pentesting cheat sheet and trick book☆96Updated 7 years ago
- Automating Jenkins Hacking using Shodan API☆94Updated 6 years ago
- The Unofficial Burp Extension for DNSDumpster.com☆70Updated 6 years ago
- Linux Local Privesc Helper and Agent☆165Updated 4 years ago
- ☆49Updated this week
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆82Updated 7 years ago
- retrive metadata endpoint data with these one liners.☆37Updated 4 years ago
- Reverse or bind shell catcher which uprgrades the caught shell to be more like a regular shell☆27Updated 5 years ago
- Scans a list of websites for Cloudfront or S3 Buckets☆104Updated 2 years ago
- Subdomain brute force focused on speed and data serialization☆73Updated last year
- A simple file-based scanner to look for potential AWS access and secret keys in files☆87Updated 6 months ago
- ☆35Updated this week
- A collection of scripts used to interact with the Burp Rest API☆51Updated 5 years ago
- Simple tool based on sslyze to scan large scope and provide SSL/TLS vulnerabilities☆52Updated 4 years ago
- 🏰 A Python script for AWS S3 bucket enumeration.☆53Updated 4 years ago
- Test a network's egress controls with various levels of success and failure.☆101Updated 2 years ago