aadityapurani / NodeJS-Red-Team-Cheat-Sheet

Related projects: ⓘ

• 0xtz / Enum_For_All
  ☆161Updated 4 years ago
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
  ☆247Updated 2 years ago
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆502Updated 7 months ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆601Updated 6 months ago
• pimps / ysoserial-modified
  That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
  ☆173Updated 2 years ago
• 21y4d / blindSQLi
  A python based blind SQL injection exploitation script
  ☆132Updated 4 years ago
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆176Updated 3 months ago
• httpvoid / CVE-Reverse
  ☆277Updated 2 years ago
• xer0times / BugBounty
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆144Updated 4 years ago
• computer-engineer / WhiteboxPentest
  Whitebox source code review cheatsheet (Based on AWAE syllabus)
  ☆112Updated 2 years ago
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆233Updated 4 years ago
• deletehead / awae_oswe_prep
  Stuff done in preparation for AWAE course and OSWE certification
  ☆149Updated 3 years ago
• noperator / CVE-2019-18935
  RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.
  ☆342Updated 2 years ago
• s0j0hn / AWAE-OSWE-Prep
  ☆117Updated 3 years ago
• defparam / tiscripts
  Turbo Intruder Scripts
  ☆214Updated 4 years ago
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆294Updated 5 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆208Updated 2 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆210Updated 2 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆116Updated 9 months ago
• putsi / privatecollaborator
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆204Updated 2 months ago
• daeken / SSRFTest
  SSRF testing tool
  ☆242Updated last year
• Leoid / MatchandReplace
  Match and Replace script used to automatically generate JSON option file to BurpSuite
  ☆213Updated 5 years ago
• six2dez / burp-bounty-profiles
  Burp Bounty profiles compilation, feel free to contribute!
  ☆143Updated 2 years ago
• sw33tLie / sns
  IIS shortname scanner written in Go
  ☆299Updated last year
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆250Updated last year
• BuildHackSecure / gitscraper
  A tool which scrapes public github repositories for common naming conventions in variables, folders and files
  ☆286Updated 3 months ago
• M507 / AWAE-Preparation
  This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.
  ☆234Updated 5 years ago
• swoops / eval_villain
  A Firefox Web Extension to improve the discovery of DOM XSS.
  ☆249Updated 11 months ago
• IppSec / forward-shell
  ☆152Updated 2 years ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆96Updated 5 months ago