ajinabraham / package_scan
PoC: Python package static and dynamic analysis to detect environment variable stealing
☆10Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for package_scan
- An information gathering tool to collect git emails in version control host services☆11Updated 5 years ago
- Extract endpoints from specific Git repository for fuzzing☆21Updated 4 years ago
- Pythonize Intruder Payload☆13Updated 3 years ago
- Quickly add http and https domains to BurpSuite's scope with all paths.☆16Updated 8 years ago
- A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.☆16Updated 4 years ago
- Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them☆37Updated 6 years ago
- Exactly what it sounds like, which is something rad☆20Updated 2 years ago
- Docker image for reconftw, a simple script intended to perform a full recon on an objective with multiple subdomains☆10Updated 3 years ago
- A collection of Metasploit plugins I have written for various reasons.☆15Updated 3 years ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆11Updated 2 years ago
- This Burp Suite extension enables the generation of shareable links to specific requests which other Burp Suite users can import.☆12Updated 2 years ago
- Signatures for wraith used to detect secrets across various sources☆15Updated 2 years ago
- Docker container for running OWASP WebGoat.NET application☆11Updated 6 years ago
- Timeinator is an extension for Burp Suite that can be used to perform timing attacks over an unreliable network such as the internet.☆21Updated last year
- List of domains having RVDP programmes☆10Updated 4 years ago
- CVE-2020-28243 Local Privledge Escalation Exploit in SaltStack Minion☆17Updated 3 years ago
- Go module that returns supported regions for a service or supported services for a region☆15Updated 5 months ago
- It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…☆15Updated 5 months ago
- Everything about xss protection technology☆15Updated 5 years ago
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆12Updated 3 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Updated 9 years ago
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 5 years ago
- A multi-threaded scanner that helps identify CORS flaws/misconfigurations☆18Updated 4 years ago
- A tool to run nmap against each line in a script.☆16Updated 3 years ago
- Parallelized enumeration tool for red team engagements and bug bounty programs.☆18Updated 3 years ago
- Push notifications to Slack channel or to custom server based on BurpSuite response conditions.☆18Updated 3 years ago
- Cloud metadata extraction tools and scripts☆34Updated last year
- Collection of different exploitation scenarios of JWT.☆21Updated 3 years ago
- A playground to practice SSRF Attacks against web apps☆17Updated 6 years ago