alienwithin / Scripts-Sploits
A number of scripts POC's and problems solved as pentests move along.
☆44Updated 3 months ago
Related projects: ⓘ
- Various tools for managing bug bounty recon and exploration.☆46Updated last year
- Scan for open S3 buckets and dump☆35Updated 6 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆22Updated 7 years ago
- OWASP Skanda - SSRF Exploitation Framework☆36Updated 11 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 5 years ago
- A collection of scripts used to interact with the Burp Rest API☆51Updated 5 years ago
- Script to parse multiple Nmap .gnmap exports into various plain-text formats for easy analysis.☆22Updated 10 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- ☆23Updated 6 years ago
- Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.☆44Updated 4 years ago
- WhiteBox CMS analysis☆68Updated last year
- AWS S3 Bucket/Object Finder☆25Updated 6 years ago
- NMAP NSE script that scans for http(s) server, takes a screenshot of them, and organizes the results into an HTML report.☆28Updated 10 years ago
- Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)☆24Updated 5 years ago
- ☆29Updated 6 years ago
- BurpSuite extension to assist with Automated Forced Browsing/Endpoint Enumeration☆22Updated 6 years ago
- A collection of published exploits and proof-of-concept code.☆19Updated 6 years ago
- PHP tool to test XSS☆23Updated 4 years ago
- A Pythonic wrapper to MassDNS☆23Updated 6 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 5 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆25Updated 6 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 7 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 6 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…☆20Updated 7 months ago
- ☆15Updated this week
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆41Updated 11 years ago
- ☆0Updated 5 years ago
- Check for .net padding oracle patch☆19Updated 5 years ago
- ☆35Updated this week