alienwithin / Scripts-Sploits
A number of scripts POC's and problems solved as pentests move along.
☆44Updated 7 months ago
Alternatives and similar repositories for Scripts-Sploits:
Users that are interested in Scripts-Sploits are comparing it to the libraries listed below
- Various tools for managing bug bounty recon and exploration.☆47Updated 2 years ago
- A collection of scripts used to interact with the Burp Rest API☆51Updated 5 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- Scan for open S3 buckets and dump☆35Updated 6 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 6 years ago
- OWASP Skanda - SSRF Exploitation Framework☆36Updated 11 years ago
- PHP tool to test XSS☆23Updated 5 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆25Updated 7 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆23Updated 7 years ago
- The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…☆15Updated 6 years ago
- Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…☆20Updated 11 months ago
- Just a silly recon tool that uses data from SSL Certificates to find potential host names☆30Updated last year
- My IDA scripts, tips and testing techniques for Thick Client applications.☆17Updated 10 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 6 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 7 years ago
- Script to parse multiple Nmap .gnmap exports into various plain-text formats for easy analysis.☆23Updated 10 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago
- A password spraying wordlist generator. Takes breach data as a valid input in order to target password reuse.☆44Updated 5 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- OAuth Security Cheatsheet☆39Updated 10 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 7 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 5 years ago
- ☆0Updated 5 years ago
- Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.☆44Updated 4 years ago
- Of the thousands of lazy reconnaissance scripts, this one is by far the one in this repository.☆11Updated 3 years ago
- Burp extension to passively scan for applications revealing software version numbers☆30Updated 7 months ago