amolnaik4 / bodhi
Bodhi - Client-side Vulnerability Playground
☆117Updated 3 years ago
Related projects: ⓘ
- Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for upho…☆154Updated 4 months ago
- Simple Server Side Request Forgery services enumeration tool.☆54Updated 6 years ago
- A tool to hunt for publicly accessible DigitalOcean Spaces☆154Updated 4 years ago
- Damn Vulnerable eXtensive Training Environment☆102Updated 2 years ago
- Burp Suite extension to discover assets from HTTP response.☆217Updated 3 years ago
- Local File Inclusion Exploitation Tool (mirror)☆121Updated 7 years ago
- Resolve and quickly portscan a list of (sub)domains.☆85Updated 8 years ago
- A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status☆89Updated 3 years ago
- Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS☆81Updated last year
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆136Updated 4 years ago
- Dirbuster plugin for Burp Suite☆70Updated 7 years ago
- Files for appsecwiki.com☆113Updated 4 years ago
- ☆207Updated this week
- Notes/Tools for pentesting☆82Updated 9 months ago
- Tools used for Penetration testing / Red Teaming☆65Updated 5 years ago
- A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.☆162Updated 4 years ago
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆279Updated 2 months ago
- SHELLING - a comprehensive OS command injection payload generator☆104Updated 5 years ago
- DumpTheGit searches through public repositories to find sensitive information uploaded to the Github repositories.☆86Updated 5 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆136Updated 3 years ago
- Actarus is a custom tool for bug bounty☆75Updated 4 years ago
- Automating Jenkins Hacking using Shodan API☆94Updated 6 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆80Updated 5 years ago
- Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.☆200Updated 7 months ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆130Updated last year
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆110Updated 5 years ago
- An interactive OOB XXE data exfiltration tool☆90Updated 7 years ago
- Some scripts and exploits☆142Updated 6 years ago
- Extreme Vulnerable Node Application☆94Updated 5 years ago
- Collection of OSCP study material && tools.☆77Updated 5 years ago