andresriancho / nimbostratus-target
This repository holds a target infrastructure you can use for running the nimbostratus tools.
☆23Updated 9 years ago
Related projects ⓘ
Alternatives and complementary repositories for nimbostratus-target
- OAuth Security Cheatsheet☆39Updated 10 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆25Updated 7 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 11 years ago
- Nashorn Post Exploitation☆31Updated 6 years ago
- ☆29Updated 6 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- Summation of the OWASP Testing Guide for reference☆10Updated 7 years ago
- Burp extension to decode NTLM SSP headers and extract domain/host information☆31Updated 3 years ago
- Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…☆20Updated 9 months ago
- AWS S3 Bucket/Object Finder☆25Updated 7 years ago
- NMAP NSE script that scans for http(s) server, takes a screenshot of them, and organizes the results into an HTML report.☆28Updated 10 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 7 years ago
- A collection of scripts used to interact with the Burp Rest API☆51Updated 5 years ago
- List of special metadata IPs used in cloud services☆11Updated 5 years ago
- A number of scripts POC's and problems solved as pentests move along.☆44Updated 5 months ago
- ☆25Updated 3 years ago
- A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.☆37Updated 6 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆22Updated 7 years ago
- A Custom Scanner for Burp☆30Updated 10 years ago
- Scripts that I've written that others may find useful☆14Updated 2 years ago
- Deliberately vulnerable web application☆22Updated 7 years ago
- WStalker: an easy proxy☆25Updated 4 years ago
- Useful Windows and AD tools☆15Updated 2 years ago
- Python script to check GitHub accounts for world-editable wiki pages☆20Updated last year
- PHP tool to test XSS☆23Updated 5 years ago
- This is a Burp extension for adding additional payloads to active scanner that require out-of-band validation. Works great with XSSHunter☆20Updated 7 years ago
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 5 years ago