andresriancho / nimbostratus-target
This repository holds a target infrastructure you can use for running the nimbostratus tools.
☆23Updated 10 years ago
Alternatives and similar repositories for nimbostratus-target:
Users that are interested in nimbostratus-target are comparing it to the libraries listed below
- OAuth Security Cheatsheet☆39Updated 10 years ago
- Nashorn Post Exploitation☆32Updated 7 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆25Updated 7 years ago
- Zone transfers for rwhois☆20Updated 6 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆23Updated 8 years ago
- Tool orchestrator. Specify targets and run sets of tools against them.☆19Updated 8 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- Check for .net padding oracle patch☆19Updated 6 years ago
- ☆29Updated 6 years ago
- AWS S3 Bucket/Object Finder☆25Updated 7 years ago
- A number of scripts POC's and problems solved as pentests move along.☆44Updated 9 months ago
- Scan for open S3 buckets and dump☆36Updated 7 years ago
- Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…☆20Updated last year
- This is a Burp extension for adding additional payloads to active scanner that require out-of-band validation. Works great with XSSHunter☆20Updated 8 years ago
- Scripts that I've written that others may find useful☆14Updated 2 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 6 years ago
- Burp Suite Professional extension in Java for Tabnabbing attack☆13Updated 6 years ago
- A tool to evaluate Content Security Policies.☆70Updated 4 years ago
- NMAP NSE script that scans for http(s) server, takes a screenshot of them, and organizes the results into an HTML report.☆27Updated 10 years ago
- Advanced Vulnerable Web Application (AVWA)☆14Updated 7 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- ☆25Updated 3 years ago
- Windows Privesc Check☆20Updated 10 years ago
- Burp extension to decode NTLM SSP headers and extract domain/host information☆31Updated 4 years ago
- Summation of the OWASP Testing Guide for reference☆10Updated 7 years ago
- List of special metadata IPs used in cloud services☆11Updated 5 years ago
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 5 years ago
- Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)☆24Updated 5 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago