bcoles / so-check
Checks for search order privilege escalation vectors in system environment, system shared objects and executable files in $PATH.
☆18Updated 3 years ago
Alternatives and similar repositories for so-check:
Users that are interested in so-check are comparing it to the libraries listed below
- This is a lazy enumeration script made to make bug bounty enum & pentest flyovers easy as cake!☆14Updated 4 years ago
- A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.☆16Updated 4 years ago
- A collection of Metasploit plugins I have written for various reasons.☆15Updated 4 years ago
- This tool aims at automating the identification of potential service running behind ports identified manually either through manual scan …☆50Updated 4 years ago
- 3gsocks - a reverse connection socks5 based network pivot☆9Updated 3 years ago
- Web based favicon recon tool made using streamlit.☆10Updated 2 years ago
- HttpDoom is a tool for response-based inspection of websites across a large amount of hosts for quickly gaining an overview of HTTP-base…☆23Updated 3 years ago
- A playground to practice SSRF Attacks against web apps☆17Updated 6 years ago
- Remove Offensive and Profane Words from Wordlists☆14Updated last year
- Generate representative samples from Pwned Passwords (HIBP)☆12Updated 3 years ago
- A modified version of TomNomNom's anew, allowing for multiple files to be defined as parameters.☆13Updated last year
- 📡 Ease file sharing during pentest/CTF 🎸☆12Updated 2 years ago
- Finding sensitive information in the trimmed parts of cropped images☆28Updated 3 years ago
- sudo-parser is a tool to audit complex sudoers files☆17Updated 2 years ago
- Scans for HTTP servers and finds given strings in HTTP body and HTTP response headers.☆35Updated 3 weeks ago
- Computer Network Exploitation (CNE) Field Manual☆13Updated 9 months ago
- OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research tea…☆18Updated 3 years ago
- Publishing advisories for CVEs found by POST Cyberforce☆13Updated last week
- ☆25Updated 2 years ago
- A framework for easy payloads development and deployment, collection of customizable XSS payloads☆26Updated 2 years ago
- Ruby script to automate metasploit scanning, exploitation, and post-exploitation☆19Updated 4 years ago
- Various scripts & tools☆11Updated 8 months ago
- Do the unexpected with AD GPO processing☆9Updated 5 years ago
- Slides from my talk at the Adversary Village, Defcon 30☆29Updated 2 years ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆19Updated 4 years ago