blackhatethicalhacking / log4j-scan
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
β25Updated 3 years ago
Alternatives and similar repositories for log4j-scan:
Users that are interested in log4j-scan are comparing it to the libraries listed below
- π Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.shβ34Updated 2 years ago
- An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.β48Updated 2 years ago
- Tips, Tricks, and Scripts for Linux Post Exploitationβ38Updated 2 years ago
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlareβ59Updated 2 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerabilityβ55Updated 3 years ago
- Arescan is a powerful web directory discovery tool that helps you uncover hidden directories and links on any website. By performing a brβ¦β30Updated 2 years ago
- Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. Theβ¦β11Updated 3 years ago
- This Python tool enables network node command and exfiltration while applying OPSEC to ensure the process is hidden by transmitting commaβ¦β33Updated last year
- A simple pentest container equipped with common python pentest tools.β41Updated 2 months ago
- PassMute - A multi featured Password Transmutation/Mutator Toolβ51Updated last year
- A Python based Recon Tool to search for Storage Bucketsβ11Updated 2 years ago
- Image Payload Creating/Injecting toolsβ13Updated 3 years ago
- β18Updated 2 years ago
- Script related in Active Directory Attacks Domainβ21Updated last year
- TheSprayer is a cross-platform tool designed to help penetration testers spray passwords against an Active Directory domain without lockiβ¦β33Updated last month
- β42Updated 2 years ago
- A BASH Script to automate the installation of the most popular bug bounty toolsβ19Updated 6 months ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, β¦β35Updated last year
- vsftpd 3.0.3 Exploit - Remote Denial of Serviceβ23Updated 3 years ago
- A tool for Subdomain takeovers detectionβ26Updated 2 years ago
- An automated e-mail OSINT toolβ20Updated 3 years ago
- Highly configurable script for dictionary/spray attacks against online web applications.β53Updated 2 years ago
- β64Updated last year
- β26Updated 2 years ago
- "π Subtron: Bash-driven subdomain seeker. Utilizes Subfinder, Amass, Assetfinder, and HTTPX to swiftly uncover live domains. Results stoβ¦β23Updated last year
- An Automated Mass Network Vulnerability Scanner and Recon Toolβ31Updated last year
- nistrich allows you to discover CVEs and their severities belong to IP addressesβ13Updated 2 years ago
- Script that performs a scan of a specific domain, using the following tools: Subfinder, assetfinder, amass and httpx. The result is mergeβ¦β23Updated 3 years ago
- ADAT is a small tool used to assist CTF players and Penetration testers with easy commands to run against an Active Directory Domain Contβ¦β96Updated 2 years ago
- Quickly discover exposed hosts on the internet using multiple search engine.β9Updated 3 years ago