blackhatethicalhacking / log4j-scan
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
β25Updated 3 years ago
Alternatives and similar repositories for log4j-scan:
Users that are interested in log4j-scan are comparing it to the libraries listed below
- π Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.shβ34Updated 2 years ago
- Arescan is a powerful web directory discovery tool that helps you uncover hidden directories and links on any website. By performing a brβ¦β30Updated last year
- β42Updated 2 years ago
- PassMute - A multi featured Password Transmutation/Mutator Toolβ51Updated last year
- A simple automation tool to detect lfi, rce and ssti vulnerabilityβ55Updated 3 years ago
- An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.β48Updated 2 years ago
- β26Updated 2 years ago
- Script that performs a scan of a specific domain, using the following tools: Subfinder, assetfinder, amass and httpx. The result is mergeβ¦β23Updated 2 years ago
- Tips, Tricks, and Scripts for Linux Post Exploitationβ38Updated 2 years ago
- β68Updated last year
- Tools used for Pentestingβ22Updated last year
- F5 BIG-IP Scanner scans for servers on shodan and checks to see if they are vulnerable.β17Updated 2 years ago
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlareβ58Updated 2 years ago
- β72Updated 10 months ago
- "π Subtron: Bash-driven subdomain seeker. Utilizes Subfinder, Amass, Assetfinder, and HTTPX to swiftly uncover live domains. Results stoβ¦β22Updated last year
- This Python tool enables network node command and exfiltration while applying OPSEC to ensure the process is hidden by transmitting commaβ¦β33Updated last year
- A python3 script searching for secret on swaggerhubβ63Updated 3 years ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, β¦β34Updated last year
- β18Updated last year
- Highly configurable script for dictionary/spray attacks against online web applications.β53Updated 2 years ago
- β64Updated last year
- Simple chrome extension for full name extraction and conversion to emails/usernames. Utilizes the 'people' tab of the target company on Lβ¦β24Updated 3 months ago
- An automated e-mail OSINT toolβ20Updated 2 years ago
- A simple utility to quickly gather historic Port and CVE exposures from an IP range.β38Updated last year
- Check out this JavaScript code that extracts URLs from a web page and linked scripts! Perfect for web scraping and penetration testingβ18Updated 8 months ago
- Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. Theβ¦β11Updated 3 years ago
- Azure Service Subdomain Enumerationβ56Updated 6 months ago
- β23Updated 3 months ago
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]β31Updated 9 months ago
- Windows priviledge escalation scriptβ13Updated last month