carlospolop / Bruteforce-GCP-Permissions

Related projects: ⓘ

• spyx / ParamAngler
  ☆27Updated last year
• LuemmelSec / CVE-2023-29357
  ☆50Updated 11 months ago
• websecnl / MagicByteSelector
  Burp Suite Extension for inserting a magic byte into responder's request
  ☆20Updated 11 months ago
• carlospolop / aws-Perms2ManagedPolicies
  ☆10Updated last month
• lutzenfried / Delegate
  Tool to perform GCP Domain Wide Delegation abuse and access Gmail and Drive data
  ☆42Updated 10 months ago
• emptynebuli / dauthi
  dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…
  ☆34Updated 4 months ago
• honoki / burp-digitalocean-openvpn-socks
  A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it
  ☆45Updated 6 months ago
• mosesrenegade / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆57Updated 10 months ago
• opabravo / cymulate-framework
  ☆19Updated this week
• ar0x4 / ysoserial.net-docker
  ysoserial.net docker image
  ☆27Updated 7 months ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆37Updated 2 years ago
• p0dalirius / pwndocapi
  A python library to interact with Pwndoc instances for pentest reports generation
  ☆12Updated last month
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆38Updated 8 months ago
• RedTeamOperations / Red-Infra-Craft
  RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…
  ☆47Updated 3 weeks ago
• dunderhay / entraspray
  Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)
  ☆25Updated 6 months ago
• CyberSecurityUP / Adversary-Emulation-Guide
  ☆14Updated last year
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆30Updated last year
• Xcod3bughunt3r / SMBploit
  ☆31Updated this week
• redrays-io / WS_RaceCondition_PoC
  Simple PoC for demonstrating Race Conditions on Websockets
  ☆49Updated last year
• chryzsh / cloud-hacking-labs
  A not-curated list of cloud hacking labs
  ☆19Updated 5 months ago
• MythicAgents / arachne
  Webshell agent in aspx and php
  ☆16Updated this week
• optionalCTF / SSOh-No
  User enumeration and password spraying tool for testing Azure AD
  ☆67Updated 2 years ago
• HarshVaragiya / sslsearch
  Hunt SSL Certificates for interesting keywords on major cloud service providers / internet
  ☆32Updated 8 months ago
• synacktiv / kcmdump
  Dump Kerberos tickets from the KCM database of SSSD
  ☆30Updated last week
• AlteredSecurity / RBCD
  Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.
  ☆19Updated 3 years ago
• 0xAkashsky / sub-scout
  Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)
  ☆33Updated last year
• Workingdaturah / BOF-Learning
  Cobalt Strike BOFS
  ☆16Updated 8 months ago
• gdraperi / slurp-1
  S3 bucket enumerator
  ☆29Updated 5 years ago
• DarkRelayLabs / VWA
  Vulnerable Windows Application
  ☆15Updated 9 months ago
• dwisiswant0 / cve-2023-50164-poc
  Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")
  ☆57Updated 9 months ago