cyberblackhole / TokenBreaker
JSON RSA to HMAC and None Algorithm Vulnerability POC
☆60Updated 4 years ago
Related projects: ⓘ
- BurpSuite using the document and some extensions☆65Updated 4 years ago
- A blazing fast & feature rich Amazon S3 bucket enumerator.☆94Updated 2 years ago
- Prototype pollution scanner using headless chrome☆196Updated 2 years ago
- Vulnerable SAML infrastructure training applicaiton☆46Updated last year
- This is a walkthrough about understanding the #BoF machine present in the #OSCP exam.☆63Updated 3 years ago
- HTTP parameter discovery suite.☆59Updated 4 years ago
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆204Updated 2 months ago
- Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops☆41Updated 7 months ago
- Target practice for ffuf☆55Updated 3 years ago
- ☆38Updated 9 months ago
- API Pentesting notes.☆96Updated 2 years ago
- A reverse whois tool based on Whoxy API.☆156Updated 5 months ago
- m0chan.github.io☆85Updated 3 years ago
- A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference☆39Updated 3 years ago
- A python based blind SQL injection exploitation script☆132Updated 4 years ago
- linuxprivchecker.py -- a Linux Privilege Escalation Check Script☆36Updated 5 years ago
- A Tool for Domain Flyovers☆89Updated last month
- parse nmap files☆137Updated 7 months ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆130Updated 3 years ago
- A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host☆42Updated 4 years ago
- To help you go through the pentesting phases and the tools each phase can have. Some pratical examples of the tools are present too.☆43Updated 5 years ago
- A command line tool to search AttackerKB.☆49Updated 3 years ago
- s3 brute force tool☆43Updated 3 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆78Updated last year
- A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities☆102Updated 3 years ago
- ☆117Updated 3 years ago
- ASN reconnaissance script☆121Updated 7 months ago
- ☆78Updated 4 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆81Updated 3 months ago
- OSWE Preparation☆37Updated 5 years ago