doyensec / oidc-ssrfLinks
An Evil OIDC Server
☆53Updated 2 years ago
Alternatives and similar repositories for oidc-ssrf
Users that are interested in oidc-ssrf are comparing it to the libraries listed below
Sorting:
- ☆57Updated 2 years ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆47Updated 9 months ago
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆25Updated 3 years ago
- ☆12Updated 3 months ago
- A tool to parse, deduplicate, and query multiple port scans.☆59Updated last year
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Updated last year
- Determine privileges from cloud credentials via brute-force testing.☆69Updated 10 months ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- Blogpost series showcasing interesting cloud - web app security bugs☆49Updated 2 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 3 months ago
- A curated list of argument injection vectors☆41Updated 4 months ago
- Burp Extension for AWS Signing☆89Updated 5 months ago
- ☆23Updated 2 years ago
- Reproducible and extensible BloodHound playbooks☆43Updated 5 years ago
- A steampipe plugin to query projectdiscovery.io tools.☆26Updated 11 months ago
- ☆47Updated last year
- Collection of Semgrep rules for security analysis☆10Updated last year
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆20Updated 5 months ago
- Convert ldapdomaindump to Bloodhound☆80Updated last year
- dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…☆41Updated last year
- ☆26Updated 3 years ago
- ☆15Updated 2 years ago
- ☆36Updated 4 years ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Updated 3 months ago
- PoC for CVE-2021-4034 dubbed pwnkit☆35Updated 3 years ago
- C# and Impacket implementation (here with Kerberos auth support) of PrintNightmare CVE-2021-1675/CVE-2021-34527☆29Updated 3 years ago
- ☆90Updated 3 years ago
- Find what egress ports are allowed☆42Updated 2 years ago
- ☆64Updated last month
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago