Alternatives and similar repositories for oidc-ssrf

Users that are interested in oidc-ssrf are comparing it to the libraries listed below

• nccgroup / cowcloud
  ☆57Updated 2 years ago
• NodyHub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆47Updated 9 months ago
• alt3kx / wafparan01d3
  Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool
  ☆25Updated 3 years ago
• pocahon / jsontoneo
  ☆12Updated 3 months ago
• leesoh / np
  A tool to parse, deduplicate, and query multiple port scans.
  ☆59Updated last year
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆41Updated last year
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆69Updated 10 months ago
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆58Updated last year
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆49Updated 2 years ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆32Updated 3 months ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated 4 months ago
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆89Updated 5 months ago
• shivsahni / NSDetect
  ☆23Updated 2 years ago
• RiccardoAncarani / bloodhound-playbook
  Reproducible and extensible BloodHound playbooks
  ☆43Updated 5 years ago
• sensepost / steampipe-plugin-projectdiscovery
  A steampipe plugin to query projectdiscovery.io tools.
  ☆26Updated 11 months ago
• hac01 / gcp-iam-brute
  ☆47Updated last year
• s0rcy / semgrep-rules
  Collection of Semgrep rules for security analysis
  ☆10Updated last year
• nullenc0de / Cognitohunter
  A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…
  ☆20Updated 5 months ago
• blurbdust / ldd2bh
  Convert ldapdomaindump to Bloodhound
  ☆80Updated last year
• emptynebuli / dauthi
  dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…
  ☆41Updated last year
• cygenta / CVE-2020-3452
  ☆26Updated 3 years ago
• asaurusrex / MachoBins
  ☆15Updated 2 years ago
• OWASP / owasp-cstg
  ☆36Updated 4 years ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Updated 3 months ago
• moloch-- / poc-cve-2021-4034
  PoC for CVE-2021-4034 dubbed pwnkit
  ☆35Updated 3 years ago
• tothi / CVE-2021-1675
  C# and Impacket implementation (here with Kerberos auth support) of PrintNightmare CVE-2021-1675/CVE-2021-34527
  ☆29Updated 3 years ago
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• NHAS / egressinator
  Find what egress ports are allowed
  ☆42Updated 2 years ago
• synacktiv / DepFuzzer
  ☆64Updated last month
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated 2 years ago