doyensec / oidc-ssrf
An Evil OIDC Server
☆53Updated 2 years ago
Alternatives and similar repositories for oidc-ssrf:
Users that are interested in oidc-ssrf are comparing it to the libraries listed below
- ☆58Updated last year
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆40Updated last year
- Determine privileges from cloud credentials via brute-force testing.☆66Updated 6 months ago
- ☆58Updated 2 months ago
- ☆15Updated 2 years ago
- C# and Impacket implementation (here with Kerberos auth support) of PrintNightmare CVE-2021-1675/CVE-2021-34527☆29Updated 3 years ago
- ☆42Updated 9 months ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- PoC for CVE-2021-4034 dubbed pwnkit☆33Updated 3 years ago
- Do bulk whois lookups and get alerted on domains of interest.☆32Updated 7 months ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆39Updated 2 years ago
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆25Updated 3 years ago
- Enumerate AWS permissions and resources.☆67Updated 2 years ago
- Burp Extension for AWS Signing☆87Updated 2 months ago
- OAuth 2.0 Dynamic Security Scanner☆32Updated 4 years ago
- This script is a multi-threaded Okta password sprayer.☆70Updated last year
- Reproducible and extensible BloodHound playbooks☆42Updated 5 years ago
- ☆90Updated 3 years ago
- Find what egress ports are allowed☆39Updated 2 years ago
- Deployment code for ashirt-server☆19Updated last year
- ☆34Updated 4 years ago
- A steampipe plugin to query projectdiscovery.io tools.☆26Updated 7 months ago
- Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure☆94Updated 5 years ago
- ☆54Updated last year
- Jenkins Security Research☆11Updated 3 months ago
- ☆17Updated 2 years ago
- Qemuno Framework☆24Updated 2 years ago
- A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes☆42Updated last year
- Exchangelib wrapper for pentesting☆59Updated 3 weeks ago