doyensec / oidc-ssrf
An Evil OIDC Server
☆53Updated 2 years ago
Alternatives and similar repositories for oidc-ssrf:
Users that are interested in oidc-ssrf are comparing it to the libraries listed below
- ☆58Updated last year
- Determine privileges from cloud credentials via brute-force testing.☆67Updated 6 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆40Updated last year
- ☆59Updated 3 months ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆25Updated 3 years ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆47Updated 6 months ago
- Burp Extension for AWS Signing☆87Updated 2 months ago
- Blogpost series showcasing interesting cloud - web app security bugs☆47Updated last year
- ☆90Updated 3 years ago
- A steampipe plugin to query projectdiscovery.io tools.☆26Updated 7 months ago
- A tool to parse, deduplicate, and query multiple port scans.☆57Updated last year
- ☆43Updated 9 months ago
- ☆26Updated 2 years ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆39Updated 2 years ago
- C# and Impacket implementation (here with Kerberos auth support) of PrintNightmare CVE-2021-1675/CVE-2021-34527☆29Updated 3 years ago
- Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets☆43Updated 2 years ago
- ☆15Updated 2 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆31Updated 2 weeks ago
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆29Updated 2 months ago
- A list of "secrets" from JWT sample code and readme files.☆54Updated 4 years ago
- A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.☆22Updated 5 months ago
- ☆10Updated 6 years ago
- ☆17Updated 2 years ago
- A simple remote scanner for Liferay Portal☆18Updated 2 years ago
- Do bulk whois lookups and get alerted on domains of interest.☆33Updated 7 months ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- Deploy a Private Burpsuite Collaborator using boto3 Python Library☆57Updated 5 years ago
- Custom scripts for the PIPER Burp extensions.☆97Updated last year
- CLI tool written in Go to generate Canary Tokens from https://canarytokens.org☆11Updated 3 years ago