Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk
☆10Aug 18, 2022Updated 3 years ago
Alternatives and similar repositories for bugstropics
Users that are interested in bugstropics are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- POC of CVE-2022-21881 exploited at TianfuCup 2021 to escape Chrome Sandbox☆21Aug 9, 2022Updated 3 years ago
- Tools for auditing WAFS☆19Feb 25, 2022Updated 4 years ago
- ☆13Mar 15, 2022Updated 4 years ago
- This is a python script that exploits wget when being set with a SUID bit, and overwrites the root password.☆40Mar 27, 2024Updated last year
- Burp Suite extension to help make Graphql request more readable☆32Dec 7, 2017Updated 8 years ago
- ☆15Dec 22, 2021Updated 4 years ago
- Indicators of Normality☆11Jul 22, 2022Updated 3 years ago
- various slides and presentations I've worked on☆19Mar 21, 2025Updated last year
- Cmdlets for capturing Windows Events☆14Mar 11, 2022Updated 4 years ago
- NMAP NSE script that scans for http(s) server, takes a screenshot of them, and organizes the results into an HTML report.☆27Sep 20, 2014Updated 11 years ago
- Tool to start processes as SYSTEM using token duplication☆37Oct 27, 2020Updated 5 years ago
- ☆13Dec 27, 2023Updated 2 years ago
- Ekoparty's BlueSpace Keynote November 2021. Shoutout to @plugxor Muchas Gracias!!!☆13Jun 5, 2023Updated 2 years ago
- 「💥」CVE-2022-33891 - Apache Spark Command Injection☆25Aug 1, 2022Updated 3 years ago
- Exploit for PrestaShop bockwishlist module 2.1.0 SQLi (CVE-2022-31101)☆25Aug 9, 2022Updated 3 years ago
- ☆21Aug 3, 2022Updated 3 years ago
- A Payload Injector for bugbounties written in go☆70Jul 18, 2020Updated 5 years ago
- ☆15May 26, 2021Updated 4 years ago
- ☆18Jul 3, 2020Updated 5 years ago
- GTPv1/GTPv2 Dialer☆31Nov 26, 2025Updated 3 months ago
- ELF Sectional docking payload injector system☆21Jun 28, 2022Updated 3 years ago
- This is a proof-of-concept of malicious software running inside of ModSecurity WAF.☆34Jul 24, 2025Updated 8 months ago
- Presentation materials for my Black Hat USA 2022 Briefing and Arsenal talks☆64Aug 4, 2022Updated 3 years ago
- Python Script to Print the name of the companies that are acquired by a Target Company and the Time of Acquisition.☆26Dec 5, 2021Updated 4 years ago
- Threat Mitigation Strategies☆28Feb 18, 2026Updated last month
- Noobish Recon Automation☆20Feb 15, 2024Updated 2 years ago
- A tool to sync mythic events with ghostwriter oplog.☆14Nov 21, 2024Updated last year
- Blind XSS SVG☆10Mar 27, 2023Updated 2 years ago
- Command and Control that uses NTP as the transport protocol.☆25Jan 29, 2022Updated 4 years ago
- OpenHashAPI provides a secure method of communicating hashes and enables lightweight workflows for security practitioners and enthusiasts…☆13Oct 27, 2024Updated last year
- just manipulatin these here tokens yes sir nothing weird☆22Apr 18, 2022Updated 3 years ago
- A Powerful XSS,RXSS,BXSS finding tool☆31Oct 29, 2025Updated 4 months ago
- RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…☆109Oct 10, 2020Updated 5 years ago
- A quick and dirty Golang security talk☆27Apr 23, 2020Updated 5 years ago
- 😭 WSOB is a python tool created to exploit the new vulnerability on WSO2 assigned as CVE-2022-29464.☆27May 23, 2023Updated 2 years ago
- Node CLI to download GiantBomb shows through the official API☆31Jan 21, 2025Updated last year
- S3 Recon tips and tricks collected from different resources,Sorry if i missed to mention all resources owners☆27Nov 13, 2021Updated 4 years ago
- Search-Scan-Save-Notify☆11May 12, 2025Updated 10 months ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Jul 31, 2020Updated 5 years ago