filipi86 / httpdoom
HttpDoom is a tool for response-based inspection of websites across a large amount of hosts for quickly gaining an overview of HTTP-based attack surface.
☆22Updated 3 years ago
Related projects: ⓘ
- Sp00fer blog post -☆25Updated 2 years ago
- Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …☆13Updated 5 months ago
- Slides from my talk at the Adversary Village, Defcon 30☆28Updated last year
- ☆8Updated 3 years ago
- Shell hunter for AF☆34Updated 2 years ago
- With the help of this docker image, you can easily access PEzor on your system!☆15Updated 2 years ago
- Cisco CallManager User Enumeration☆15Updated 2 years ago
- Malicious Macro attack techniques for red teamers☆15Updated 3 years ago
- Finding sensitive information in the trimmed parts of cropped images☆28Updated 2 years ago
- ☆17Updated last year
- This tool aims at automating the identification of potential service running behind ports identified manually either through manual scan …☆50Updated 3 years ago
- ☆18Updated this week
- Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)☆21Updated 2 years ago
- A collection of python apps and shell scripts to email an xlsx spreadsheet of new vulnerabilities in the NIST CVE database and their asso…☆12Updated 3 years ago
- ☆23Updated this week
- passat - password auditing tool. Does statistical analyses on large sets of cracked passwords.☆22Updated 2 years ago
- Simple C2 over the Trello API☆37Updated last year
- TCP reverse shell written in C# with the option to choose between Windows command prompt or MS powershell.☆26Updated 5 years ago
- Finding SSL Blindspots for Red Teams☆30Updated 4 years ago
- A pair of scripts to import session and local group information that has been collected from alternate data sources into BloodHound's Neo…☆19Updated 2 years ago
- Local Privilege Escalation Miner☆22Updated 2 years ago
- Burp Suite Pro extension☆10Updated 7 years ago
- Scripts to help automate tedious red teaming enumeration and tasks.☆16Updated 4 years ago
- A lightweight Python 3 Nmap wrapper that doesn't try too hard. Gracefully handles any Nmap command, providing access to all output types …☆12Updated 2 years ago
- Study notes on Windows NTLM Reflection and token stealing based EOPs.☆18Updated 3 years ago
- Tool to transfer credential files from Firefox to your local machine to decrypt offline.☆23Updated 2 years ago
- A rogue DNS detector☆23Updated 11 months ago
- Continuous kerberoast monitor☆43Updated last year
- Proof of Concept in Go from Secureworks' research on Azure Active Directory Brute-Force Attacks. Inspired by @treebuilder's POC on PowerS…☆13Updated 2 years ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆17Updated 3 years ago