WAF bypass PoC
☆51Oct 9, 2023Updated 2 years ago
Alternatives and similar repositories for waf-btk
Users that are interested in waf-btk are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- OpenCSPM Community Controls☆14May 18, 2021Updated 5 years ago
- Follina MS-MSDT 0-day MS Office RCE (CVE-2022-30190) PoC in Go☆17Jun 1, 2022Updated 4 years ago
- Kubernetes Unhinged Shell 😎☆46Oct 8, 2022Updated 3 years ago
- Compares and analyzes GCP IAM roles.☆78Mar 9, 2025Updated last year
- AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…☆105Apr 22, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Exploit script for the CFOR vulnerability using Github's GraphQL API☆28Aug 7, 2024Updated last year
- Harness the security superpowers of your cloud asset inventory☆11Sep 22, 2024Updated last year
- Ffuf output browser☆38Feb 25, 2023Updated 3 years ago
- Go library for mapping IP address ranges to cloud provider regions (currently: AWS and GCP)☆24Updated this week
- A tool for AWS incident response, that allows for enumeration, acquisition and analysis of data from AWS environments for the purpose of …☆203Jan 6, 2026Updated 6 months ago
- ☆146Mar 10, 2026Updated 3 months ago
- Reflected XSS Payload List for Vue.js (2 & 3)☆15Jan 12, 2023Updated 3 years ago
- Coalfire AWS RAMP/pak Reference Architecture☆37Updated this week
- To clean up your AWS AMIs: First, include AMIs by name or tag. Second, exclude AMIs in use, younger than N days, or the newest N images. …☆36Jun 24, 2026Updated last week
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Buggyapp is an vulnerable android application. This app can be used by pentesters, security researchers to practice Android application p…☆13Jun 4, 2022Updated 4 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆11Sep 22, 2023Updated 2 years ago
- A multi coroutine concurrent batch URL survival detection tool written in Go, with concurrency determined by CPU by default.一个go编写的多协程并发批…☆12Jan 9, 2024Updated 2 years ago
- Service Control Policies that have been Latacora recommended all wrapped up in terraform that is easy to attach to an OU.☆27Jun 16, 2026Updated 2 weeks ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Dec 12, 2023Updated 2 years ago
- A command-line utility for auditing DNS configuration using Zonemaster API☆32Aug 21, 2023Updated 2 years ago
- A straightforward tool for exploiting SMTP Smuggling vulnerabilities.☆14Jul 22, 2024Updated last year
- Crowdsourced list of sensitive IAM Actions☆158Oct 29, 2024Updated last year
- Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.☆65Feb 26, 2019Updated 7 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes☆75Apr 14, 2025Updated last year
- Tools, scripts and tips useful during OSINT investigations and reconnaissance.☆13Jul 2, 2021Updated 5 years ago
- Nuclei plugins to audit Chrome extensions☆66Jul 16, 2024Updated last year
- BPFView: Process and Network Activity Correlation☆34May 17, 2025Updated last year
- A utility to fetch and display dns names from the SSL/TLS cert data☆15Aug 11, 2023Updated 2 years ago
- Signatures for wraith used to detect secrets across various sources☆15Jul 8, 2022Updated 3 years ago
- A PoC executing shellcode in Dart☆15Jun 28, 2022Updated 4 years ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆43Aug 29, 2024Updated last year
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆112Feb 16, 2024Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Add a layer of active defense to your cloud applications.☆106Updated this week
- Prescriptive Sentinel policies that can be used to establish secure Terraform configuration for Amazon Web Services networking infrastruc…☆13May 11, 2026Updated last month
- A catalog of services that can be publicly exposed within different cloud providers.☆14Aug 30, 2024Updated last year
- The iOS Reloader is a weaponizing tool for jailbroken iOS devices. It facilitates the installation of a collection of tools on iOS device…☆16Sep 15, 2025Updated 9 months ago
- SolarView Compact through 6.00 downloader.php commands injection (RCE) nuclei-templates☆15Jun 16, 2023Updated 3 years ago
- Template Nuclei SSTI☆34Nov 18, 2025Updated 7 months ago
- ☆42Nov 20, 2023Updated 2 years ago