happycakefriends / certainly
Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scenarios.
☆175Updated 6 months ago
Alternatives and similar repositories for certainly:
Users that are interested in certainly are comparing it to the libraries listed below
- A streamlined tool for discovering private TLDs for security research.☆180Updated this week
- Azure mindmap for penetration tests☆179Updated last year
- Nuclei templates for honeypots detection.☆196Updated last year
- This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used…☆207Updated 3 months ago
- ☆473Updated 10 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆124Updated 11 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆156Updated 4 months ago
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆276Updated 3 months ago
- A research project to add some brrrrrr to Burp☆134Updated last month
- Search for sensitive data in Postman public library.☆200Updated 2 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆153Updated 3 months ago
- GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.☆251Updated this week
- ☆141Updated 3 months ago
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆234Updated this week
- Dredging up secrets from the depths of the file system☆122Updated 4 months ago
- A Red Team Activity Hub☆196Updated this week
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…☆362Updated last week
- Python script to enumerate valid Microsoft 365 domains, retrieve tenant name, and check for an MDI instance.☆192Updated 4 months ago
- winPEAS, but for Active Directory☆147Updated 3 months ago
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.☆230Updated last year
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆215Updated this week
- Zero-dollar attack surface management tool☆275Updated 10 months ago
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆78Updated last month
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆257Updated 8 months ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆106Updated 2 months ago
- AI-powered ffuf wrapper☆301Updated 3 months ago
- Recon MindMap (RMM)☆152Updated 9 months ago
- Find CVEs associated to Linux and public exploits on github☆117Updated last year