haqpl / shiny-garbanzoLinks
Introducing SQLMAP into non-HTTP services.
☆13Updated 5 years ago
Alternatives and similar repositories for shiny-garbanzo
Users that are interested in shiny-garbanzo are comparing it to the libraries listed below
Sorting:
- A list of "secrets" from JWT sample code and readme files.☆56Updated 4 years ago
- A web shell for pivoting and lateral movement☆34Updated 7 years ago
- JavaScript functions intended to be used as an XSS payload against a WordPress admin account.☆54Updated 4 years ago
- A place to store my various pentesting related code thats too small/niche to justify its own repository, and a simple website with notes …☆38Updated last week
- offensive notes & resources☆43Updated 4 months ago
- Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets☆44Updated 2 years ago
- A Red Team tool for exfiltrating sensitive data from Jira tickets.☆85Updated 2 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆43Updated 5 years ago
- SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing☆91Updated 5 years ago
- Python3 tool to perform password spraying against Microsoft Online service using various methods☆87Updated 2 years ago
- This is Visual C# code that will create a new user named "mcfatty" when run as a service.☆29Updated 6 years ago
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.☆34Updated 3 years ago
- Merge multiple nMap xml files into one☆50Updated 6 years ago
- ☆31Updated 4 years ago
- A bridge between masscan and nmap - run fast masscan, parse output, execute nmap using masscan as input☆29Updated 8 months ago
- Tooling and commands for common red team and Infrastructure testing tasks☆43Updated 2 years ago
- Reverse Shell-able Windows exploits short POCs.☆31Updated 4 years ago
- Local File Inclusion Burp-Suite Intruder Payload Generator Plugin☆40Updated 4 years ago
- "Powershell script assisting with domain enumerating and in finding quick wins" - Basically written while doing the 'Advanced Red Team' l…☆81Updated 4 years ago
- Vulnerable webapp testbed☆21Updated 9 years ago
- User enumeration and password spraying tool for testing Azure AD☆70Updated 3 years ago
- Writeup of CVE-2020-15906☆48Updated 4 years ago
- A tool to password spray Jenkins instances☆57Updated 6 years ago
- Simple CLI tool for the generation of downloader oneliners for UNIX-like or Windows systems☆43Updated 4 years ago
- Burp extension for quickly copying request/response data.☆30Updated last week
- Username guessing tool primarily for use against the default Solaris finger service. Also supports relaying of queries through another fi…☆46Updated 10 years ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆23Updated 5 years ago
- A Red Team tool for exfiltrating sensitive data from Confluence pages.☆112Updated 2 years ago
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Updated 6 years ago
- This extension allows a user to specify a lockout policy in order to automate a password spray attack via Intruder.☆25Updated 5 years ago