himazawa / bentoLinks
Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.
☆78Updated 4 years ago
Alternatives and similar repositories for bento
Users that are interested in bento are comparing it to the libraries listed below
Sorting:
- Burp with Friends☆103Updated 2 years ago
- Monitoring GitHub for sensitive data shared publicly☆65Updated 3 years ago
- Hayat is a script for report and analyze Google Cloud Platform resources.☆81Updated 5 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Updated 4 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆78Updated 3 years ago
- A lab to play with authentication and authorisation problems☆96Updated 2 years ago
- Extensive code infrastructure for finding unintended information leaks in files, git repositories and much more.☆28Updated 2 years ago
- retrive metadata endpoint data with these one liners.☆41Updated 5 years ago
- Static security checker for Dockerfiles☆95Updated last year
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆135Updated 5 years ago
- A natural evolution of Burp Suite's Repeater tool☆93Updated 2 years ago
- JIRA Secure Attachment Looter☆70Updated 5 years ago
- A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering☆210Updated 4 years ago
- An auxiliary spellcheck dictionary that corresponds with the Bishop Fox Cybersecurity Style Guide☆87Updated 2 years ago
- Scripts and tools for AWS Pentest☆53Updated 4 years ago
- A collection of my Dockerfiles☆90Updated 2 years ago
- A collection of scripts, and tips and tricks for hacking k8s clusters and containers.☆136Updated 11 months ago
- ☆36Updated 5 years ago
- LazyWeb is a demonstration web application designed to showcase common server-side application vulnerabilities. Each vulnerability is cat…☆117Updated 7 months ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆77Updated 5 years ago
- This tool can be used to enumerate the subdomains associated with a company by aggregating the results of multiple OSINT (Open Source Int…☆144Updated 2 years ago
- vulnerable single sign on☆148Updated last year
- Whalescan is a vulnerability scanner for Windows containers, which performs several benchmark checks, as well as checking for CVEs/vulner…☆156Updated 2 years ago
- Pentester-focused Docker registry tool to enumerate and pull images☆111Updated 5 years ago
- Scripts to extract files from SCM directories left on web servers☆36Updated 2 years ago
- A tool to enumerate S3 buckets manually or via certstream☆82Updated 2 years ago
- Scripts to execute enumeration via LFI☆89Updated 6 years ago
- Endpoint for Out-of-Band Exfiltration (DNS & HTTP)☆92Updated 6 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆81Updated 6 years ago
- Application and Service Fingerprinting☆133Updated 2 years ago