hoodoer / endgame
An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet π
β12Updated 3 years ago
Alternatives and similar repositories for endgame:
Users that are interested in endgame are comparing it to the libraries listed below
- Intentionally Vulnerable Nodejs Application & APIsβ22Updated 2 years ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.comβ38Updated 2 years ago
- β23Updated 5 years ago
- User enumeration and password spraying tool for testing Azure ADβ68Updated 2 years ago
- β12Updated 2 years ago
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enabβ¦β39Updated 2 years ago
- Enumerate AWS permissions and resources.β66Updated 2 years ago
- A collection of commands, scripts, tips, tricks, and other information compiled during my journey to obtaining the OSCP certification.β23Updated 4 years ago
- β16Updated 3 years ago
- This Python tool enables network node command and exfiltration while applying OPSEC to ensure the process is hidden by transmitting commaβ¦β33Updated last year
- A "Spring4Shell" vulnerability scanner.β50Updated 2 years ago
- This repository is intended for sharing files/tools/tutorials..etc that related to eWPTXv2 from eLearnSecurityβ14Updated 4 years ago
- β34Updated last year
- Tools used for Pentestingβ22Updated last year
- This repository is intended for sharing files/tools/tutorials..etc that related to eWPTXv1 from eLearnSecurityβ23Updated 4 years ago
- "Terrible Thick Client" is a vulnerable application developed in C# .NET framework.β19Updated last year
- β22Updated 3 years ago
- Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challengesβ32Updated 2 years ago
- Exploit scriptsβ12Updated 2 years ago
- Assorted scripts I made for Red Teaming / Pen Testingβ13Updated 7 months ago
- Super organized and flexible script for sending phishing campaignsβ54Updated 3 years ago
- β41Updated 2 years ago
- β37Updated 3 years ago
- A tool to assist in the development of landing pages for phishing campaignsβ15Updated 2 years ago
- Enumerate AWS cloud resources based on provided credentialβ50Updated 2 years ago
- Network penetration testing toolset wrapperβ81Updated 2 years ago
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlareβ58Updated 2 years ago
- This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)β43Updated last year
- Files for my Python3 Create Your Own Tool Seriesβ23Updated 2 years ago