kh4sh3i / ElasticSearch-PentestingLinks
ElasticSearch exploit and Pentesting guide for penetration tester
☆29Updated 2 years ago
Alternatives and similar repositories for ElasticSearch-Pentesting
Users that are interested in ElasticSearch-Pentesting are comparing it to the libraries listed below
Sorting:
- A python3 script searching for secret on swaggerhub☆67Updated 3 years ago
- ☆56Updated 2 years ago
- ☆27Updated 2 years ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆51Updated last year
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- ☆26Updated 3 years ago
- A Burp Suite extension for finding DNS vulnerabilities in web applications!☆95Updated last year
- Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)☆34Updated 4 months ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆55Updated 9 months ago
- ☆74Updated last year
- A "Spring4Shell" vulnerability scanner.☆49Updated 6 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆125Updated last year
- Make better use of the embedded browser that comes by default with Burp☆43Updated last year
- Determine the running software version of a remote F5 BIG-IP management interface.☆67Updated last year
- ☆57Updated last year
- ☆68Updated 2 years ago
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆98Updated 2 years ago
- ☆45Updated last year
- This script implements the Proof of Concept attack from the Checkpoint research "NTLM Credentials Theft via PDF Files"☆27Updated 7 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆57Updated 3 years ago
- User enumeration and password spraying tool for testing Azure AD☆70Updated 3 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆77Updated last year
- Hunt SSL Certificates for interesting keywords on major cloud service providers / internet☆39Updated 3 months ago
- ☆76Updated last year
- HTTP verb tampering & methods enumeration☆61Updated 3 years ago
- A Proof-Of-Concept for the CVE-2023-43770 vulnerability.☆33Updated last year
- DNS resolution tracing tool☆34Updated 4 years ago
- Striping CDN & WAF IPs from a list of IP Addresses☆79Updated 2 months ago
- ☆37Updated last month
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆116Updated 2 years ago