kh4sh3i / ElasticSearch-PentestingLinks
ElasticSearch exploit and Pentesting guide for penetration tester
☆29Updated 2 years ago
Alternatives and similar repositories for ElasticSearch-Pentesting
Users that are interested in ElasticSearch-Pentesting are comparing it to the libraries listed below
Sorting:
- A python3 script searching for secret on swaggerhub☆68Updated 3 years ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆51Updated last year
- User enumeration and password spraying tool for testing Azure AD☆70Updated 3 years ago
- ☆56Updated 2 years ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- Open-Source Phishing Toolkit☆19Updated 4 years ago
- Determine the running software version of a remote F5 BIG-IP management interface.☆67Updated last year
- ☆27Updated 2 years ago
- ☆26Updated 3 years ago
- A "Spring4Shell" vulnerability scanner.☆49Updated 7 months ago
- Make better use of the embedded browser that comes by default with Burp☆44Updated last year
- The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)☆109Updated last week
- This script implements the Proof of Concept attack from the Checkpoint research "NTLM Credentials Theft via PDF Files"☆27Updated 7 years ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆47Updated 2 years ago
- A Burp Suite extension for finding DNS vulnerabilities in web applications!☆95Updated last year
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆99Updated 2 years ago
- ☆74Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆55Updated 9 months ago
- Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.☆29Updated 3 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆78Updated last year
- A Proof-Of-Concept for the CVE-2023-43770 vulnerability.☆33Updated last year
- ☆38Updated 2 months ago
- ☆106Updated 2 years ago
- ☆68Updated 2 years ago
- Just some random small tools for dealing with asp.net Forms Authentication Cookies☆25Updated 4 years ago
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆43Updated 3 years ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆98Updated last year
- Enumerate AWS permissions and resources.☆70Updated 3 years ago
- Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)☆34Updated 4 months ago
- 「💥」CVE-2022-33891 - Apache Spark Command Injection☆26Updated 3 years ago