Alternatives and similar repositories for ElasticSearch-Pentesting

Users that are interested in ElasticSearch-Pentesting are comparing it to the libraries listed below

• Liodeus / swaggerHole
  A python3 script searching for secret on swaggerhub
  ☆66Updated 3 years ago
• BishopFox / bigip-scanner
  Determine the running software version of a remote F5 BIG-IP management interface.
  ☆69Updated last year
• H0j3n / EzpzSharepoint
  ☆27Updated 3 years ago
• optionalCTF / SSOh-No
  User enumeration and password spraying tool for testing Azure AD
  ☆69Updated 3 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆73Updated 3 years ago
• carlospolop / Pastos
  ☆56Updated 3 years ago
• honoki / burp-digitalocean-openvpn-socks
  A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it
  ☆51Updated last week
• kh4sh3i / exchange-penetration-testing
  The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)
  ☆117Updated 3 months ago
• Macmod / goblob
  A fast enumeration tool for publicly exposed Azure Storage blobs.
  ☆112Updated 2 years ago
• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆48Updated 2 years ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆49Updated 9 months ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆81Updated last year
• pimps / pdf-NTLMLeaker
  This script implements the Proof of Concept attack from the Checkpoint research "NTLM Credentials Theft via PDF Files"
  ☆27Updated 7 years ago
• The-Login / DNS-Analyzer
  A Burp Suite extension for finding DNS vulnerabilities in web applications!
  ☆94Updated 2 years ago
• aniqfakhrul / lazyParam
  A simple automation tool to detect lfi, rce and ssti vulnerability
  ☆56Updated 3 years ago
• cosad3s / hfinder
  Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
  ☆54Updated last year
• spyx / ParamAngler
  ☆27Updated 2 years ago
• carlospolop / Leakos
  ☆74Updated last year
• edermi / gophish_mods
  Open-Source Phishing Toolkit
  ☆19Updated 4 years ago
• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆62Updated 3 months ago
• brutuspt / 0click_HTB
  This repository contains 0 click exploits to some HackTheBox machines, I used it to study for OSWE
  ☆41Updated last year
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆125Updated last year
• yuyudhn / AzSubEnum
  Azure Service Subdomain Enumeration
  ☆67Updated last year
• alperenugurlu / AD_Enumeration_Hunt
  ☆91Updated 2 years ago
• sdcampbell / nmapurls
  Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automat…
  ☆42Updated 4 months ago
• PortSwigger / nuclei-burp-integration
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆30Updated 2 years ago
• websecnl / MagicByteSelector
  Burp Suite Extension for inserting a magic byte into responder's request
  ☆24Updated 2 years ago
• carlospolop / Gorks
  ☆66Updated 2 years ago
• sorokinpf / sqli_blinder
  Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.
  ☆29Updated 3 years ago
• PenTestical / CVE-2020-9484
  ☆34Updated 3 years ago