Alternatives and similar repositories for ElasticSearch-Pentesting

Users that are interested in ElasticSearch-Pentesting are comparing it to the libraries listed below

• Liodeus / swaggerHole
  A python3 script searching for secret on swaggerhub
  ☆66Updated 3 years ago
• carlospolop / Pastos
  ☆58Updated 3 years ago
• honoki / burp-digitalocean-openvpn-socks
  A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it
  ☆51Updated 2 months ago
• BishopFox / bigip-scanner
  Determine the running software version of a remote F5 BIG-IP management interface.
  ☆69Updated 2 years ago
• The-Login / DNS-Analyzer
  A Burp Suite extension for finding DNS vulnerabilities in web applications!
  ☆94Updated 2 years ago
• optionalCTF / SSOh-No
  User enumeration and password spraying tool for testing Azure AD
  ☆71Updated 3 years ago
• H0j3n / EzpzSharepoint
  ☆27Updated 4 years ago
• kh4sh3i / exchange-penetration-testing
  The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)
  ☆128Updated 5 months ago
• spyx / ParamAngler
  ☆27Updated 2 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆73Updated 3 years ago
• praetorian-inc / NTLMRecon
  A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.
  ☆105Updated 2 years ago
• carlospolop / Leakos
  ☆78Updated last month
• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆48Updated 3 years ago
• cylentsec / nmapurls
  Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automat…
  ☆43Updated 7 months ago
• ExAndroidDev / fakemeeting
  Creates and sends fake meeting invite
  ☆75Updated 4 years ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆49Updated last year
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆126Updated last year
• s3cb0y / CVE-2023-43770-POC
  A Proof-Of-Concept for the CVE-2023-43770 vulnerability.
  ☆33Updated 2 years ago
• Mr-P-D / Favicon-Hash-For-Shodan.io
  this script will help you find favicon hashes which you can use to shodan to get more details about an asset
  ☆29Updated 10 months ago
• cosad3s / hfinder
  Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
  ☆54Updated last year
• a6avind / spoofcheck
  Spoofcheck
  ☆46Updated 8 months ago
• Macmod / goblob
  A fast enumeration tool for publicly exposed Azure Storage blobs.
  ☆116Updated 2 years ago
• alperenugurlu / AD_Enumeration_Hunt
  ☆90Updated 2 years ago
• brutuspt / 0click_HTB
  This repository contains 0 click exploits to some HackTheBox machines, I used it to study for OSWE
  ☆41Updated last year
• edermi / gophish_mods
  Open-Source Phishing Toolkit
  ☆19Updated 4 years ago
• sorokinpf / sqli_blinder
  Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.
  ☆29Updated 3 years ago
• carlospolop / Gorks
  ☆67Updated 2 years ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆83Updated 2 years ago
• securebinary / o365sprayer
  An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.
  ☆48Updated 3 years ago
• nccgroup / jwt-reauth
  ☆106Updated 3 years ago