Alternatives and similar repositories for ElasticSearch-Pentesting

Users that are interested in ElasticSearch-Pentesting are comparing it to the libraries listed below

• Liodeus / swaggerHole
  A python3 script searching for secret on swaggerhub
  ☆66Updated 3 years ago
• honoki / burp-digitalocean-openvpn-socks
  A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it
  ☆51Updated 3 months ago
• BishopFox / bigip-scanner
  Determine the running software version of a remote F5 BIG-IP management interface.
  ☆69Updated 2 years ago
• carlospolop / Pastos
  ☆60Updated 3 years ago
• H0j3n / EzpzSharepoint
  ☆27Updated 4 years ago
• kh4sh3i / exchange-penetration-testing
  The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)
  ☆129Updated 5 months ago
• The-Login / DNS-Analyzer
  A Burp Suite extension for finding DNS vulnerabilities in web applications!
  ☆92Updated 2 years ago
• spyx / ParamAngler
  ☆27Updated 2 years ago
• optionalCTF / SSOh-No
  User enumeration and password spraying tool for testing Azure AD
  ☆71Updated 3 years ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆49Updated last year
• carlospolop / Leakos
  ☆79Updated last week
• PortSwigger / ator
  ☆34Updated last year
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆103Updated 5 months ago
• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆48Updated 3 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆73Updated 3 years ago
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆126Updated last year
• cylentsec / nmapurls
  Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automat…
  ☆43Updated 7 months ago
• Macmod / goblob
  A fast enumeration tool for publicly exposed Azure Storage blobs.
  ☆116Updated 2 years ago
• s3cb0y / CVE-2023-43770-POC
  A Proof-Of-Concept for the CVE-2023-43770 vulnerability.
  ☆33Updated 2 years ago
• 0xAkashsky / sub-scout
  Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)
  ☆34Updated 2 weeks ago
• carlospolop / Gorks
  ☆67Updated 2 years ago
• praetorian-inc / NTLMRecon
  A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.
  ☆106Updated 2 years ago
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆71Updated 3 years ago
• PortSwigger / nuclei-burp-integration
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆31Updated 2 years ago
• unlock-security / sqlmapsh
  SQLMap wrapper that lets you use Interact.sh as a DNS server for exfiltrating data with zero configuration
  ☆45Updated 3 weeks ago
• PortSwigger / server-side-prototype-pollution
  ☆43Updated 2 years ago
• Mr-P-D / Favicon-Hash-For-Shodan.io
  this script will help you find favicon hashes which you can use to shodan to get more details about an asset
  ☆30Updated 10 months ago
• dwisiswant0 / cve-2023-50164-poc
  Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")
  ☆57Updated 2 years ago
• nccgroup / jwt-reauth
  ☆106Updated 3 years ago
• liquidsec / aspnetCryptTools
  Just some random small tools for dealing with asp.net Forms Authentication Cookies
  ☆30Updated 4 years ago