kh4sh3i / ElasticSearch-Pentesting
ElasticSearch exploit and Pentesting guide for penetration tester
☆22Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for ElasticSearch-Pentesting
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆67Updated 2 years ago
- Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)☆35Updated last year
- ☆27Updated last year
- Simple Python script to sort nuclei scans by severity and URL☆29Updated last year
- Bcheck scripts for Burp☆23Updated 3 months ago
- Just some random small tools for dealing with asp.net Forms Authentication Cookies☆22Updated 3 years ago
- Make better use of the embedded browser that comes by default with Burp☆39Updated 10 months ago
- Open-Source Phishing Toolkit☆17Updated 3 years ago
- A "Spring4Shell" vulnerability scanner.☆50Updated 2 years ago
- A security assessment tool for Hitachi Vantara's Pentaho Business Analytics platform.☆14Updated 3 years ago
- Automated HTTP Request Repeating With Burp Suite☆34Updated last year
- Hunt SSL Certificates for interesting keywords on major cloud service providers / internet☆33Updated 10 months ago
- 🚀 Sling Shot R3con: Automate Your Bug Bounty and Pentest Reconnaissance with Project Discovery tools 🎯☆24Updated last year
- ☆26Updated 2 years ago
- HTTP requests of FrontPage expolit☆24Updated 10 years ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆38Updated 2 years ago
- Web cache poisoning vulnerability scanner.☆61Updated 2 years ago
- Enumerate AWS cloud resources based on provided credential☆50Updated 2 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆48Updated 2 years ago
- User enumeration and password spraying tool for testing Azure AD☆68Updated 2 years ago
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆36Updated 2 years ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆28Updated 2 years ago
- ☆17Updated 2 years ago
- ☆23Updated last year
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆58Updated 10 months ago
- My talks...☆23Updated last month
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆46Updated 8 months ago
- Use the GCP testIamPermissions functionality to bruteforce and discover your permissions☆20Updated last month
- Atlassian Confluence CVE-2021-26084 one-liner mass checker☆30Updated 3 years ago