Alternatives and similar repositories for ElasticSearch-Pentesting

Users that are interested in ElasticSearch-Pentesting are comparing it to the libraries listed below

• Liodeus / swaggerHole
  A python3 script searching for secret on swaggerhub
  ☆68Updated 3 years ago
• honoki / burp-digitalocean-openvpn-socks
  A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it
  ☆51Updated last year
• optionalCTF / SSOh-No
  User enumeration and password spraying tool for testing Azure AD
  ☆70Updated 3 years ago
• carlospolop / Pastos
  ☆56Updated 2 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆72Updated 3 years ago
• edermi / gophish_mods
  Open-Source Phishing Toolkit
  ☆19Updated 4 years ago
• BishopFox / bigip-scanner
  Determine the running software version of a remote F5 BIG-IP management interface.
  ☆67Updated last year
• spyx / ParamAngler
  ☆27Updated 2 years ago
• H0j3n / EzpzSharepoint
  ☆26Updated 3 years ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆49Updated 7 months ago
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆44Updated last year
• kh4sh3i / exchange-penetration-testing
  The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)
  ☆109Updated last week
• pimps / pdf-NTLMLeaker
  This script implements the Proof of Concept attack from the Checkpoint research "NTLM Credentials Theft via PDF Files"
  ☆27Updated 7 years ago
• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆47Updated 2 years ago
• The-Login / DNS-Analyzer
  A Burp Suite extension for finding DNS vulnerabilities in web applications!
  ☆95Updated last year
• Macmod / goblob
  A fast enumeration tool for publicly exposed Azure Storage blobs.
  ☆99Updated 2 years ago
• carlospolop / Leakos
  ☆74Updated last year
• cosad3s / hfinder
  Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
  ☆55Updated 9 months ago
• sorokinpf / sqli_blinder
  Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.
  ☆29Updated 3 years ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆78Updated last year
• s3cb0y / CVE-2023-43770-POC
  A Proof-Of-Concept for the CVE-2023-43770 vulnerability.
  ☆33Updated last year
• hackvertor / shadow-repeater
  ☆38Updated 2 months ago
• nccgroup / jwt-reauth
  ☆106Updated 2 years ago
• carlospolop / Gorks
  ☆68Updated 2 years ago
• liquidsec / aspnetCryptTools
  Just some random small tools for dealing with asp.net Forms Authentication Cookies
  ☆25Updated 4 years ago
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆43Updated 3 years ago
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆98Updated last year
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆70Updated 3 years ago
• 0xAkashsky / sub-scout
  Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)
  ☆34Updated 4 months ago
• AmoloHT / CVE-2022-33891
  「💥」CVE-2022-33891 - Apache Spark Command Injection
  ☆26Updated 3 years ago