mhaskar / Bughound

Related projects: ⓘ

• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆74Updated 2 years ago
• bcoles / jira_scan
  A simple remote scanner for Atlassian Jira
  ☆117Updated last year
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆132Updated 3 years ago
• JetP1ane / Affinis
  Recurrent Neural Network SubDomain Discovery Tool
  ☆90Updated last year
• mandiant / heyserial
  Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, an…
  ☆136Updated last year
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆119Updated last year
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆119Updated last year
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆162Updated 3 years ago
• chanpu9 / OSWE
  Preparation for OSWE
  ☆39Updated 4 years ago
• BuffaloWill / burpsuite-project-file-parser
  A Burp Suite Extension for parsing Project Files from the CLI.
  ☆82Updated last year
• lazaars / SAP-Pentest
  ☆62Updated 5 years ago
• nccgroup / CollaboratorPlusPlus
  ☆145Updated 2 years ago
• ajinabraham / aws_security_tools
  Scripts and tools for AWS Pentest
  ☆51Updated 3 years ago
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆48Updated 2 years ago
• projectdiscovery / pd-actions
  ☆207Updated this week
• TROUBLE-1 / White-box-pentesting
  This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities
  ☆86Updated last year
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆175Updated 2 years ago
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆62Updated 3 years ago
• The-Login / DNS-Reset-Checker
  Tools to assess the DNS security of web applications
  ☆125Updated last year
• righettod / burp-piper-custom-scripts
  Custom scripts for the PIPER Burp extensions.
  ☆97Updated 11 months ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 3 years ago
• antonytuff / Red-Team-Notes
  OSCP guide and Red Team assessment Guide
  ☆33Updated 4 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆119Updated 2 years ago
• dariusztytko / vhosts-sieve
  Searching for virtual hosts among non-resolvable domains
  ☆86Updated 4 years ago
• righettod / log4shell-analysis
  Contains all my research and content produced regarding the log4shell vulnerability
  ☆32Updated 2 years ago
• Orange-Cyberdefense / versionshaker
  Find the remote website version based on a git repository
  ☆122Updated 3 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆62Updated 3 years ago
• emadshanab / Huge_DIR_wordlist
  ☆47Updated 3 years ago
• Rhynorater / reports
  ☆56Updated 2 months ago
• Rhynorater / Okta-Password-Sprayer
  This script is a multi-threaded Okta password sprayer.
  ☆66Updated 8 months ago