nccgroup / jwt-reauth
☆100Updated last year
Related projects: ⓘ
- Striping CDN IPs from a list of IP Addresses☆72Updated 2 years ago
- Execute Trickest workflows right from your terminal☆76Updated last month
- A Burp Suite extension for finding DNS vulnerabilities in web applications!☆92Updated last year
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆110Updated last year
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆72Updated last year
- This extension enhances Burp Suite by adding several UI and functional features, making it more user-friendly.☆63Updated 7 months ago
- ☆90Updated this week
- Mine URLs from Browser's Heap Snapshot for fun and profit☆63Updated last year
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆59Updated 2 weeks ago
- A command-line utility for performing reverse DNS lookups☆57Updated last year
- Burp Extension to add additional functionality for pentesting websocket based applications☆80Updated 3 months ago
- This could have been a bash one-liner but guess what. It's a small Go tool that lists the trending CVEs from cvetrends.com☆105Updated 2 years ago
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated 10 months ago
- ☆41Updated last year
- ☆52Updated 4 months ago
- ☆91Updated this week
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆78Updated 11 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆68Updated 8 months ago
- ☆27Updated last year
- ☆62Updated 4 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆118Updated 5 months ago
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆54Updated last year
- Hunt SSL Certificates for interesting keywords on major cloud service providers / internet☆32Updated 8 months ago
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆112Updated 2 years ago
- Repository of CVE found by OCD people☆67Updated 2 months ago
- ☆133Updated 4 months ago
- Repository to store exploits created by Assetnotes Security Research team☆175Updated 10 months ago
- A python3 script searching for secret on swaggerhub☆55Updated 2 years ago
- this script will help you find favicon hashes which you can use to shodan to get more details about an asset☆26Updated 7 months ago
- ElasticSearch exploit and Pentesting guide for penetration tester☆22Updated last year