nccgroup / raccoon
Salesforce object access auditor
☆112Updated 2 years ago
Alternatives and similar repositories for raccoon:
Users that are interested in raccoon are comparing it to the libraries listed below
- ☆90Updated 3 years ago
- ☆110Updated last year
- Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, an…☆142Updated last year
- ☆57Updated last year
- This script is a multi-threaded Okta password sprayer.☆70Updated last year
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆76Updated 3 years ago
- An Evil OIDC Server☆53Updated 2 years ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- ☆137Updated 2 years ago
- Manual JavaScript Linting is a Bug☆49Updated 4 years ago
- Custom scripts for the PIPER Burp extensions.☆98Updated last year
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆104Updated 2 months ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Updated 3 years ago
- Salesforce Policy Deviation Checker☆30Updated 4 years ago
- AWS Security Checks☆39Updated 7 years ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 3 years ago
- Monitoring GitHub for sensitive data shared publicly☆66Updated 3 years ago
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).☆122Updated 2 years ago
- Find orphaned IP's on cloud services☆29Updated 5 years ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆40Updated last year
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆23Updated 9 months ago
- ☆126Updated 9 months ago
- Dependency Combobulator☆93Updated last year
- Burp with Friends☆103Updated 2 years ago
- Slackhound allows red and blue teams to perform fast reconnaissance on Slack workspaces/organizations to quickly search user profiles, lo…☆80Updated last year
- The Outlook HTML Leak Test Project☆41Updated 6 years ago
- Research on the enumeration of IAM permissions without logging to CloudTrail☆61Updated 3 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 5 years ago
- Application and Service Fingerprinting☆133Updated 2 years ago
- ☆148Updated 3 years ago