nullenc0de / CognitohunterLinks
A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter specializes in dissecting AWS Cognito implementations and performing advanced credential-to-session conversions.
☆20Updated 7 months ago
Alternatives and similar repositories for Cognitohunter
Users that are interested in Cognitohunter are comparing it to the libraries listed below
Sorting:
- Make better use of the embedded browser that comes by default with Burp☆44Updated last year
- ☆38Updated 2 months ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 11 months ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆55Updated 9 months ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 5 months ago
- Bcheck scripts for Burp☆29Updated last year
- Exploit for Symfony CVE-2024-50340 (forked eos)☆30Updated 9 months ago
- BurpSuite extension to convert requests into bcheck scripts☆33Updated 2 years ago
- ☆27Updated 2 years ago
- Token Tailor is a Burp Suite Community Edition extension that aims to simplify security testing by automating JWT renewal.☆32Updated 4 months ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆51Updated last year
- ☆141Updated last year
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆60Updated 2 years ago
- Simple PoC for demonstrating Race Conditions on Websockets☆55Updated last year
- A collection of utilities for building extensions using Burp's Montoya API☆52Updated last year
- Stay within program scope☆37Updated 3 years ago
- ☆63Updated 2 years ago
- ☆57Updated last year
- ☆26Updated 2 years ago
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated last year
- My talks...☆25Updated 5 months ago
- FireProx written in Go☆21Updated last year
- An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition☆28Updated 7 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆78Updated last year
- Web cache poisoning vulnerability scanner.☆71Updated 3 years ago
- ☆21Updated 3 months ago
- A set of open-source community scripts☆64Updated 10 months ago
- For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)☆54Updated 5 months ago
- Security Advisories☆34Updated last month