nullenc0de / CognitohunterLinks
A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter specializes in dissecting AWS Cognito implementations and performing advanced credential-to-session conversions.
☆20Updated 4 months ago
Alternatives and similar repositories for Cognitohunter
Users that are interested in Cognitohunter are comparing it to the libraries listed below
Sorting:
- ☆35Updated last month
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 2 months ago
- Make better use of the embedded browser that comes by default with Burp☆43Updated last year
- Bcheck scripts for Burp☆28Updated 9 months ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆71Updated 3 years ago
- BurpSuite extension to convert requests into bcheck scripts☆31Updated last year
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 9 months ago
- For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)☆50Updated 3 months ago
- Exploit for Symfony CVE-2024-50340 (forked eos)☆28Updated 6 months ago
- ☆63Updated 2 years ago
- ☆26Updated 2 years ago
- vīlicus is a bug bounty api dashboard☆40Updated last year
- Web cache poisoning vulnerability scanner.☆68Updated 3 years ago
- tool that generates bypasses for open redirects☆52Updated 3 years ago
- ElasticSearch exploit and Pentesting guide for penetration tester☆27Updated 2 years ago
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated last year
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆40Updated last year
- ☆18Updated 2 months ago
- My talks...☆24Updated 3 months ago
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆30Updated 2 years ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆44Updated 11 months ago
- Scripts that automate portions of pentests.☆50Updated last month
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆34Updated 6 months ago
- Scanner for Cross-Site WebSocket Hijacking☆42Updated 4 years ago
- ☆17Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆54Updated 7 months ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.☆55Updated last year
- Archived Please go to https://github.com/adamjsturge/xsshunter-go☆31Updated last year
- ☆27Updated 2 years ago