nullr3x / ExpoFireLinks
A simple python script to exploit vulnerable Firebase Database. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.
☆22Updated last year
Alternatives and similar repositories for ExpoFire
Users that are interested in ExpoFire are comparing it to the libraries listed below
Sorting:
- Highly configurable script for dictionary/spray attacks against online web applications.☆53Updated 2 years ago
- Reflected Cross-Site Scripting (XSS) vulnerability in 'index.php' login-portal webpage of SourceCodesters Tailor Management System v1.0 a…☆25Updated 4 years ago
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 4 years ago
- This is a python script that exploits wget when being set with a SUID bit, and overwrites the root password.☆40Updated last year
- Modular framework to exploit UPS devices☆63Updated 2 years ago
- RDPloit - A Simple Security Vulnerabilities Checker For Remote Desktop Protocol☆36Updated 4 years ago
- Just another vulnerable web application.☆36Updated last year
- Ruby script to automate metasploit scanning, exploitation, and post-exploitation☆19Updated 5 years ago
- Small python script to look for common vulnerabilities on SMTP server.☆47Updated last year
- Fast DNS history enumeration tool for network and OSINT investigations☆18Updated 4 years ago
- Experimental tool for Windows. PentestBro combines subdomain scans, whois, port scanning, banner grabbing and web enumeration into one to…☆60Updated 4 years ago
- Pivot your way deeper into computer networks with SSH compromised machines.☆64Updated 2 years ago
- A python approach to interacting with web shells.☆31Updated 4 years ago
- Super organized and flexible script for sending phishing campaigns☆55Updated 3 years ago
- A powerful reverse shell generator☆44Updated 3 years ago
- Tool to transfer credential files from Firefox to your local machine to decrypt offline.☆23Updated 3 years ago
- Easily-guessable Password Generator for Password Spray Attack☆21Updated 5 years ago
- Burp suite Certificate modification tool☆18Updated 2 years ago
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆10Updated 9 years ago
- DNS Misconfiguration : S0x4 - Same Site Scripting Scanner☆16Updated 4 years ago
- Sp00fer blog post -☆26Updated 3 years ago
- OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.☆26Updated 2 years ago
- Docker-based platform for conducting MiTM attacks using Responder, NTLMRelayX, and Empire☆18Updated 4 months ago
- Operating System testbed created with Terraform to test payloads, programs and compatibility on different OS versions. Supports AWS and A…☆19Updated last year
- Tool to generate csrf payloads based on vulnerable requests☆64Updated 4 years ago
- Simple API for storing all incoming XSS requests and various XSS templates.☆47Updated last year
- ☆16Updated 3 years ago
- Exfiltrate data with DNS queries. Based on CertUtil and NSLookup.☆22Updated last year
- S3 bucket enumerator☆30Updated 6 years ago
- Extract credentials from lsass remotely☆16Updated 5 years ago