oppsec / pwnfaces

Related projects ⓘ

Alternatives and complementary repositories for pwnfaces

• oppsec / WSOB
  😭 WSOB is a python tool created to exploit the new vulnerability on WSO2 assigned as CVE-2022-29464.
  ☆27Updated last year
• ferreiraklet / wolfy
  Wolfy AV Bypasser
  ☆27Updated last year
• ferreiraklet / icmp_reverse_shell
  ☆43Updated last year
• mishmashclone / ManhNho-AWAE-OSWE
  https://github.com/ManhNho/AWAE-OSWE
  ☆11Updated 4 years ago
• nowak0x01 / WPXStrike
  WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…
  ☆60Updated 10 months ago
• brosck / Pingoor
  「🚪」Linux Backdoor based on ICMP protocol
  ☆60Updated 8 months ago
• beescuit / crosssiteshell
  A websocket-based reverse (javascript) shell for XSS attacks.
  ☆29Updated 2 years ago
• HernanRodriguez1 / ScanReflectedXSS
  ☆43Updated last year
• amirnsahmad / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆13Updated 2 years ago
• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆36Updated last year
• Nickguitar / YAPS
  Yet Another PHP Shell - The most complete PHP reverse shell
  ☆79Updated 2 years ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆68Updated 10 months ago
• optionalCTF / SSOh-No
  User enumeration and password spraying tool for testing Azure AD
  ☆68Updated 2 years ago
• c3l3si4n / quickcert
  A better way of querying certificate transparency logs
  ☆75Updated last year
• carlosevieira / CVE-2022-40684
  PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)
  ☆87Updated 2 years ago
• helviojunior / pyccat
  Colored Cat is a syntax highlighter file reader.
  ☆16Updated 5 months ago
• blacklanternsecurity / dp_cryptomg
  Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.
  ☆44Updated 3 months ago
• caioluders / LostAndFound
  ☆20Updated 7 months ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆67Updated 2 years ago
• Tris0n / CVE-2023-32571-POC
  ☆7Updated last year
• AmoloHT / CVE-2022-33891
  「💥」CVE-2022-33891 - Apache Spark Command Injection
  ☆27Updated 2 years ago
• c3l3si4n / robson
  Robson is a simple LKM rootkit that uses the Linux kernel's kprobes tracing feature as a hooking mechanism.
  ☆12Updated last year
• securebinary / o365sprayer
  An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.
  ☆47Updated 2 years ago
• HernanRodriguez1 / Bypass-AMSI
  ☆46Updated 2 years ago
• riramar / h2csmuggler-proxy
  This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.
  ☆37Updated 2 years ago
• rodolfomarianocy / Tricks-Pentest-Active-Directory
  Repository with quick triggers to help during Pentest in an Active Directory environment.
  ☆36Updated 3 weeks ago
• e1abrador / Crackmapexec-custom-modules
  Crackmapexec custom scripts used in my internal pentests.
  ☆25Updated last year
• liquidsec / aspnetCryptTools
  Just some random small tools for dealing with asp.net Forms Authentication Cookies
  ☆22Updated 3 years ago