p0dalirius / LFIDump
A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.
☆70Updated last year
Alternatives and similar repositories for LFIDump:
Users that are interested in LFIDump are comparing it to the libraries listed below
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆65Updated last year
- An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.☆48Updated 2 years ago
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆147Updated last month
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆87Updated last year
- The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)☆94Updated 9 months ago
- ☆34Updated 3 years ago
- Docker network containing many vulnerable targets for practicing Red Teaming concepts (initial access, priv esc, persistence, lateral, C2…☆84Updated last year
- Repository with quick triggers to help during Pentest in an Active Directory environment.☆44Updated 4 months ago
- HTTP verb tampering & methods enumeration☆56Updated 2 years ago
- Offensive Security OSWE Prep 2022☆74Updated 2 years ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆39Updated last year
- ☆68Updated last year
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 3 years ago
- This Repository contains my CRTP cum Red Teaming Active Directory attack and Defence preparation notes.☆41Updated last month
- ☆19Updated 11 months ago
- ☆26Updated 2 years ago
- ☆72Updated 10 months ago
- Red Teaming tools and techniques☆50Updated 2 years ago
- A Python based ingestor for BloodHound☆83Updated 2 years ago
- Azure Service Subdomain Enumeration☆56Updated 6 months ago
- Hydra wrapper for bruteforcing Microsoft Outlook Web Application.☆68Updated last year
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆64Updated 5 months ago
- By using its cutting edge technology (lolnope), you can now have a persistent multi reverse pty handler!☆89Updated 4 months ago
- ☆74Updated 8 months ago
- A Burp extension to help pentesters copy requests / responses for reports.☆38Updated 3 months ago
- Bad scripts I made doing CTF's☆21Updated last year
- ☆53Updated 2 years ago
- A curated list wordlists for bruteforcing and fuzzing☆82Updated last year
- User enumeration and password spraying tool for testing Azure AD☆69Updated 3 years ago