pentagridsec / archive_pwn

Related projects: ⓘ

• redrays-io / WS_RaceCondition_PoC
  Simple PoC for demonstrating Race Conditions on Websockets
  ☆49Updated last year
• emptynebuli / dauthi
  dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…
  ☆34Updated 4 months ago
• carlospolop / Bruteforce-GCP-Permissions
  Use the GCP testIamPermissions functionality to bruteforce and discover your permissions
  ☆15Updated 2 weeks ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆19Updated last month
• mr-pmillz / gofireprox
  FireProx written in Go
  ☆17Updated 5 months ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆37Updated 2 years ago
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆49Updated last year
• nettitude / yasha
  ☆18Updated 6 months ago
• elmasy-com / columbus-server
  ☆28Updated last year
• astar-security / Lestat
  Check robustness of your (their) Active Directory accounts passwords
  ☆32Updated 6 months ago
• AdnaneKhan / ActionsTOCTOU
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆20Updated 2 months ago
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆46Updated 2 months ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆30Updated last year
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆46Updated last year
• usdAG / sncscan
  Tool for analyzing SAP Secure Network Communications (SNC).
  ☆49Updated 5 months ago
• oldboy21 / RSMBI
  ☆20Updated this week
• ar0x4 / ysoserial.net-docker
  ysoserial.net docker image
  ☆27Updated 7 months ago
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆62Updated 2 years ago
• optiv / nvdsearch
  A National Vulnerability Database (NVD) API query tool
  ☆17Updated last year
• Syslifters / split-bloodhound
  ☆17Updated last year
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆39Updated 2 years ago
• leesoh / np
  A tool to parse, deduplicate, and query multiple port scans.
  ☆57Updated last year
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆30Updated last year
• trickest / containers
  Automated privilege escalation of the world's most popular Docker images.
  ☆62Updated 11 months ago
• synacktiv / CacheData_decrypt
  A simple Toolkit to BF and decrypt Windows EntraId CacheData
  ☆12Updated 2 months ago
• dhn / spk
  spk aka spritzgebaeck: A small OSINT/Recon tool to find CIDRs that belong to a specific organization.
  ☆79Updated 4 months ago
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆22Updated last year
• elttam / rsu-cracker
  ☆31Updated last year
• akabe1 / akabe1-semgrep-rules
  My collection of Semgrep rules for vulnerability detection on source code (swift, java)
  ☆30Updated 6 months ago
• joohoi / ffuf-workshop
  ☆10Updated 2 years ago