qkaiser / cottontail

Related projects: ⓘ

• Hypnoze57 / FShell
  My python3 implementation of a Forward Shell
  ☆35Updated 5 years ago
• twelvesec / JDSer-DComp
  A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.
  ☆24Updated 5 years ago
• icryo / RFCpwn
  An enumeration and exploitation toolkit using RFC calls to SAP
  ☆36Updated 4 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆35Updated last year
• m4ll0k / AWSGen.py
  ☆34Updated this week
• fashionproof / UglyEXe
  UglyEXe - bypass some AVs
  ☆16Updated 4 years ago
• DimopoulosElias / SEPM-EoP
  CVE-2018-18368 SEP Manager EoP Exploit
  ☆17Updated 4 years ago
• Static-Flow / goRecorder
  During pentesting I often miss screenshots of events for reports due to the quick pace of testing and a lack of foreknowledge about what …
  ☆25Updated 5 years ago
• sahadnk72 / jecretz
  Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets
  ☆41Updated last year
• mgeeky / burpContextAwareFuzzer
  BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…
  ☆38Updated 3 years ago
• GoSecure / burp-ntlm-challenge-decoder
  Burp extension to decode NTLM SSP headers and extract domain/host information
  ☆31Updated 3 years ago
• wunderwuzzi23 / scratch
  Repo with random useful scripts and utilities
  ☆15Updated 2 months ago
• vay3t / scan-htb
  automatic scan for hackthebox
  ☆14Updated 4 years ago
• s0lst1c3 / awae
  ☆16Updated 7 years ago
• mubix / lmo
  LetMeOutOfYour.net Resources
  ☆19Updated 4 years ago
• AdrianCitu / burp-tabnabbing-extension
  Burp Suite Professional extension in Java for Tabnabbing attack
  ☆13Updated 6 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆41Updated 2 years ago
• hoodoer / WP-XSS-Admin-Funcs
  JavaScript functions intended to be used as an XSS payload against a WordPress admin account.
  ☆50Updated 3 years ago
• alfarom256 / ExternalC2Go
  ☆15Updated 4 years ago
• pry0cc / Doh365
  ☆53Updated this week
• Leoid / Encoder
  Alphanumeric Encoder
  ☆25Updated 5 years ago
• MohitDabas / sastgriper
  A simple grep user interface for searching code which can be used for SAST.
  ☆8Updated 5 years ago
• nathunandwani / ctp-osce
  Tools that I've created/used during CTP-OSCE
  ☆11Updated 5 years ago
• xenoscr / SessionHound
  A pair of scripts to import session and local group information that has been collected from alternate data sources into BloodHound's Neo…
  ☆19Updated 2 years ago
• sourcefrenchy / certexfil
  Exfiltration based on custom X509 certificates
  ☆25Updated 6 months ago
• rvrsh3ll / FlaskRedirectorProtector
  Protect your servers with a secret header
  ☆28Updated 4 years ago
• rasta-mouse / GPO-Abuse
  ☆18Updated this week
• ShadowHatesYou / whori.sh
  Zone transfers for rwhois
  ☆20Updated 5 years ago
• rvrsh3ll / HashCant
  Some Hashcat Rules for 2020 and beyond. Contributions encouraged!
  ☆24Updated 2 years ago
• hvqzao / java-deserialize-webapp
  Vulnerable webapp testbed
  ☆20Updated 8 years ago