raesene / k8s_ssrf_portscanner
☆31Updated last year
Related projects: ⓘ
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆19Updated last year
- POC for CVE-2022-23648☆35Updated 2 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆30Updated last year
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆19Updated last month
- Simple PoC for demonstrating Race Conditions on Websockets☆49Updated last year
- A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…☆17Updated last year
- Exploit script for the CFOR vulnerability using Github's GraphQL API☆14Updated last month
- Determine privileges from cloud credentials via brute-force testing.☆63Updated 3 weeks ago
- WAF bypass PoC☆43Updated 11 months ago
- PoC repository for CVE-2023-29007☆33Updated last year
- Make better use of the embedded browser that comes by default with Burp☆38Updated 8 months ago
- Use the GCP testIamPermissions functionality to bruteforce and discover your permissions☆15Updated 2 weeks ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆38Updated 9 months ago
- HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets☆34Updated last year
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆22Updated 3 weeks ago
- Blogpost series showcasing interesting cloud - web app security bugs☆44Updated last year
- A steampipe plugin to query projectdiscovery.io tools.☆26Updated last month
- Tool for reconnaissance of AWS cloud environments☆13Updated 11 months ago
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆52Updated last week
- Exploit for CVE-2021-25741 vulnerability☆28Updated 2 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆19Updated 7 months ago
- ☆15Updated last year
- Utility for creating ZipSlip archives☆66Updated last year
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Updated 9 months ago
- Backend for Nuclear Pond☆21Updated 9 months ago
- ☆39Updated this week
- A collection of utilities for building extensions using Burp's Montoya API☆46Updated 2 months ago
- An Evil OIDC Server☆49Updated last year
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆29Updated 5 months ago
- ☆14Updated this week