raesene / k8s_ssrf_portscanner

Related projects: ⓘ

• praetorian-inc / konstellation
  Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
  ☆19Updated last year
• raesene / CVE-2022-23648-POC
  POC for CVE-2022-23648
  ☆35Updated 2 years ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆30Updated last year
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆19Updated last month
• redrays-io / WS_RaceCondition_PoC
  Simple PoC for demonstrating Race Conditions on Websockets
  ☆49Updated last year
• doyensec / CVE-2022-39299_PoC_Generator
  A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…
  ☆17Updated last year
• SorceryIE / cfor_exploit
  Exploit script for the CFOR vulnerability using Github's GraphQL API
  ☆14Updated last month
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆63Updated 3 weeks ago
• ghostsecurity / waf-btk
  WAF bypass PoC
  ☆43Updated 11 months ago
• ethiack / CVE-2023-29007
  PoC repository for CVE-2023-29007
  ☆33Updated last year
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆38Updated 8 months ago
• carlospolop / Bruteforce-GCP-Permissions
  Use the GCP testIamPermissions functionality to bruteforce and discover your permissions
  ☆15Updated 2 weeks ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆38Updated 9 months ago
• ariary / HTTPCustomHouse
  HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets
  ☆34Updated last year
• juanschallibaum / CVE-2024-38473-Nuclei-Template
  Nuclei template to detect Apache servers vulnerable to CVE-2024-38473
  ☆22Updated 3 weeks ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆44Updated last year
• sensepost / steampipe-plugin-projectdiscovery
  A steampipe plugin to query projectdiscovery.io tools.
  ☆26Updated last month
• hupe1980 / awsrecon
  Tool for reconnaissance of AWS cloud environments
  ☆13Updated 11 months ago
• dsecuredcom / yataf
  yataf extracts secrets and paths from files or urls - its best used against javascript files
  ☆52Updated last week
• Betep0k / CVE-2021-25741
  Exploit for CVE-2021-25741 vulnerability
  ☆28Updated 2 years ago
• BishopFox / ysoserial-bf
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆19Updated 7 months ago
• carlospolop / Cloudtrail2IAM
  ☆15Updated last year
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆66Updated last year
• dwisiswant0 / cve-2023-50164-poc
  Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")
  ☆57Updated 9 months ago
• DevSecOpsDocs / terraform-nuclear-pond
  Backend for Nuclear Pond
  ☆21Updated 9 months ago
• wh-gov / CVE-2023-23415
  ☆39Updated this week
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆46Updated 2 months ago
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆49Updated last year
• mrrootsec / AssetViz
  AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…
  ☆29Updated 5 months ago
• absholi7ly / -CVE-2024-21683-RCE-in-Confluence-Data-Center-and-Server
  ☆14Updated this week