redrays-io / SAP-Penetration-Testing
SAP Penetration Testing: A Comprehensive Analysis of SAP Security Issues
☆36Updated 11 months ago
Related projects ⓘ
Alternatives and complementary repositories for SAP-Penetration-Testing
- The SAP Threat Modeling Tool is an on-premises open-source web application designed to analyze and visualize connections between SAP syst…☆47Updated 6 months ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆35Updated 10 months ago
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated last year
- ☆16Updated last year
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆28Updated 3 months ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆52Updated 2 weeks ago
- Burp Suite Extension for inserting a magic byte into responder's request☆21Updated last year
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆30Updated 10 months ago
- ☆15Updated 6 months ago
- Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automat…☆37Updated 8 months ago
- RSEScan is a command-line utility for interacting with the RSECloud. It allows you to fetch subdomains and IPs from certificates for a gi…☆15Updated 5 months ago
- ☆27Updated last year
- Tools used for Pentesting☆22Updated last year
- Tool for analyzing SAP Secure Network Communications (SNC).☆50Updated 6 months ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆34Updated this week
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆35Updated last year
- Azure Service Subdomain Enumeration☆42Updated 2 months ago
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization data…☆57Updated 2 months ago
- dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…☆36Updated 6 months ago
- A Proof-Of-Concept for the CVE-2023-43770 vulnerability.☆32Updated last year
- Check subdomains for subdomain takeovers and other DNS tomfoolery☆99Updated this week
- Mass Exploit - CVE-2024-29824 - Ivanti EPM - Remote Code Execution (RCE)☆28Updated 3 months ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆46Updated 8 months ago
- A National Vulnerability Database (NVD) API query tool☆17Updated last year
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆26Updated 10 months ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆22Updated 2 weeks ago
- Check for CVE-2024-22024 vulnerability in Ivanti Connect Secure☆29Updated 9 months ago
- List of MurmurHash3 favicon hashes of widely used technologies by vendor to search with Shodan.☆20Updated 6 months ago
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆43Updated 8 months ago
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated last year