riyazwalikar / injection-attacks-nosql-talkLinks
Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019
☆23Updated 6 years ago
Alternatives and similar repositories for injection-attacks-nosql-talk
Users that are interested in injection-attacks-nosql-talk are comparing it to the libraries listed below
Sorting:
- A Burp Suite content discovery plugin that add the smart into the Buster!☆32Updated 7 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆25Updated 8 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆47Updated 6 years ago
- A collection of scripts used to interact with the Burp Rest API☆55Updated 6 years ago
- Collection of different exploitation scenarios of JWT.☆21Updated 4 years ago
- A Pythonic wrapper to MassDNS☆24Updated 7 years ago
- ☆21Updated 6 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆23Updated 8 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 7 years ago
- PHP tool to test XSS☆22Updated 6 years ago
- ☆38Updated 5 years ago
- The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…☆13Updated 7 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆26Updated 7 years ago
- Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)☆25Updated 6 years ago
- Notes as I learn basic AWS penetration testing☆67Updated 6 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆41Updated 7 years ago
- Scripts for OSCE☆18Updated 7 years ago
- The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…☆15Updated 7 years ago
- BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…☆60Updated 8 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆34Updated 7 years ago
- Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them☆36Updated 7 years ago
- This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…☆52Updated 5 years ago
- Burp extension to decode NTLM SSP headers and extract domain/host information☆31Updated 4 years ago
- Burp extension to find and decode BigIP and Netscaler cookies☆15Updated 7 years ago
- A tool that can help detect and takeover subdomains with dead DNS records☆12Updated 7 years ago
- Burp Suite Professional extension in Java for Tabnabbing attack☆13Updated 7 years ago
- A number of scripts POC's and problems solved as pentests move along.☆44Updated last year
- a parser + crawler for .DS_Store files exposed publically☆56Updated 2 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆72Updated 5 years ago