sdcampbell / nmapurls
Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automation pipeline.
☆39Updated last year
Alternatives and similar repositories for nmapurls:
Users that are interested in nmapurls are comparing it to the libraries listed below
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆55Updated last year
- A Moodle Scanner☆39Updated 4 months ago
- Check for CVE-2024-22024 vulnerability in Ivanti Connect Secure☆30Updated last year
- Enumerate valid users within Microsoft Teams and OneDrive with clean output.☆58Updated last month
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆40Updated 9 months ago
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆55Updated 3 months ago
- Dump Kerberos tickets from the KCM database of SSSD☆50Updated 6 months ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆84Updated last year
- Source code and examples for PassiveAggression☆55Updated 9 months ago
- Duplicate not owned Token from Running Process☆72Updated last year
- Proof of Concept Exploit for CVE-2024-9465☆29Updated 5 months ago
- Burp Suite Extension for inserting a magic byte into responder's request☆23Updated last year
- Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3☆22Updated 7 months ago
- Tool to aid in dumping LSASS process remotely☆38Updated 7 months ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆23Updated last month
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated last year
- ☆48Updated 2 years ago
- exfiltration/infiltration toolkit☆23Updated last year
- Exploit for Symfony CVE-2024-50340 (forked eos)☆28Updated 4 months ago
- ☆54Updated 4 months ago
- ☆11Updated 8 months ago
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Updated last year
- Cobalt Strike BOFS☆15Updated last year
- Tool to perform GCP Domain Wide Delegation abuse and access Gmail and Drive data☆44Updated last year
- CVE-2023-34362: MOVEit Transfer Unauthenticated RCE☆63Updated last year
- Azure Service Subdomain Enumeration☆56Updated 6 months ago
- Dump Windows SAM hashes☆41Updated last year
- ☆27Updated 2 years ago
- Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.☆37Updated last year
- Secretsdump C# version only supporting local (live) operation☆49Updated last year