sdnv0x4d / rasoff
1C RAS Offensive Security Tool
☆24Updated last year
Alternatives and similar repositories for rasoff:
Users that are interested in rasoff are comparing it to the libraries listed below
- Burp suite extension to find sensitive information by checking incoming text OR binary websocket messages☆29Updated 2 weeks ago
- Some nuclei templates for pentest CMS Bitrix☆24Updated 7 months ago
- RSEScan is a command-line utility for interacting with the RSECloud. It allows you to fetch subdomains and IPs from certificates for a gi…☆16Updated 7 months ago
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆26Updated last year
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated last year
- Check bitrix vulnerabilities☆69Updated last year
- Azure Service Subdomain Enumeration☆47Updated 4 months ago
- Template Nuclei SSTI☆29Updated last year
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆32Updated last year
- exfiltration/infiltration toolkit☆43Updated 2 months ago
- Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automat…☆40Updated 11 months ago
- CVE-2024-28955 Exploitation PoC☆35Updated 6 months ago
- Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.☆27Updated 2 years ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Updated last year
- A python3 script searching for secret on swaggerhub☆60Updated 2 years ago
- Fast Path Traversal exploitation tool☆21Updated 9 months ago
- FireHawk: The Elite Firebase Security Testing Utility☆18Updated 8 months ago
- 🚀 CSRFShark - a utility for manipulating cross-site request forgery attacks☆30Updated last year
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆32Updated last year
- ☆56Updated last year
- ElasticSearch exploit and Pentesting guide for penetration tester☆24Updated 2 years ago
- Useful collection of scapy-scripts and more☆26Updated 7 months ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆43Updated 10 months ago
- WEB-Wordlist-Generator creates related wordlists after scanning your web applications.☆48Updated 8 months ago
- Auto exploitation tool for CVE-2024-24401.☆30Updated 4 months ago
- aiohttp LFI (CVE-2024-23334)☆24Updated 10 months ago
- A Proof-Of-Concept for the CVE-2023-43770 vulnerability.☆33Updated last year
- CVE-2023-7028☆59Updated last year
- ☆16Updated last year
- An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.☆47Updated 2 years ago