securebinary / o365sprayer
An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.
☆47Updated last year
Related projects: ⓘ
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- ☆26Updated last year
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆58Updated 8 months ago
- Arescan is a powerful web directory discovery tool that helps you uncover hidden directories and links on any website. By performing a br…☆29Updated last year
- Recon scripts for Red Team and Web blackbox auditing☆29Updated 7 months ago
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated last year
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆31Updated 9 months ago
- Red Teaming tools and techniques☆45Updated last year
- ☆18Updated last year
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆34Updated 8 months ago
- PassMute - A multi featured Password Transmutation/Mutator Tool☆50Updated last year
- ☆62Updated 4 months ago
- Tools used for Pentesting☆22Updated last year
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆64Updated 6 months ago
- ☆29Updated this week
- ☆61Updated last year
- 「💥」CVE-2022-33891 - Apache Spark Command Injection☆27Updated 2 years ago
- Web Hacking and Red Teaming MindMap☆66Updated last year
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆48Updated 2 years ago
- A curated list wordlists for bruteforcing and fuzzing☆79Updated last year
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆24Updated last year
- ☆41Updated last year
- Check out this JavaScript code that extracts URLs from a web page and linked scripts! Perfect for web scraping and penetration testing☆16Updated 2 months ago
- Azure Service Subdomain Enumeration☆39Updated 2 weeks ago
- A Proof-Of-Concept for the CVE-2023-43770 vulnerability.☆31Updated 11 months ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆34Updated last year
- ☆41Updated last year
- Repository with quick triggers to help during Pentest in an Active Directory environment.☆35Updated last month
- Script that performs a scan of a specific domain, using the following tools: Subfinder, assetfinder, amass and httpx. The result is merge…☆22Updated 2 years ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆52Updated 6 months ago