securelayer7 / not-a-vuln-listLinks
Top 2025 Vulnerabilities You Shouldn’t Accept in a Pentest Report
☆13Updated 7 months ago
Alternatives and similar repositories for not-a-vuln-list
Users that are interested in not-a-vuln-list are comparing it to the libraries listed below
Sorting:
- Simple PoC for demonstrating Race Conditions on Websockets☆55Updated 2 years ago
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Updated 8 months ago
- Comprehensive AWS cloud reconnaissance and privilege escalation toolkit written in Python. Features IAM, EC2, S3, Lambda, ECS, Secrets Ma…☆43Updated 2 months ago
- A python3 script searching for secret on swaggerhub☆68Updated 3 years ago
- ☆27Updated 2 years ago
- Enumerate AWS permissions and resources.☆70Updated 3 years ago
- ☆19Updated 2 years ago
- ☠️ Code for the Defcon Workshop☆23Updated last year
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆40Updated 3 years ago
- External Playbooks for Public Access☆39Updated 8 months ago
- Exploit for Symfony CVE-2024-50340 (forked eos)☆29Updated 10 months ago
- A tool for quickly evaluating IAM permissions in AWS.☆58Updated last year
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆125Updated last year
- Additional active scan checks for BURP☆28Updated last year
- TruffleHog Explorer, a user-friendly web-based tool to visualize and analyze data extracted using TruffleHog.☆46Updated 8 months ago
- A steampipe plugin to query projectdiscovery.io tools.☆27Updated last year
- ☆47Updated 8 months ago
- ☆19Updated 9 months ago
- Public repo of Nuclei scanner templates.☆19Updated 2 years ago
- ☆43Updated 5 months ago
- My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the exam☆40Updated 2 years ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆21Updated 8 months ago
- ☆55Updated last year
- gRPC / gRPC-Web Pentest Practicing Lab☆11Updated 2 years ago
- Advanced test for proxy & waf☆13Updated 3 weeks ago
- "Terrible Thick Client" is a vulnerable application developed in C# .NET framework.☆20Updated 2 years ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆48Updated last year
- Make better use of the embedded browser that comes by default with Burp☆45Updated last year
- A Bug Bounty Platform that allows hunters to issue commands over a geo-distributed cluster. The ideal user is someone who is attempting t…☆47Updated 11 months ago
- Burp Suite Extension for inserting a magic byte into responder's request☆25Updated 2 years ago