securelayer7 / not-a-vuln-listLinks
Top 2025 Vulnerabilities You Shouldn’t Accept in a Pentest Report
☆13Updated 6 months ago
Alternatives and similar repositories for not-a-vuln-list
Users that are interested in not-a-vuln-list are comparing it to the libraries listed below
Sorting:
- A python3 script searching for secret on swaggerhub☆68Updated 3 years ago
- My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the exam☆40Updated 2 years ago
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Updated 7 months ago
- Comprehensive AWS cloud reconnaissance and privilege escalation toolkit written in Python. Features IAM, EC2, S3, Lambda, ECS, Secrets Ma…☆43Updated last month
- ☆19Updated last year
- ☆27Updated 2 years ago
- Exploit for Symfony CVE-2024-50340 (forked eos)☆30Updated 9 months ago
- Simple PoC for demonstrating Race Conditions on Websockets☆55Updated last year
- Additional active scan checks for BURP☆28Updated 10 months ago
- SSLPinDetect is a tool for analyzing Android APKs to detect SSL pinning implementations by scanning for known patterns in decompiled code…☆26Updated 5 months ago
- "Terrible Thick Client" is a vulnerable application developed in C# .NET framework.☆20Updated 2 years ago
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated last year
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆125Updated last year
- Use the GCP testIamPermissions functionality to bruteforce and discover your permissions☆40Updated 2 months ago
- Tools used for Pentesting☆22Updated 2 years ago
- ☆31Updated 4 months ago
- ☆43Updated 3 months ago
- VulnSeer combines the power of Nmap's service detection with multiple AI providers to deliver intelligent vulnerability assessments. Unli…☆41Updated 2 months ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆51Updated last year
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆20Updated 7 months ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a target☆47Updated 2 years ago
- Make better use of the embedded browser that comes by default with Burp☆44Updated last year
- Enumerate AWS permissions and resources.☆70Updated 3 years ago
- Burp Suite Extension for inserting a magic byte into responder's request☆25Updated last year
- An Incredibly Annoying, Insufferable Authentication Implementation☆31Updated last year
- ☆14Updated 9 months ago
- ☆13Updated 2 years ago
- ☆28Updated 11 months ago
- ☆37Updated last month
- Advanced test for proxy & waf☆13Updated 11 months ago