Alternatives and similar repositories for gh-hijack-runner:

Users that are interested in gh-hijack-runner are comparing it to the libraries listed below

• synacktiv / DepFuzzer
  ☆60Updated 3 months ago
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆26Updated 5 months ago
• NodyHub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆47Updated 6 months ago
• intrudir / burpcollaborator-docker
  A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…
  ☆29Updated 2 months ago
• hac01 / gcp-iam-brute
  ☆45Updated 9 months ago
• tenable / hidden-services-revealer
  ☆33Updated 7 months ago
• SirAppSec / bsides-shadow-api
  This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me
  ☆18Updated 7 months ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆40Updated last year
• emptynebuli / dauthi
  dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…
  ☆41Updated 11 months ago
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆53Updated 2 years ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆22Updated 3 weeks ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆30Updated 3 weeks ago
• pentagridsec / archive_pwn
  A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes
  ☆43Updated last year
• BuffaloWill / whoiswatcher
  Do bulk whois lookups and get alerted on domains of interest.
  ☆33Updated 7 months ago
• RichardoC / gitlab-secrets
  This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…
  ☆46Updated 7 months ago
• carlospolop / Bruteforce-GCP-Permissions
  Use the GCP testIamPermissions functionality to bruteforce and discover your permissions
  ☆29Updated 6 months ago
• carlospolop / aws_iam_review
  ☆35Updated this week
• simondotsh / nsec2023-ctf-aws
  ☆13Updated last year
• AdnaneKhan / Cacheract
  GitHub Actions Cache Native Malware - for Educational and Research Purposes only.
  ☆59Updated 3 weeks ago
• synacktiv / captaincredz
  CaptainCredz is a modular and discreet password-spraying tool.
  ☆102Updated last month
• mosesrenegade / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆57Updated last year
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 2 years ago
• nullenc0de / Cognitohunter
  A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…
  ☆20Updated 2 months ago
• nyxgeek / cloudkicker
  self-hosted Azure OSINT tool
  ☆29Updated 6 months ago
• astar-security / Lestat
  Check robustness of your (their) Active Directory accounts passwords
  ☆34Updated 3 weeks ago
• GangGreenTemperTatum / DOMspy
  A web security research tool for DOM testing
  ☆19Updated last week
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆47Updated last year
• nccgroup / cowcloud
  ☆58Updated last year
• SecurityRiskAdvisors / letItGo
  Enumerate and check domains for Azure tenants
  ☆56Updated 3 years ago
• MythicAgents / arachne
  Webshell agent in aspx and php
  ☆20Updated 2 weeks ago