ticarpi / my-pentesting-repo
This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds the reminders useful, then enjoy! A few links for useful tools and files. Some tools written by me.
☆52Updated 5 years ago
Alternatives and similar repositories for my-pentesting-repo:
Users that are interested in my-pentesting-repo are comparing it to the libraries listed below
- learning case to prepare OSWE☆37Updated 5 years ago
- Simple wrapper for meg that sieves through meg's output for you.☆60Updated 5 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆60Updated 6 years ago
- Notes as I learn basic AWS penetration testing☆67Updated 5 years ago
- All-in-one AWS S3 bucket tool for pentesters.☆72Updated 6 years ago
- Kubernetes Scanner☆40Updated 3 years ago
- retrive metadata endpoint data with these one liners.☆38Updated 4 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 7 years ago
- Clickjacking PoC Generator☆35Updated 4 years ago
- A bash script that fetches and maintains thousands of DNS resolvers☆65Updated 4 years ago
- Extensive code infrastructure for finding unintended information leaks in files, git repositories and much more.☆28Updated 2 years ago
- Burp Commander written in Go☆58Updated 6 years ago
- Scripts and tools for AWS Pentest☆53Updated 4 years ago
- Practice Web App written in python with some vulnerabilities.☆34Updated 4 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆40Updated 6 years ago
- ☆18Updated 7 years ago
- OAuth Security Cheatsheet☆40Updated 10 years ago
- A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.☆38Updated 6 years ago
- Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.☆64Updated 6 years ago
- Tools used for Penetration testing / Red Teaming☆66Updated 6 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆46Updated 6 years ago
- A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status☆89Updated 4 years ago
- This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping☆48Updated 5 years ago
- A tool to evaluate Content Security Policies.☆71Updated 4 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- Updated 6 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆27Updated 6 years ago
- Tooling and commands for common red team and Infrastructure testing tasks☆42Updated 2 years ago