ticarpi / my-pentesting-repo
This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds the reminders useful, then enjoy! A few links for useful tools and files. Some tools written by me.
☆52Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for my-pentesting-repo
- Notes as I learn basic AWS penetration testing☆68Updated 5 years ago
- Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.☆63Updated 5 years ago
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆60Updated 5 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated last year
- learning case to prepare OSWE☆38Updated 5 years ago
- A bash script that fetches and maintains thousands of DNS resolvers☆65Updated 4 years ago
- Kubernetes Scanner☆41Updated 2 years ago
- retrive metadata endpoint data with these one liners.☆37Updated 4 years ago
- Simple Server Side Request Forgery services enumeration tool.☆54Updated 6 years ago
- Repo of useful scripts☆104Updated 4 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- Clickjacking PoC Generator☆35Updated 4 years ago
- Burp Suite extension to track vulnerability assessment progress☆59Updated 4 years ago
- Fetch known urls from AlienVault's Open Threat Exchange for given hosts☆59Updated 5 years ago
- This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping☆46Updated 4 years ago
- Slide Decks and Supporting Content of talks given for Bugcrowd☆16Updated 4 years ago
- Proof-of-concept CORS exploitation tool.☆34Updated 5 years ago
- This script is intended to automate your reconnaissance process in an organized fashion☆38Updated 5 years ago
- VyAPI - A cloud based vulnerable hybrid Android App☆84Updated 4 years ago
- ☆43Updated 4 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆46Updated 5 years ago
- All-in-one AWS S3 bucket tool for pentesters.☆70Updated 5 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆26Updated 5 years ago
- Scripts and tools for AWS Pentest☆51Updated 4 years ago
- Endpoint for Out-of-Band Exfiltration (DNS & HTTP)☆90Updated 6 years ago
- Scripts to extract files from SCM directories left on web servers☆34Updated last year
- A dockerized, improved version of the Impacket smbserver.py☆39Updated 5 years ago
- Simple wrapper for meg that sieves through meg's output for you.☆59Updated 5 years ago