viperbluff / WAF_busterLinks
Disrupt WAF by abusing SSL/TLS Ciphers
☆48Updated 6 years ago
Alternatives and similar repositories for WAF_buster
Users that are interested in WAF_buster are comparing it to the libraries listed below
Sorting:
- Test CVE-2018-0296 and extract usernames☆106Updated 6 years ago
- WhiteBox CMS analysis☆69Updated 2 years ago
- WORK IN PROGRESS. Waits for MSF session then automatically gets domain admin☆64Updated 2 years ago
- Brute forcer and shell deployer for WildFly☆101Updated 7 years ago
- Tool for checking Whether a domain or its multiple sub-domains are up and running.☆72Updated 6 years ago
- ☆29Updated 7 years ago
- Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS☆81Updated 2 years ago
- Deploy payloads to *Nix systems en masse☆107Updated 5 years ago
- Scan for open S3 buckets and dump☆38Updated 7 years ago
- Burp extension to help developers replicate findings from pen tests☆70Updated last year
- Finally, reverse/bind shells written in python, encrypted with ssl!☆39Updated 5 years ago
- Automates credential skimming from service accounts in Windows Registry☆77Updated 5 years ago
- Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.☆44Updated 5 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 6 years ago
- Automate SSH communication with firewalls, switches, etc.☆26Updated 7 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆72Updated 5 years ago
- A PoC Java Stager which can download, compile, and execute a Java file in memory.☆108Updated 7 years ago
- Some scripts and exploits☆147Updated 7 years ago
- AV Bypass☆29Updated 7 years ago
- Post Exploitation agent which uses a browser to do C2 operations.☆102Updated 7 years ago
- Async'ly gather unique usernames thru null SMB sessions and bruteforce them with 2 passwords☆51Updated 7 years ago
- A weaponized version of CVE-2018-9206☆62Updated 6 years ago
- A collection of scripts used to interact with the Burp Rest API☆52Updated 6 years ago
- Listing subdomains about a main domain☆59Updated 7 years ago
- Domain fronting using Google app engine☆52Updated 7 years ago
- Just a silly recon tool that uses data from SSL Certificates to find potential host names☆30Updated 2 years ago
- Socks5 server over Websockets☆40Updated 6 years ago
- CVE-2017-10271 WEBLOGIC RCE (TESTED)☆39Updated 7 years ago
- The Outlook HTML Leak Test Project☆131Updated 7 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago