A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering
☆210Nov 29, 2020Updated 5 years ago
Alternatives and similar repositories for procrustes
Users that are interested in procrustes are comparing it to the libraries listed below
Sorting:
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆37Dec 2, 2020Updated 5 years ago
- Python library and client for token manipulations and impersonations for privilege escalation on Windows☆125Nov 14, 2022Updated 3 years ago
- Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin☆45Mar 13, 2023Updated 2 years ago
- Read Excel Spreadsheets (XLS/XLSX) using Cobalt Strike's Execute-Assembly☆90Sep 30, 2024Updated last year
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆356Oct 14, 2020Updated 5 years ago
- Fast Endpoint Scanner☆55Dec 23, 2020Updated 5 years ago
- A robust tunelling solution written in golang☆274May 17, 2023Updated 2 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Sep 14, 2021Updated 4 years ago
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).☆123Apr 14, 2023Updated 2 years ago
- Various Payload wordlists☆240Apr 26, 2025Updated 10 months ago
- 4xxbypass☆66Mar 29, 2021Updated 4 years ago
- .NET Project for Attacking vCenter☆553Nov 11, 2021Updated 4 years ago
- Divide full port scan results and use it for targeted Nmap runs☆329Jul 1, 2024Updated last year
- Simple python script to check against hypothetical JWT vulnerability.☆51Nov 29, 2020Updated 5 years ago
- Hide your payload in DNS☆614May 3, 2023Updated 2 years ago
- ☆10Oct 30, 2019Updated 6 years ago
- Swiss army knife Webserver in Golang. Keep simple like the python SimpleHTTPServer but with many features☆199Mar 27, 2025Updated 11 months ago
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆134Jan 31, 2022Updated 4 years ago
- ☆284Nov 12, 2021Updated 4 years ago
- Bucky (An automatic S3 bucket discovery tool)☆198Jan 6, 2022Updated 4 years ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Jan 18, 2022Updated 4 years ago
- Cisco Unfied Call Manager enumeration☆24Jul 13, 2022Updated 3 years ago
- ☆31Apr 6, 2021Updated 4 years ago
- Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.☆277Jan 28, 2025Updated last year
- ☆89Feb 11, 2022Updated 4 years ago
- FestIn - Open S3 Bucket Scanner☆230Dec 4, 2020Updated 5 years ago
- A simple SSRF-testing sheriff written in Go☆336Oct 31, 2024Updated last year
- A wrapper around jq, to help you parse jq output!☆30Aug 23, 2020Updated 5 years ago
- ☆360Apr 24, 2021Updated 4 years ago
- Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/☆1,783Jan 6, 2023Updated 3 years ago
- Simple CLI tool for the generation of bind and reverse shells in multiple languages☆388Feb 27, 2026Updated last week
- Tool for assessing on-premises Microsoft servers authentication such as ADFS, Skype, Exchange, and RDWeb☆148Dec 3, 2020Updated 5 years ago
- OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team…☆819Oct 27, 2023Updated 2 years ago
- RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…☆109Oct 10, 2020Updated 5 years ago
- wsb-detect enables you to detect if you are running in Windows Sandbox ("WSB")☆373Feb 27, 2023Updated 3 years ago
- Automated, extensible toolset that runs cypher queries against Bloodhound's Neo4j backend and saves output to spreadsheets.☆255Jul 29, 2021Updated 4 years ago
- ☆95Sep 18, 2021Updated 4 years ago
- A tool to make socks connections through HTTP agents☆718Mar 30, 2021Updated 4 years ago
- gather gather gather☆584Mar 15, 2025Updated 11 months ago