vp777 / procrustes
A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering
☆209Updated 3 years ago
Related projects: ⓘ
- Burp with Friends☆99Updated last year
- Linux privilege escalation via LXD☆129Updated 4 years ago
- Everything you need about Burp Extension Generation☆151Updated last year
- ☆145Updated 2 years ago
- Search for vulnerabilities and exposures while filtering based on age, keywords, and other parameters.☆126Updated last year
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).☆122Updated last year
- DupeKeyInjector☆134Updated 2 years ago
- JIRA Secure Attachment Looter☆69Updated 4 years ago
- d(ockerp)wn - a docker pwn tool manager☆156Updated 3 years ago
- Exfiltrate blind remote code execution output over DNS via Burp Collaborator.☆247Updated 2 years ago
- Weaponizing Live CT logs for automated monitoring of assets☆132Updated 3 years ago
- SNIcat☆124Updated 3 years ago
- Words list generator to crack security tokens☆109Updated 4 years ago
- Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, an…☆136Updated last year
- CLI tool for PKCS7 padding oracle attacks☆132Updated 3 years ago
- Bash Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Server …☆103Updated 4 years ago
- Piper Burp Suite Extender plugin☆113Updated 6 months ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆252Updated last year
- Evenly distributes scanner load across targets☆80Updated last year
- Application and Service Fingerprinting☆131Updated last year
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆138Updated 3 years ago
- Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.☆75Updated 3 years ago
- Tools to assess the DNS security of web applications☆125Updated last year
- an asynchronous target enumeration tool☆239Updated last year
- A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system☆197Updated last year
- A simple remote scanner for Atlassian Jira☆117Updated last year
- ☆207Updated this week
- ☆52Updated this week
- Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)☆136Updated 4 years ago
- Boomerang is a tool to expose multiple internal servers to web/cloud. Agent & Server are pretty stable and can be used in Red Team for Mu…☆216Updated 3 years ago