badbucket checks your s3 bucket for common misconfigurations
☆24Jun 25, 2017Updated 8 years ago
Alternatives and similar repositories for badbucket
Users that are interested in badbucket are comparing it to the libraries listed below
Sorting:
- XXE injection (file disclosure) exploit for Apache OFBiz < 16.11.04☆13Oct 16, 2018Updated 7 years ago
- ☆29Jan 15, 2017Updated 9 years ago
- Bypassing ssl pinning for facebook messenger android app☆12Nov 12, 2018Updated 7 years ago
- AWS EC2 Security Group Auditor Tool☆16Nov 21, 2017Updated 8 years ago
- Defensive S3 Bucket Squating☆31Jan 18, 2018Updated 8 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Oct 12, 2017Updated 8 years ago
- All-in-one AWS S3 bucket tool for pentesters.☆74Feb 16, 2019Updated 7 years ago
- cve-2014-0130 rails directory traversal vuln☆19May 15, 2017Updated 8 years ago
- Chrome Extension for XSS Hunter Payloads☆41Sep 7, 2016Updated 9 years ago
- Actarus is a custom tool for bug bounty☆77Nov 14, 2019Updated 6 years ago
- ☆25Mar 11, 2025Updated 11 months ago
- Simple XXE test suite generated specifically for SAML interfaces☆23May 18, 2018Updated 7 years ago
- Remote code execution in Power Platform connectors via JSON deserialization☆23Mar 30, 2023Updated 2 years ago
- Monitor your Windows/Linux server via Telegram + ThingSpeak☆19Jan 20, 2017Updated 9 years ago
- Drift detection and reporting for Terraform.☆27May 25, 2021Updated 4 years ago
- Parse nmap's XML output files and insert them into an SQLite database☆29Jun 5, 2017Updated 8 years ago
- Some random scripts. Just trying to be like the cool kids.☆101Jul 1, 2018Updated 7 years ago
- BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.☆163Apr 24, 2025Updated 10 months ago
- Extension of sublister tool to check for subdomain takeovers☆23Mar 7, 2018Updated 7 years ago
- A tool to assist with network-based hunting for GRU's Drovorub malware c2☆25Aug 28, 2020Updated 5 years ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆256Feb 23, 2022Updated 4 years ago
- PoC repository for CVE-2023-29007☆36Apr 26, 2023Updated 2 years ago
- This CloudWatch Events rule Lambda function evaluates AWS API calls that change Amazon EC2 security group ingress rules. The function fla…☆27Jan 14, 2026Updated last month
- ☆276Oct 19, 2021Updated 4 years ago
- ☆34Aug 13, 2021Updated 4 years ago
- intentionally vulnerable API☆30Sep 10, 2024Updated last year
- [WORK IN PROGRESS] A repo containing rule sets for cloud-custodian inside GSA AWS accounts. This repo does not contain cloud-custodian it…☆30Dec 4, 2017Updated 8 years ago
- Simple multi threaded tool to extract domain related data from commoncrawl.org☆31Jul 17, 2018Updated 7 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆260Aug 22, 2021Updated 4 years ago
- Dump and load your AWS IAM configuration into text files☆48Mar 16, 2023Updated 2 years ago
- Tool for CVE-2018-16323☆82Jan 17, 2019Updated 7 years ago
- code written on artificial intelligence lab at school☆10Oct 4, 2021Updated 4 years ago
- Replaces all .jpg and .png with a picture of nicolas cage.☆10Jun 10, 2014Updated 11 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆80Apr 4, 2019Updated 6 years ago
- Hayat is a script for report and analyze Google Cloud Platform resources.☆80Jan 7, 2020Updated 6 years ago
- Abusing Self-XSS and Clickjacking to trigger XSS☆136Mar 18, 2017Updated 8 years ago
- ☆35Nov 2, 2022Updated 3 years ago
- psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…☆140May 25, 2017Updated 8 years ago
- Memcache hacking tool.☆47Apr 20, 2017Updated 8 years ago