A tool to find good RCE From my series: A powerful Burp extension to make bounties rain
Well i got exactly what you need this burpsuite extension powered by a powerful AI engine, find good RCE and report it, all you need is to install it and browse sites like normal unsuspecting users (how cool is that).
Download and install
Description 🖼️ Background 👴🏼 Vision 📜 Concepts 💬 Solutions' Lifecycle. Operations ⭕ Functionalities 🚀 Supported Cybersecurity Solutions 📦 Insta
We are providing DevOps and security teams script to identify cloud workloads that may be vulnerable to the Log4j vulnerability(CVE-2021-44228) in their AWS account. The script enables security teams
Fuzzercorn libfuzzer bindings for Unicorn. API // The main entry point of the fu
Log4j Vulnerability (CVE-2021-44228) This repo contains operational information regarding the vulnerability in the Log4j logging library (CVE-2021-442
This project is for finding a solution to use Security Onion Elastic data with Jupyter Notebooks. The goal is to successfully use this notebook project below with Security Onion for beacon detection
WebScan is a web vulnerability Scanning tool, which scans sites for SQL injection and XSS vulnerabilities Which is a great tool for web pentesters. Coded in python3, CLI. WebScan is capable of scanni
reapoc OpenSource Poc && Vulnerable-Target Storage Box. We are aming to collect different normalized poc and the vulerable target to verify it. Now re
🦑 dirbruter Simples brute forcer de diretorios para web pentest. ❕ Atenção Não ataque sites privados. Isto é illegal. 🖥️ Pré-requisitos Ultima versã
Buffer Overflow Exploit Development For Beginner Introduction I am beginner in security community and as my fellow beginner, I spend some of my time a
tools下有几个工具,所以项目文件比较大,如果下载总是中断的话建议拆开下载各个项目然后直接拷贝dockefile和recon.py即可 0x01 hscan介绍 hscan是什么 hscan是一款旨在使用一条命令替代渗透前的多条扫描命令,通过集成crawlergo扫描和xray扫描、dirsear
📂 Public Bug Bounty Targets Data By BugBountyResources A collection of over 5.1M sub-domains and assets belonging to bug bounty targets, all put in a
Jumpserver-EXP JumpServer远程代码执行漏洞检测利用脚本
Grafana-LFI-8.x Exploit grafana Pre-Auth LFI How to use python3
MainCoon is an automated recon framework meant for gathering information during penetration testing of web applications.
SecurAID securely connects aid organizations directly with individuals in dangerous situations to allow them to discreetly and effec
Bzip A brute force tool for password-protected zip file/folder(s). Note that this tool can only crack .zip files. Please DO not misuse. Installation g
Vital What is Vital? Vital is malware primarily used to collect and extract information from the Discord desktop client. While it has other features (
FOSSLight Scanner Analyze at once for Open Source Compliance. FOSSLight Scanner performs open source analysis after downloading the source by passing
This tool was created in order to automate some basic OSINT tasks for penetration testing assingments. The main feature that I haven't seen much anywhere is the downloadd google dork function where t
Wonk is a tool for combining a set of AWS policy files into smaller compiled policy sets.
36 Nov 10, 2022
13 Jan 04, 2022
23 Nov 17, 2022
1.9k Dec 26, 2022
4 Jun 08, 2022
12 Dec 02, 2022
560 Dec 23, 2022
6 Jan 22, 2022
11 Dec 17, 2022
102 Jan 04, 2023
87 Dec 13, 2022
181 Dec 20, 2022
2 Jul 25, 2022
8 Aug 26, 2022
2 Mar 23, 2022
3 Nov 13, 2021
59 Dec 01, 2022
8 Nov 03, 2022
5 May 31, 2022
140 Dec 16, 2022