PriestExtract server and IP address information from Browser SSRF
Stars: ✭ 13 (-62.86%)
Virtual-HostModified Nuclei Templates Version to FUZZ Host Header
Stars: ✭ 38 (+8.57%)
rissoA comment server written in Rust
Stars: ✭ 16 (-54.29%)
AttackSurfaceManagementDiscover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty
Stars: ✭ 45 (+28.57%)
ssrf-vuls国光的手把手带你用 SSRF 打穿内网靶场源码
Stars: ✭ 235 (+571.43%)
rmp-rpca msgpack-rpc rust library based on tokio
Stars: ✭ 45 (+28.57%)
HostPanicFind host header injections and perform Host Header attacks with other kind of bugs like web cache poissoning
Stars: ✭ 23 (-34.29%)
ssrf filterA ruby gem for defending against Server Side Request Forgery (SSRF) attacks
Stars: ✭ 68 (+94.29%)
magicReconMagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
Stars: ✭ 478 (+1265.71%)
VPS-Bug-Bounty-ToolsScript that automates the installation of the main tools used for web application penetration testing and Bug Bounty.
Stars: ✭ 44 (+25.71%)
proxylogscanA fast tool to mass scan for a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the admin (CVE-2021-26855).
Stars: ✭ 145 (+314.29%)
exprologProxyLogon Full Exploit Chain PoC (CVE-2021–26855, CVE-2021–26857, CVE-2021–26858, CVE-2021–27065)
Stars: ✭ 131 (+274.29%)
mio-aioPOSIX AIO bindings for mio
Stars: ✭ 18 (-48.57%)
Blind-SSRFNuclei Templates to reproduce Cracking the lens's Research
Stars: ✭ 111 (+217.14%)
CVE-2020-36179CVE-2020-36179~82 Jackson-databind SSRF&RCE
Stars: ✭ 77 (+120%)
tokio-linux-aioSupport for Linux kernel aio within Tokio.
Stars: ✭ 49 (+40%)
mux-stream(De)multiplex asynchronous streams
Stars: ✭ 34 (-2.86%)
rodbusRust implementation of Modbus with idiomatic bindings for C, C++, .NET, and Java
Stars: ✭ 34 (-2.86%)
Ssrf TestingSSRF (Server Side Request Forgery) testing resources
Stars: ✭ 1,718 (+4808.57%)
SecExampleJAVA 漏洞靶场 (Vulnerability Environment For Java)
Stars: ✭ 228 (+551.43%)
EagleMultithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities
Stars: ✭ 85 (+142.86%)
Flag-CaptureSolutions and write-ups from security-based competitions also known as Capture The Flag competition
Stars: ✭ 84 (+140%)
ssrf-agentmake http(s) request to prevent SSRF
Stars: ✭ 16 (-54.29%)
SSRF payload本脚本旨在生成各类畸形URL链接,进行探测使用的payload,尝试绕过服务端ssrf限制。
Stars: ✭ 28 (-20%)
ctfCTF programs and writeups
Stars: ✭ 22 (-37.14%)
Sn1perAttack Surface Management Platform | Sn1perSecurity LLC
Stars: ✭ 4,897 (+13891.43%)
sub404A python tool to check subdomain takeover vulnerability
Stars: ✭ 205 (+485.71%)
cf-checkCloudFlare Checker written in Go
Stars: ✭ 147 (+320%)
cookAn overpower wordlist generator, splitter, merger, finder, permutator, encoder, decoder.. Frustration killer. Customizable. The Wordlist Framework.
Stars: ✭ 385 (+1000%)
HashExploitHashExpoit is Great Tool For Cracking Hash
Stars: ✭ 17 (-51.43%)
PayloadsPayload Arsenal for Pentration Tester and Bug Bounty Hunters
Stars: ✭ 421 (+1102.86%)
gee🏵 Gee is tool of stdin to each files and stdout. It is similar to the tee command, but there are more functions for convenience. In addition, it was written as go
Stars: ✭ 65 (+85.71%)
Reconky-Automated Bash ScriptReconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
Stars: ✭ 167 (+377.14%)
massurlA simple tool that aims to efficiently and quickly parse the outputs of web scraping tools like gau
Stars: ✭ 14 (-60%)
PassivehunterSubdomain discovery using the power of 'The Rapid7 Project Sonar datasets'
Stars: ✭ 83 (+137.14%)
DeadDNSDNS hijacking via dead records automation tool
Stars: ✭ 44 (+25.71%)