nullfuzz-pentest
Follow
Lists (18)
Stars
Pentesting automation platform that combines hacking tools to complete assessments
BlackFan / ipx
Forked from unjs/ipx🖼️ High performance, secure and easy-to-use image optimizer.
Crawlee—A web scraping and browser automation library for Node.js to build reliable crawlers. In JavaScript and TypeScript. Extract data for AI, LLMs, RAG, or GPTs. Download HTML, PDF, JPG, PNG, an…
Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.
Rewrite of the popular wireless network auditor, "wifite"
A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
Nuclei POC,每日更新 | 自动整合全网Nuclei的漏洞POC,实时同步更新最新POC,保存已被删除的POC。通过批量克隆Github项目,获取Nuclei POC,并将POC按类别分类存放,使用Github Action实现(已有11wPOC,已校验有效性并去重)
Checklists for Testing Security environment
lsr00ter / CVE-2024-6769
Forked from fortra/CVE-2024-6769Activation cache poisoning to elevate from medium to high integrity (CVE-2024-6769)
CVE-2024-38200 - Microsoft Office NTLMv2 Disclosure Vulnerability
Log4j2 RCE Passive Scanner plugin for BurpSuite
A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where we scanned 20k+ public AMIs.
The FOFA Library collects usage tips, common scenarios, F&Q, and more for FOFA.
Penetration Testing For - Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting, etc...
The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widesprea…
Tomcat常见漏洞GUI利用工具。CVE-2017-12615 PUT文件上传漏洞、tomcat-pass-getshell 弱认证部署war包、弱口令爆破、CVE-2020-1938 Tomcat AJP文件读取/包含
AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation
Dockerized labs For Web Expert (OSWE) certification. Preparation for coming AWAE Training ...