A burp-suite plugin that extract all parameters name from in-scope requests.
You can run the plugin while you are working on the target application and it will log all the extracted parameters in the plugin tab. Then you can export the result to a file and use that file with other parameter discovery tools.
Easy to setup customizable honeypots for monitoring network traffic, bots activities and username\password credentials. The current available honeypot
CVE-2021-21389 BuddyPress 7.2.1 - REST API Privilege Escalation to RCE PoC (Full) Affected version: 5.0.0 to 7.2.0 User requirement: Subscriber user
A Superfast SMS & Call bomber for Linux And Termux !
ChromePE [Linux/Windows] Chrome Post-Exploitation is a client-server Chrome exploit to remotely allow an attacker access to Chrome passwords, download
Log4Pot A honeypot for the Log4Shell vulnerability (CVE-2021-44228). License: GPLv3.0 Features Listen on various ports for Log4Shell exploitation. Det
CVE-2021-3129 - Laravel RCE About The script has been made for exploiting the Laravel RCE (CVE-2021-3129) vulnerability. This script allows you to wri
CVE-2021-40859 Auerswald COMpact 8.0B Backdoors exploit About Backdoors were discovered in Auerswald COMpact 5500R 7.8A and 8.0B devices, that allow a
Hackerone Passive Recon Tool A passive-recon tool that parses through found assets and interacts with the Hackerone API. Setup Simply run setup.sh to
Instagram Bruter This program will brute force any Instagram account you send it its way given a list of proxies. NOTICE I'm no longer maintaining thi
NIVOS is a hacking tool that allows you to scan deeply , crack wifi, see people on your network. It applies to all linux operating systems. And it is improving every day, new packages are added. Than
Script to calculate Active Directory Kerberos keys (AES256 and AES128) for an account, using its plaintext password
PasswordMaker Strong listing password Introduction The probability of having the password you want in the tool is +90%!! How to Install Open the termi
vcenter_fileread_exploit VMware vCenter earlier v(7.0.2.00100) unauthorized arbitrary file read Usage python3 vCenter_fileread.py http(s)://ip Referen
Unauthenticated Sqlinjection that leads to dump database but this one impersonated Admin and drops a interactive shell
Repo for "The Crown: Exploratory Analysis of Nim Malware" DEF CON 615 talk
whois_bot #whois it? Let's find out! Currently in development: a gatekeeper bot for a community (https://t.me/IT_antalya) of 250+ expat IT pros of Ant
Detect secret in source code, scan your repo for leaks. Find secrets with GitGuardian and prevent leaked credentials. GitGuardian is an automated secrets detection & remediation service.
jndiRep - CVE-2021-44228 Basically a bad grep on even worse drugs. search for malicious strings decode payloads print results to stdout or file report
Uchihash is a small utility that can save malware analysts the time of dealing with embedded hash values used for various things such as: Dyn
A forensic tool to make analysis of email headers easy to aid in the quick discovery of the attacker. Table of Contents About mailMeta Installation Us
259 Dec 31, 2022
17 Nov 09, 2022
15 Feb 21, 2022
3 Oct 05, 2022
79 Dec 27, 2022
21 Dec 27, 2022
6 Sep 22, 2022
4 Jan 13, 2022
1 Nov 15, 2021
263 Jan 01, 2023
27 Dec 20, 2022
4 Sep 05, 2021
4 Sep 23, 2022
16 Nov 09, 2022
43 Dec 03, 2022
14 Jun 24, 2022
1.2k Dec 27, 2022
2 Nov 24, 2022
48 Dec 19, 2022
59 Nov 26, 2022