Matin7697's starred repositories
GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
osint_stuff_tool_collection
A collection of several hundred online tools for OSINT
bruteforce-lists
Some files for bruteforcing certain things.
the-art-of-subdomain-enumeration
This repository contains all the supplement material for the book "The art of sub-domain enumeration"
hakcheckurl
Takes a list of URLs and returns their HTTP response codes
cloudflare-origin-ip
Try to find the origin IP of a webapp protected by Cloudflare.
apidetector
APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and flexible input/output options. Ideal for API security testing.
zeek-cheatsheets
Zeek Log Cheatsheets
ActiveMQ-RCE
ActiveMQ RCE (CVE-2023-46604) 漏洞利用工具
Forbidden-Buster
A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas in the system. This code is made for security enthusiasts and professionals only. Use it at your own risk.
sign-saboteur
SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
CVE-2023-46604-RCE-Reverse-Shell-Apache-ActiveMQ
Achieving a Reverse Shell Exploit for Apache ActiveMQ (CVE_2023-46604)
github-regexp
Basically a regexp over a GitHub search.
burpsuite-js-extractor
A simple plugin to export JS files from one or multiple targets
favicon-hashtrick
Python script implementing the favicon hash trick to find subdomains.
Daily-Notes
A Series of Tweets
thm_writeups
Write-ups of Try Hack me challenge machines