bsysop's repositories
Bug-bounty
Ressources for bug bounty hunting
active-forks
Find active github forks of a repo https://git.io/vSnrC
argumentinjectionhammer
A Burp Extension designed to identify argument injection vulnerabilities.
Awesome-Hacking-Resources
A collection of hacking / penetration testing resources to make you better!
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
CVE-2019-3799
CVE-2019-3799 - Spring Cloud Config Server: Directory Traversal < 2.1.2, 2.0.4, 1.4.6
domdig
DOM XSS scanner for Single Page Applications
heroku-reverse-proxy
Simple reverse proxy using nginx on Heroku dynos
Information_Collection_Handbook
Handbook of information collection for penetration testing
LFI-phpinfo-RCE
remote code execution with the help of phpinfo and lfi
metadata-one-liners
retrive metadata endpoint data with these one liners.
my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
Red-Team-Infrastructure-Wiki
Wiki to collect Red Team infrastructure hardening resources
Spring-Boot-Actuator-Exploit
Spring Boot Actuator (jolokia) XXE/RCE
websocket-smuggle
Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
wifi-arsenal
WiFi arsenal
WS-Attacker
WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr University Bochum (https://nds.rub.de/ ) and the Hackmanit GmbH (https://www.hackmanit.de/).