Curtis Brazzell's starred repositories
public-pentesting-reports
A list of public penetration test reports published by several consulting firms and academic security groups.
slipstream
NAT Slipstreaming allows an attacker to remotely access any TCP/UDP services bound to a victim machine, bypassing the victimβs NAT/firewall, just by anyone on the victim's network visiting a website
web-push-php
Web Push library for PHP
CursedChrome
Chrome-extension implant that turns victim Chrome browsers into fully-functional HTTP proxies, allowing you to browse sites as your victims.
weaponised-XSS-payloads
XSS payloads designed to turn alert(1) into P1
mongoaudit
π₯ A powerful MongoDB auditing and pentesting tool π₯
IPRotate_Burp_Extension
Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.
DVCS-Pillage
Pillage web accessible GIT, HG and BZR repositories
PowerSniper
Password spraying script and helper for creating password lists