Giters
Eray Mitrani (eraymitrani)

eraymitrani

Geek Repo

16

followers

5

following

24

stars

Home Page:hackerone.com/emitrani

Github PK Tool:Github PK Tool

Eray Mitrani's starred repositories

SSRF-Testing

SSRF (Server Side Request Forgery) testing resources

Language:PythonStargazers:2309Issues:0Issues:0

SundayStreams

Data from my Sunday streams

Language:HTMLStargazers:72Issues:0Issues:0

awesome-cve-poc

✍️ A curated list of CVE PoCs.

Stargazers:3250Issues:0Issues:0

off-by-slash

Burp extension to detect alias traversal via NGINX misconfiguration at scale.

Language:PythonLicense:MITStargazers:252Issues:0Issues:0

pentest_compilation

Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios

Language:XSLTStargazers:1310Issues:0Issues:0

bugbountywiki

The Bug Bounty Wiki

Stargazers:164Issues:0Issues:0

VHostScan

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Language:PythonLicense:GPL-3.0Stargazers:1170Issues:0Issues:0

pentest-management

Simple webinterface combining different recon tools.

Language:HTMLStargazers:11Issues:0Issues:0

mass3

Language:GoLicense:MITStargazers:123Issues:0Issues:0

CVE-2018-0296

Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.

Language:PythonStargazers:200Issues:0Issues:0

Awesome-Hacking

A collection of various awesome lists for hackers, pentesters and security researchers

License:CC0-1.0Stargazers:78930Issues:0Issues:0

CloudScraper

CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.

Language:PythonLicense:MITStargazers:479Issues:0Issues:0

bounty-targets

This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data repo

Language:RubyLicense:MITStargazers:572Issues:0Issues:0

ShellPop

Pop shells like a master.

Language:PythonLicense:MITStargazers:1435Issues:0Issues:0

bounty-targets-data

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

License:MITStargazers:3013Issues:0Issues:0

can-i-take-over-xyz

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

Language:PythonLicense:CC-BY-4.0Stargazers:4525Issues:0Issues:0

aquatone

A Tool for Domain Flyovers

Language:GoLicense:MITStargazers:5513Issues:0Issues:0

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

Language:PHPLicense:MITStargazers:54676Issues:0Issues:0

gifoeb

exploit for ImageMagick's uninitialized memory disclosure in gif coder

Language:PythonStargazers:278Issues:0Issues:0

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonLicense:MITStargazers:57600Issues:0Issues:0

Fruits-vs-Veggies

Language:JavaScriptStargazers:2Issues:0Issues:0

zaproxy

The ZAP core project

Language:JavaLicense:Apache-2.0Stargazers:12168Issues:0Issues:0

Episodes

Source Code from episodes of AlwaysBCoding screencasts

Language:JavaScriptStargazers:174Issues:0Issues:0

umich-eecs545-lectures

This repository contains the lecture materials for EECS 545, a graduate course in Machine Learning, at the University of Michigan, Ann Arbor.

Language:Jupyter NotebookStargazers:219Issues:0Issues:0